Overview

URL www.rev.com/transcript-editor/Edit?token=h0hv1f3WLeRp0kw6c6MG11Q7aAjZdlC5JvYP8XQGOYYsU47diDf8p-yRMqEPJ3GULZkAxcEni43BagPDKI7xjNqDcJs&loadFrom=DocumentDeeplink&ts=66.21
IP54.230.111.92
ASNAMAZON-02
Location United States
Report completed2022-11-24 20:43:26 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-24 2 44.228.85.26 Sinkholed


Files

No files detected



Passive DNS (57)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS cdn.mxpnl.com (1) 2824 2012-08-22 19:52:57 UTC 2022-11-24 10:20:14 UTC 35.186.235.23
mnemonic passive DNS bat.bing.com (3) 387 2014-04-08 09:23:16 UTC 2020-04-20 20:17:24 UTC 13.107.21.200
mnemonic passive DNS static.ads-twitter.com (1) 614 2018-06-23 22:08:39 UTC 2020-04-02 08:58:40 UTC 151.101.84.157
mnemonic passive DNS ocsp2.globalsign.com (1) 1544 2012-05-23 18:10:04 UTC 2020-03-15 21:19:16 UTC 104.18.20.226
mnemonic passive DNS ocsp.pki.goog (23) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
mnemonic passive DNS edge.fullstory.com (1) 2769 2019-10-31 13:31:26 UTC 2022-11-24 06:07:51 UTC 35.201.112.186
mnemonic passive DNS utt.impactcdn.com (1) 8800 2021-03-02 19:42:51 UTC 2022-11-24 08:21:46 UTC 35.186.249.72
mnemonic passive DNS static.hotjar.com (2) 641 2014-11-01 05:14:27 UTC 2020-04-26 08:32:02 UTC 143.204.55.98
mnemonic passive DNS www.rev.com (9) 210999 2022-02-23 06:57:31 UTC 2022-11-24 09:50:13 UTC 54.230.111.36
mnemonic passive DNS q.quora.com (1) 3239 2018-08-31 02:53:50 UTC 2022-11-24 07:01:38 UTC 44.194.108.63
mnemonic passive DNS www.google.com (1) 7 2016-03-22 03:56:07 UTC 2022-11-24 08:13:00 UTC 142.250.74.164
mnemonic passive DNS vc.hotjar.io (1) 2334 No data No data 54.230.111.64
mnemonic passive DNS ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 172.64.155.188
mnemonic passive DNS px.steelhousemedia.com (1) 7685 2012-07-19 07:21:29 UTC 2022-11-24 18:56:44 UTC 54.245.46.233
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2020-02-17 13:26:09 UTC 157.240.200.14
mnemonic passive DNS rs.fullstory.com (1) 2455 2017-11-01 16:02:33 UTC 2022-11-24 06:04:49 UTC 35.186.194.58
mnemonic passive DNS t.co (1) 569 2012-07-25 19:09:44 UTC 2022-11-24 05:41:32 UTC 104.244.42.133
mnemonic passive DNS ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2020-05-02 20:58:10 UTC 192.124.249.41
mnemonic passive DNS r3.o.lencr.org (11) 344 No data No data 23.36.76.226
mnemonic passive DNS www.linkedin.com (1) 608 2015-06-18 16:10:03 UTC 2020-04-27 12:38:34 UTC 13.107.42.14
mnemonic passive DNS cdn.pendo.io (1) 1165 2018-03-28 15:48:58 UTC 2020-04-25 03:47:27 UTC 54.230.111.55
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-11-24 10:55:16 UTC 216.58.207.194
mnemonic passive DNS script.tapfiliate.com (1) 32485 2020-04-02 04:01:22 UTC 2022-11-24 08:10:37 UTC 54.230.111.115
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-11-24 08:13:55 UTC 142.250.74.3
mnemonic passive DNS analytics.twitter.com (1) 526 2013-04-10 19:53:18 UTC 2020-02-24 11:40:32 UTC 104.244.42.195
mnemonic passive DNS www.adblockanalytics.com (1) 128008 2017-01-30 06:20:40 UTC 2022-11-24 13:51:59 UTC 216.70.112.88
mnemonic passive DNS js.hs-banner.com (3) 2426 2020-03-26 17:45:21 UTC 2022-11-24 09:21:52 UTC 104.18.33.171
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-24 05:30:55 UTC 34.117.237.239
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-11-24 10:18:11 UTC 142.250.74.174
mnemonic passive DNS track.hubspot.com (1) 2528 2012-05-23 18:12:44 UTC 2022-11-24 10:24:05 UTC 104.19.155.83
mnemonic passive DNS www.redditstatic.com (1) 1440 2012-06-30 12:33:28 UTC 2020-04-27 13:44:50 UTC 151.101.85.140
mnemonic passive DNS js.hs-scripts.com (1) 2571 2018-01-31 16:47:28 UTC 2022-11-24 09:21:52 UTC 104.17.213.204
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-24 05:36:55 UTC 34.102.187.140
mnemonic passive DNS evs.bubo-bubo.rev.com (15) 321076 2020-11-05 01:57:49 UTC 2022-11-24 13:51:58 UTC 54.230.111.84
mnemonic passive DNS fonts.googleapis.com (5) 8877 2013-06-10 20:14:26 UTC 2022-11-24 11:11:51 UTC 142.250.74.10
mnemonic passive DNS snap.licdn.com (1) 1044 2014-10-06 08:43:45 UTC 2020-04-10 04:11:37 UTC 23.36.76.121
mnemonic passive DNS www.mczbf.com (1) 9496 No data No data 54.230.111.112
mnemonic passive DNS www.facebook.com (1) 99 2012-05-21 00:23:41 UTC 2021-06-08 06:38:51 UTC 157.240.200.35
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
mnemonic passive DNS ocsp.sca1b.amazontrust.com (2) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.158
mnemonic passive DNS cdn.linkedin.oribi.io (2) 0 2022-10-19 14:36:39 UTC 2022-11-22 13:10:54 UTC 54.230.111.42 Domain (oribi.io) ranked at: 21988
mnemonic passive DNS px.ads.linkedin.com (2) 522 2018-06-15 11:29:56 UTC 2019-09-20 11:09:24 UTC 13.107.42.14
mnemonic passive DNS push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 44.238.202.79
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-09-09 00:40:21 UTC 2022-11-24 11:09:52 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-11-24 06:15:58 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS dx.steelhousemedia.com (1) 8530 2013-09-26 09:54:29 UTC 2022-11-24 13:19:10 UTC 52.11.37.91
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-07-20 17:46:16 UTC 2020-05-02 20:58:10 UTC 104.18.20.226
mnemonic passive DNS js.hs-analytics.net (1) 2411 2013-10-01 15:49:45 UTC 2022-11-24 09:21:52 UTC 104.17.69.176
mnemonic passive DNS script.hotjar.com (1) 887 2020-11-05 16:23:46 UTC 2022-11-24 08:48:00 UTC 143.204.55.40
mnemonic passive DNS a.quora.com (1) 7568 2018-09-11 01:57:36 UTC 2020-04-12 05:04:48 UTC 162.159.152.17
mnemonic passive DNS 44.228.85.26 (1) 0 No data No data 44.228.85.26 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (12) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
mnemonic passive DNS vars.hotjar.com (1) 1014 2020-11-05 10:13:14 UTC 2022-11-24 10:43:30 UTC 143.204.55.118
mnemonic passive DNS stats.g.doubleclick.net (2) 96 2013-06-10 20:21:11 UTC 2022-11-24 08:34:31 UTC 142.250.150.156
mnemonic passive DNS alb.reddit.com (1) 1521 2017-06-15 05:33:56 UTC 2020-05-14 09:57:02 UTC 151.101.85.140
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
mnemonic passive DNS data.pendo.io (3) 1459 2022-07-07 19:43:46 UTC 2022-11-24 06:39:23 UTC 34.107.204.85


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 54.230.111.92

Date UQ / IDS / BL URL IP
2022-11-24 20:43:26 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=h0hv (...) 54.230.111.92
2022-11-23 07:16:33 +0000
0 - 0 - 8 windsoraz.com/ 54.230.111.92
2022-11-22 09:35:03 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=SPW3 (...) 54.230.111.92
2022-11-21 15:20:58 +0000
0 - 0 - 0 e8c0f2.phxxqmwnxjbtq.com 54.230.111.92
2022-11-21 13:45:06 +0000
0 - 0 - 1 click.safeopt.com/f/a/eeOGmazJ5QnkX5enSR61Gg~ (...) 54.230.111.92

Last 5 reports on ASN: AMAZON-02

Date UQ / IDS / BL URL IP
2022-11-30 01:16:34 +0000
0 - 0 - 1 sky.lcu3.com/downloads/DisableWinUpdate.exe 18.139.58.147
2022-11-30 01:13:07 +0000
0 - 0 - 2 www1.blackindustries.com/?tm=1&subid4=1669770 (...) 75.2.73.197
2022-11-30 01:09:43 +0000
0 - 0 - 7 gorillamercyhandsproject.org/wp-admin/css/col (...) 3.8.197.247
2022-11-30 01:09:42 +0000
0 - 0 - 6 gorillamercyhandsproject.org/wp-admin/css/col (...) 3.8.197.247
2022-11-30 01:09:18 +0000
0 - 0 - 1 123.indiancredits.com/document/54081-bai-gian (...) 3.130.253.23

Last 5 reports on domain: rev.com

Date UQ / IDS / BL URL IP
2022-11-29 03:44:45 +0000
0 - 0 - 1 www.rev.com/tc-editor/Edit?token=HlRGAuAZwkwe (...) 54.230.111.109
2022-11-27 22:52:35 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=im3p (...) 54.230.111.36
2022-11-27 22:52:32 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=ZJHQ (...) 54.230.111.109
2022-11-27 22:52:33 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=ZQYQ (...) 54.230.111.29
2022-11-24 20:43:26 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=8oCV (...) 54.230.111.29

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-27 22:52:35 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=im3p (...) 54.230.111.36
2022-11-27 22:52:32 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=ZJHQ (...) 54.230.111.109
2022-11-27 22:52:33 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=ZQYQ (...) 54.230.111.29
2022-11-24 20:43:26 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=8oCV (...) 54.230.111.29
2022-11-24 13:52:07 +0000
0 - 0 - 1 www.rev.com/transcript-editor/edit?token=2dW5 (...) 54.230.111.109


JavaScript

Executed Scripts (118)


Executed Evals (6)

#1 JavaScript::Eval (size: 26, repeated: 1) - SHA256: 93da7a1a8faecce491697056e2fdc9278c55c398a462368a32bc70c142546da3

                                        "multiple_conv_types=true"
                                    

#2 JavaScript::Eval (size: 225, repeated: 1) - SHA256: 4b424950e73905ae77b2ec253651bcbc746fdb011b56cfb8ec66c310ed7da581

                                        var sh_audience_type = null;
var check = ["https://www.rev.com/checkout/"];
for (var i = 0; i < check.length; i++) {
    if (window.location.href.indexOf(check[i]) > -1) {
        sh_audience_type = "sh_audience_type=cart";
        break;
    }
};
sh_audience_type;
                                    

#3 JavaScript::Eval (size: 291, repeated: 1) - SHA256: bddc52649c8e48d36024b74d4cb54e8377b1504de592c9ad44cfcb721fc759ce

                                        let map_order_id = () => {
    let oid = null;
    for (let x of dataLayer) {
        if (x.orderNumber !== undefined && x.customerStatus !== undefined) {
            oid = `${x.customerStatus}_${x.orderNumber}`;
            break;
        }
    };
    return oid;
};
map_order_id();
                                    

#4 JavaScript::Eval (size: 792, repeated: 1) - SHA256: be95c8d79151c70258c07974285ecbec353f917fa5054c668968d1e81295a6f0

                                        let searchForTags = (...compTags) => {
    let data = {};
    let scriptNodes = document.getElementsByTagName("script");
    let imageNodes = document.getElementsByTagName("img");
    let nodesArray = [...scriptNodes, ...imageNodes];
    for (let node of nodesArray) {
        for (let i = 0; i < compTags.length; i++) {
            if (node.src && node.src.indexOf(compTags[i].id) > -1) {
                data[compTags[i].id] = compTags[i].name;
            }
        }
    };
    return Object.values(data).join(",");
};
searchForTags({
    id: "criteo",
    name: "criteo=true"
}, {
    id: "shopify",
    name: "shopify=true"
}, {
    id: "adroll",
    name: "adroll=true"
}, {
    id: "adnxs.com",
    name: "appnexus=true"
}, {
    id: "googletagmanager",
    name: "googletagmanager=true"
}, {
    id: "googletagmanager.com/gtag/js?id=G-",
    name: "ga4=true"
}, {
    id: "pixel.mathtag.com",
    name: "mediamath=true"
});
                                    

#5 JavaScript::Eval (size: 255, repeated: 1) - SHA256: b0ef31f31656d506b130d30b7ff52db8bfff0a39a113bb214d26a3f07643a83a

                                        (function() {
    var a = document.createElement("ins");
    a.className = "AdSense";
    a.style.display = "block";
    a.style.position = "absolute";
    a.style.top = "-1px";
    a.style.height = "1px";
    document.body.appendChild(a);
    var b = !a.clientHeight;
    document.body.removeChild(a);
    return b
})();
                                    

#6 JavaScript::Eval (size: 2321, repeated: 1) - SHA256: e5f66fac596a761cf65817386971fee20fbd446d61c8cadb61c28ca9da726ebc

                                        (function() {
    if (typeof irongate == 'undefined') irongate = {};
    irongate.gr = function(callback) {
        if (typeof irongate.g != 'undefined') {
            callback()
        } else {
            if (typeof irongate.gcb == 'undefined') {
                irongate.gcb = []
            }
            irongate.gcb.push(callback)
        }
    };
    irongate.gsl = function() {
        var st = document.createElement("script");
        st.type = "text/javascript";
        st.src = "https://ww.steelhousemedia.com/gs";
        var list = document.getElementsByTagName("script");
        var last = Number(list.length) - 1;
        var scpt = document.getElementsByTagName("script")[last];
        scpt.parentNode.insertBefore(st, scpt);
        irongate.timeout = setInterval(irongate.dl, 2000)
    };
    irongate.dl = function() {
        if (typeof irongate.g != 'undefined') {
            clearInterval(irongate.timeout)
        }
        while (irongate.gcb.length > 0) {
            var callback = irongate.gcb.pop();
            callback()
        }
    };
    var request = function() {
        var st = document.createElement('script');
        st.type = 'text/javascript';
        var g = (typeof irongate.g != 'undefined' ? irongate.g() : 'null');
        var gt = (typeof irongate.gt != 'undefined' ? irongate.gt() : 'null');
        var sturl = 'px.steelhousemedia.com/st?ga_tracking_id=UA-18309154-6&ga_client_id=2080446928.1669322598&shpt=Sign%20In%20-%20Rev&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-18309154-6%22%2C%22ga_client_id%22%3A%222080446928.1669322598%22%2C%22shpt%22%3A%22Sign%20In%20-%20Rev%22%2C%22dcm_cid%22%3A%22undefined.undefined%22%2C%22dcm_gid%22%3A%22783153936.1669322598%22%2C%22mntnis%22%3A%22DnY9p%2Bdmk077EhRcTscD%2ByMgoXjRMzkF%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=undefined.undefined&dcm_gid=783153936.1669322598&dxver=4.0.0&shaid=32131&plh=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&shadditional=multiple_conv_types%3Dtrue%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue&cb=1669322601113768&shguid=' + g + '&shgts=' + gt;
        st.src = ('https:' == document.location.protocol ? 'https://' : 'http://') + sturl;
        var list = document.getElementsByTagName('script');
        var last = Number(list.length) - 1;
        var scpt = document.getElementsByTagName('script')[last];
        scpt.parentNode.insertBefore(st, scpt)
    };
    irongate.gr(request);
    irongate.gsl()
})();
                                    

Executed Writes (0)



HTTP Transactions (144)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12291
Expires: Fri, 25 Nov 2022 00:08:06 GMT
Date: Thu, 24 Nov 2022 20:43:15 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4054
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 20:43:15 GMT
Last-Modified: Thu, 24 Nov 2022 19:35:41 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 20:19:00 GMT
cache-control: public,max-age=3600
age: 1455
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4d7e4eed097b9c4e5d509419f1cfc85a
Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8
Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3161
Expires: Thu, 24 Nov 2022 21:35:56 GMT
Date: Thu, 24 Nov 2022 20:43:15 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: nwxucuF2G3uucYn4oZj5OCNBYt1IeFOi/ZE/WgQezWvpxLQHsjVllkVp5fp3KDtu5LrIpgP3YjU=
x-amz-request-id: H9BBTWJRMTMRBX83
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 20:40:32 GMT
age: 163
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 20:43:15 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128177
Date: Thu, 24 Nov 2022 20:43:15 GMT
Etag: "637f2914-1d7"
Expires: Sat, 26 Nov 2022 08:19:32 GMT
Last-Modified: Thu, 24 Nov 2022 08:19:32 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: C5vmZyvcsOXVMKQ4mu-onVkJz5u-D9RdktrhQib9j_c7gvdQeDkTJA==

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 20:11:11 GMT
cache-control: public,max-age=3600
age: 1924
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4656
Cache-Control: max-age=135670
Date: Thu, 24 Nov 2022 20:43:15 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:24:25 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9WRl2VWO81AiT8O92XFr7A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.238.202.79
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XGiufbLCh9bJ5xEX8A4n58UTCkA=

                                        
                                            GET /transcript-editor/Edit?token=h0hv1f3WLeRp0kw6c6MG11Q7aAjZdlC5JvYP8XQGOYYsU47diDf8p-yRMqEPJ3GULZkAxcEni43BagPDKI7xjNqDcJs&loadFrom=DocumentDeeplink&ts=66.21 HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         54.230.111.36
HTTP/2 302 Found
                                        
content-length: 0
date: Thu, 24 Nov 2022 20:43:16 GMT
set-cookie: AWSALB=XQrpvUDZ5ZAAYMnzLBEBAmc++P5tjlYBtptGWMZpKSnR0uYstrMGWb3bfqe5vHYFcAM7j27g5Y4uw2RsZfJWkkrJUlUtU3qM+swaDxB1U5CuY0AqIOUF3a6nWn15; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/ AWSALBCORS=XQrpvUDZ5ZAAYMnzLBEBAmc++P5tjlYBtptGWMZpKSnR0uYstrMGWb3bfqe5vHYFcAM7j27g5Y4uw2RsZfJWkkrJUlUtU3qM+swaDxB1U5CuY0AqIOUF3a6nWn15; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/; SameSite=None; Secure
location: /account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
server: Kestrel
strict-transport-security: max-age=2592000
x-robots-tag: noindex
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yFuEnOSOzgjDt3SSaCbxBMOlrau36rwLvnd3V5PHyKkjympqCRTTVw==
X-Firefox-Spdy: h2

                                        
                                            GET /build/bundles/legacy/jquery.js?v=0-0 HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=Ox3brya8R57NqAjSKoOJvxfYRv8fV6BvfD4zSsuSDsnUJSwDJB19PpAD8fKPgRRm7Yq0VLat1yvhjjdAv6EKrq7apRbaSSLyxqwMFAg04t5FynKvlfbN8g9/BOC+; AWSALBCORS=Ox3brya8R57NqAjSKoOJvxfYRv8fV6BvfD4zSsuSDsnUJSwDJB19PpAD8fKPgRRm7Yq0VLat1yvhjjdAv6EKrq7apRbaSSLyxqwMFAg04t5FynKvlfbN8g9/BOC+; __RequestVerificationToken=j6HR40X5QWqN3MRTzDG45iWxkJwGeulQleO96JY9zunHUZhQLk5Kh5gqoFDzd8fakbf8OknB31kYxz3XLXpxwgOInj01; ft_tz=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.36
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 94979
date: Thu, 24 Nov 2022 20:43:16 GMT
set-cookie: AWSALB=AprOb1UJgZXLP+hbTss9bhJr4XEb15rKcYKbLuqfMi+Cr3eQHBJXZ9mmz/PX61zCycpvR252DPV2Radql2783ZLo9eVx/fNUe8Xr2ce70esrZdccwtlSICY2wjAx; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/ AWSALBCORS=AprOb1UJgZXLP+hbTss9bhJr4XEb15rKcYKbLuqfMi+Cr3eQHBJXZ9mmz/PX61zCycpvR252DPV2Radql2783ZLo9eVx/fNUe8Xr2ce70esrZdccwtlSICY2wjAx; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Mon, 21 Nov 2022 21:48:15 GMT
accept-ranges: bytes
etag: "1d8fdf2f57cca83"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ARkKhNCn-WWICFBkhB9qhVfzUl30PZAJZO0WlD8pKVLWZhN-JIrNPA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   94979
Md5:    d27e439003ec2b2e2087765fcb9bb92d
Sha1:   a9f134ffcbeeaf5012819e167beae080b3759f0e
Sha256: c35d13b62f590b159ebd2a94fcf87f559ae3621b27c34fdcdc966627eb67d3cf
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121790
Date: Thu, 24 Nov 2022 20:43:17 GMT
Etag: "637efa6d-1d7"
Expires: Sat, 26 Nov 2022 06:33:07 GMT
Last-Modified: Thu, 24 Nov 2022 05:00:29 GMT
Server: ECS (dcb/7F18)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TIFB-tYZVNFGUYYZh3BYFNV_kON9f_6lLLR5KM5pBTJFrqw7ayHKJQ==
Age: 5558

                                        
                                            GET /vuJKUsyQcbGfLatMF8YUDz/tyKCHHbrpCEF1awtHhhquy.min.js HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 21 Nov 2022 21:03:56 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 24 Nov 2022 19:06:32 GMT
cache-control: public, max-age=10800
etag: W/"e1962ec0ad4fdcfa8123775c6469d00d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Sd4LTQX3a5vKNP3j7dMpd-bmtIHyU7HXmnOQgBXc-2K2G1N42-MIlw==
age: 5805
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   28896
Md5:    f0ed23c31ec43ed746b1f57f52b20a55
Sha1:   69a0d7793355712a88dc562e8c0fa03414abc3e2
Sha256: 0fb9b68e33f02d3b4be7b54cddbafb9d7c60711ca026389182e915b63eaf700f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11882
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 20:43:17 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11882
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 20:43:17 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11882
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 20:43:17 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11882
Expires: Fri, 25 Nov 2022 00:01:19 GMT
Date: Thu, 24 Nov 2022 20:43:17 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8rbsN9OVJmneT9ov-Q7V4RB8DP5UWhhn-7cnukHiBpl06zmMM0zJTg==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 81957
etag: "89accd230fba95fe0049678070817b36ead015fa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5070
Md5:    0856fdb55f19f03a1bec38b3d6e0ac77
Sha1:   89accd230fba95fe0049678070817b36ead015fa
Sha256: 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 48550
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ve4q5FDkwMGhPK6ZVVVCZtoBTaGaz43r_PwINzwS5Nx5tcZeQkVIfw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:47 GMT
age: 82410
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13882
Md5:    64d79191f005c9876b952c5f948aa0f7
Sha1:   1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
Sha256: 00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:54 GMT
age: 81563
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7462
Md5:    b4157f2c5c3c77ce699324ecb08f47c7
Sha1:   a7d9135f9d01ba13c3cdaf8b038c70212f159297
Sha256: 2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
age: 82571
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:15:22 GMT
age: 48475
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6789
Md5:    d9d93b2a6875d446c3467eb49767eef5
Sha1:   303c571b13b05fcf27ee1159d8fdf6369aaef0a2
Sha256: 2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
                                        
                                            GET /analytics-next/bundles/tsub-middleware.bundle.5bc961ac61f2cc746529.js HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 568
date: Fri, 14 Oct 2022 20:22:31 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 13 Oct 2022 18:09:00 GMT
etag: "14b72ca617e595d4fdbf3b6af07ac3a7"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: TsR9MqszUm2wmCcyfbDE5V2Q2COYCvht
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wPqABDnH8-ysMQZ0NU2x-Ndgl6X4AGzRVhHt71Iji-0aAiAIdcNMRg==
age: 3543647
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (496)
Size:   568
Md5:    14b72ca617e595d4fdbf3b6af07ac3a7
Sha1:   9d5be00536768c5f2101ade111cad2b0a93f0819
Sha256: 45914c08c645568192f3550896cd731fd31a748a2fa0619f5318f5a49df0b8e6
                                        
                                            GET /next-integrations/integrations/bing-ads/2.0.1/bing-ads.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1136
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "1553faa0acd9e90dbb46c23e1127f86e"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: urh2ZuXFZl1g2EkVhflXERh1um95ZMXd
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: STQDL5mVIuGEhumpmd83N3teOTbERhEHyby-8Yf2re6Zw1--XKdZ4w==
age: 6785008
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2357)
Size:   1136
Md5:    1553faa0acd9e90dbb46c23e1127f86e
Sha1:   843fc91ff5d9b34dd8cc7ee722269e6bc5507b75
Sha256: 05840cae824cad02ae47125bbad14bc9acc175652a9da717a35ede1e46ff6d0e
                                        
                                            GET /next-integrations/integrations/linkedin-insight-tag/1.0.1/linkedin-insight-tag.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1063
date: Sat, 27 Aug 2022 14:44:46 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "462aff3995a789b83208321801ab345b"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: Y8CI0PiHFIuF_9rR6YNjYD8TVk.uZynj
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sByx9gKMiBTaw7VCapAGYBHXDPVCaqN9OeE7sqp0wQMUlfK12pzTNA==
age: 7711111
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2155)
Size:   1063
Md5:    462aff3995a789b83208321801ab345b
Sha1:   08a5c21ac99b3f0cbf6d79f0beb9ee0be4cbf8c5
Sha256: be5e8f154d15f475564a4fd9822bd7032b1c334bdbd3d6020c8a29c1e1aeca81
                                        
                                            GET /next-integrations/integrations/twitter-ads/2.5.2/twitter-ads.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1972
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:06 GMT
etag: "8e90efe318aa7f9f7b90dbf3859c2300"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: ns46cQ1QdICERQmBsTCM0y2WuaStQm7b
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: S5K-nltq82ZV23_ApIiG9Q_wBt1Mzwot63hqtz_cfe_rzV9Y_WMmjA==
age: 6785007
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (5487)
Size:   1972
Md5:    8e90efe318aa7f9f7b90dbf3859c2300
Sha1:   08fa1ec50d5fd5a77f0e2819446d1252899d5df8
Sha256: 0ed2c8008c594ad71730c46573862b9a2c76a2627c7253ba6cd01ea82508e951
                                        
                                            GET /next-integrations/integrations/quora-conversion-pixel/1.0.2/quora-conversion-pixel.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1184
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "55a451feb4984d1dd331f30d1551af36"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: jBq1W5CPdo1VUOQqhi6_ywpJWGvUAb48
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tVC-BjXRrstjcIcBdZpRTctxVcFJ0qFL9KrEFNKro2OyQMewLjbu-A==
age: 6785007
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2488)
Size:   1184
Md5:    55a451feb4984d1dd331f30d1551af36
Sha1:   878f3947f8fa6e88d6e5ef4f2fe4421d3689009f
Sha256: b29adb7d83cedc23b216bad4e6f392b829e8cad93e0a4c3a40ff8b9f0f9af8c0
                                        
                                            GET /next-integrations/integrations/facebook-pixel/2.11.4/facebook-pixel.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 3271
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "11d09c60390d4846b90b372bd58cf329"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: OvTzgbLXtChbEoW.LGjeIXq_ezxD0Xij
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jDMysJeeB_w266MLagA4F6QXf_unu-LXT7JRG7K6Dgox-89UiF4kDA==
age: 6785007
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (10360)
Size:   3271
Md5:    11d09c60390d4846b90b372bd58cf329
Sha1:   5a0420772b5952092e5e4e495e6d20a75be5595d
Sha256: 695f75812718e9986803f675ca57b275118fa8cb4a8593e4bf09289229fc5fe9
                                        
                                            GET /v1/projects/WEmx47r1UEglal6RqTQxEBV8k5L4SKYb/settings HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 21 Nov 2022 20:05:27 GMT
x-amz-version-id: U0_6SIh8cFODTsj1sSmdPRifJA3_ze4M
server: AmazonS3
content-encoding: gzip
date: Thu, 24 Nov 2022 20:43:17 GMT
cache-control: public, max-age=10800
etag: W/"6a0f6645cfe8cb53fdaaefce54ac6d39"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oEGyLyzBNPm_ZVsbnFPI95y6AJNh2NuDxqlHQg12C3FLnHtdIm8_VA==
age: 3582
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (11984)
Size:   4335
Md5:    944794f2a685ebc134b02ad292b2f9c6
Sha1:   3e5cfc96c7848810de86ad642fad0a3ae6e1619d
Sha256: ccf85bd604d6043682d9340fcc8fcce7e9880d0b6bc93692e950220638171011
                                        
                                            GET /next-integrations/integrations/hotjar/1.4.0/hotjar.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1336
date: Wed, 02 Nov 2022 00:43:13 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:48:00 GMT
etag: "4cd7c93a55ce331d264d9a857bd044ed"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: 978iMiKKNdIObkMbEwfWedn2eTs8j_9i
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VrIRTh0WbFOkmJfXlxOMMdP09a6FEsvR-8cKlHLO63rd6yBcADvrrg==
age: 1972805
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2744)
Size:   1336
Md5:    4cd7c93a55ce331d264d9a857bd044ed
Sha1:   8686a559163e604917f7da8134a856ed472f78d3
Sha256: 7ad1bb509b58c14fc222c76eb6bf2359cc66a8846cf13d6a76e98b126f935005
                                        
                                            GET /next-integrations/integrations/pendo/1.1.3/pendo.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1296
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "695bfc9a51be5d199c2bd1a0bbe8af4c"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: Jf0I3ZY_tS1GoAC0ONxzJiIDY4jV7PMV
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zo2SnL_E_fakZH6wnrxwVhWnnFqrPXn_QPlOrPVOtBrJ_I8vaB2nUw==
age: 6785007
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2755)
Size:   1296
Md5:    695bfc9a51be5d199c2bd1a0bbe8af4c
Sha1:   350fa27b79585bd313c306ac72e75c207ed9368a
Sha256: f509d19d9de86b3f90f4e3835317bbd1194c0941d731ee5345b227028cf2df37
                                        
                                            GET /next-integrations/integrations/google-adwords-new/1.2.1/google-adwords-new.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1637
date: Wed, 07 Sep 2022 07:59:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "42d5be27ccbd8a0a8aafd8ba7a7470c7"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: ZzaTlIznfjCus3n0Cq8cGcww_7z729XB
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3ZH2cUNd5ggyW3WhL_LEm8UNtqh3EdKBt6xX9ba3feyIAlHfAu-pOQ==
age: 6785007
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3990)
Size:   1637
Md5:    42d5be27ccbd8a0a8aafd8ba7a7470c7
Sha1:   c8b2598bf3e43d437b4f45219e7bdc74a9db952b
Sha256: 6503cd0e435619365dc44a1347b86b672d9e860ae258f4321903aabb854c376f
                                        
                                            GET /next-integrations/integrations/vendor/commons.54701049fd6fb8497e9e.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 22174
date: Wed, 07 Sep 2022 07:59:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:03 GMT
etag: "7741fd16ad2418cd17ab981f8207b106"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: mb97YHCQnVYMzMj70hHDbCO4ylFPlzfU
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BREhwyEYukAIivYrEpQl9gko7AmfeezyjjhCaZHv_sQEpvJn9BJ8gQ==
age: 6785007
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size:   22174
Md5:    7741fd16ad2418cd17ab981f8207b106
Sha1:   13d45dddf2bc6331a72ea781098dafdf715a13e7
Sha256: c66490dc7f609c24fb66b5aeea8b7142f0d183d2075381daa817002b3c25b375
                                        
                                            GET /next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 22177
date: Thu, 29 Sep 2022 11:56:07 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 21:38:18 GMT
etag: "befb217271e2e926c7d898f1c85f6cb7"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: Z.cz1sApkVz0CAwS1aXBsP5bZXvNz24o
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6aoO8mTX6d7ZxpDffVEa4-pK5N_uirFJvLsWbeSU59rKe8_UU4x2CQ==
age: 4870031
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size:   22177
Md5:    befb217271e2e926c7d898f1c85f6cb7
Sha1:   b6ca8f0b9eb7ddebc916cbc77eddab8532216748
Sha256: 21c28b41965eaf22aae5ee670f71227bd2d8fd32a024d62864873f7c8621e8f4
                                        
                                            GET /Content/curve/img/ultra-logo.svg?v=Tp2lhJ-q6WjczQAux7E7Utwz_YWuKM_MR-Hzqvkeuog HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=Ox3brya8R57NqAjSKoOJvxfYRv8fV6BvfD4zSsuSDsnUJSwDJB19PpAD8fKPgRRm7Yq0VLat1yvhjjdAv6EKrq7apRbaSSLyxqwMFAg04t5FynKvlfbN8g9/BOC+; AWSALBCORS=Ox3brya8R57NqAjSKoOJvxfYRv8fV6BvfD4zSsuSDsnUJSwDJB19PpAD8fKPgRRm7Yq0VLat1yvhjjdAv6EKrq7apRbaSSLyxqwMFAg04t5FynKvlfbN8g9/BOC+; __RequestVerificationToken=j6HR40X5QWqN3MRTzDG45iWxkJwGeulQleO96JY9zunHUZhQLk5Kh5gqoFDzd8fakbf8OknB31kYxz3XLXpxwgOInj01; ft_tz=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.36
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-length: 1626
date: Thu, 24 Nov 2022 20:43:17 GMT
set-cookie: AWSALB=FNYeRrmB2BsuSnQ2SQVjbAHjD/iXPc6S3BV8XoQ2CwQ4Q3jPsM2qlPMDBFRUqEBs5wVPYN/zPTiLcvtVLHY+x3vpFPQ498dFC9c4EOufBjUATFl8YB8gL/PXNeI4; Expires=Thu, 01 Dec 2022 20:43:17 GMT; Path=/ AWSALBCORS=FNYeRrmB2BsuSnQ2SQVjbAHjD/iXPc6S3BV8XoQ2CwQ4Q3jPsM2qlPMDBFRUqEBs5wVPYN/zPTiLcvtVLHY+x3vpFPQ498dFC9c4EOufBjUATFl8YB8gL/PXNeI4; Expires=Thu, 01 Dec 2022 20:43:17 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Thu, 17 Nov 2022 00:58:44 GMT
accept-ranges: bytes
etag: "1d8fa1fbda3fc5a"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Y58GmMvvuHOfmSXVkjT7592BR8Uxq6khb6tvk8GCPBPZ0uyyHfKyvQ==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1626), with no line terminators
Size:   1626
Md5:    ea00c1e4e97842c76e3d3fc4ac21a49c
Sha1:   5e731bfe570fa046a5f44d4d672ed72ad6c7298c
Sha256: 4e9da5849faae968dccd002ec7b13b52dc33fd85ae28cfcc47e1f3aaf91eba88
                                        
                                            GET /account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: AWSALB=XQrpvUDZ5ZAAYMnzLBEBAmc++P5tjlYBtptGWMZpKSnR0uYstrMGWb3bfqe5vHYFcAM7j27g5Y4uw2RsZfJWkkrJUlUtU3qM+swaDxB1U5CuY0AqIOUF3a6nWn15; AWSALBCORS=XQrpvUDZ5ZAAYMnzLBEBAmc++P5tjlYBtptGWMZpKSnR0uYstrMGWb3bfqe5vHYFcAM7j27g5Y4uw2RsZfJWkkrJUlUtU3qM+swaDxB1U5CuY0AqIOUF3a6nWn15
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

                                         
                                         54.230.111.36
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:16 GMT
set-cookie: AWSALB=Ox3brya8R57NqAjSKoOJvxfYRv8fV6BvfD4zSsuSDsnUJSwDJB19PpAD8fKPgRRm7Yq0VLat1yvhjjdAv6EKrq7apRbaSSLyxqwMFAg04t5FynKvlfbN8g9/BOC+; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/ AWSALBCORS=Ox3brya8R57NqAjSKoOJvxfYRv8fV6BvfD4zSsuSDsnUJSwDJB19PpAD8fKPgRRm7Yq0VLat1yvhjjdAv6EKrq7apRbaSSLyxqwMFAg04t5FynKvlfbN8g9/BOC+; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/; SameSite=None; Secure __RequestVerificationToken=j6HR40X5QWqN3MRTzDG45iWxkJwGeulQleO96JY9zunHUZhQLk5Kh5gqoFDzd8fakbf8OknB31kYxz3XLXpxwgOInj01; path=/; samesite=strict; httponly TempData=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
cache-control: no-store,no-cache
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=2592000
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2VJRUs_wuK3PgsvVJwMrxbQlkyGhzJvDmgYfUap_zDwq7fVnpcOVkg==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Generic INItialization configuration []\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (989), with CRLF line terminators
Size:   90182
Md5:    a2b28e3c2679ef525217f0fc2dd95bb3
Sha1:   b73c568853a5621daba076cad8ed0b236da14786
Sha256: 4700304160edcd4b15215d327f0dd80cd05cc493ac13fddf81a882314b32fcba
                                        
                                            POST /gsalphasha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 28 Nov 2022 19:27:55 GMT
ETag: "e3c69dd4ec9869adb1f326c895749d6bf00eb996"
Last-Modified: Thu, 24 Nov 2022 19:27:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f4f9da0971b51b-OSL


--- Additional Info ---
Magic:  data
Size:   1423
Md5:    efa198a31af7544f8c6738808ce478c8
Sha1:   e3c69dd4ec9869adb1f326c895749d6bf00eb996
Sha256: 4b1be92c3d8223427287aaa047861e4db42278a61eb1c22f64c47a9d4386fdbb
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "77239B5A9D5638F9139CA8FAEE625E3DEAF34C1758AC108BD9EE0B66E9795395"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4156
Expires: Thu, 24 Nov 2022 21:52:33 GMT
Date: Thu, 24 Nov 2022 20:43:17 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /build/auth.bundle.js?v=70PwOu7-f1bUfXJlhJ7ylBcjewK1d-wJQR4RmbbZ7mg HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=Ox3brya8R57NqAjSKoOJvxfYRv8fV6BvfD4zSsuSDsnUJSwDJB19PpAD8fKPgRRm7Yq0VLat1yvhjjdAv6EKrq7apRbaSSLyxqwMFAg04t5FynKvlfbN8g9/BOC+; AWSALBCORS=Ox3brya8R57NqAjSKoOJvxfYRv8fV6BvfD4zSsuSDsnUJSwDJB19PpAD8fKPgRRm7Yq0VLat1yvhjjdAv6EKrq7apRbaSSLyxqwMFAg04t5FynKvlfbN8g9/BOC+; __RequestVerificationToken=j6HR40X5QWqN3MRTzDG45iWxkJwGeulQleO96JY9zunHUZhQLk5Kh5gqoFDzd8fakbf8OknB31kYxz3XLXpxwgOInj01; ft_tz=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.36
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 45193
date: Thu, 24 Nov 2022 20:43:17 GMT
set-cookie: AWSALB=2ypWTqwQgHoqorH+q83aUAifmMoLiM/ebXI9rjNFHBveLcxHkksB8SC2axO0zDzOrLK6ZjgDoAqB2vowNR9dmPnS3j+j0mosmCHvzf002dJm1YzT0IlEHF65Y1bz; Expires=Thu, 01 Dec 2022 20:43:17 GMT; Path=/ AWSALBCORS=2ypWTqwQgHoqorH+q83aUAifmMoLiM/ebXI9rjNFHBveLcxHkksB8SC2axO0zDzOrLK6ZjgDoAqB2vowNR9dmPnS3j+j0mosmCHvzf002dJm1YzT0IlEHF65Y1bz; Expires=Thu, 01 Dec 2022 20:43:17 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Mon, 21 Nov 2022 21:51:32 GMT
accept-ranges: bytes
etag: "1d8fdf36ae93a89"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YU-YwuPL0kSzf836bAvmbnsK3aCPj07EAg8ef1P3L4B08iOCocw2YQ==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (45193), with no line terminators
Size:   45193
Md5:    4dc972af271c89143118ba6903b86233
Sha1:   718e3e6b1379e6751adbe17edc7cd0c7d4b7f411
Sha256: ef43f03aeefe7f56d47d7265849ef29417237b02b577ec09411e1199b6d9ee68
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "77239B5A9D5638F9139CA8FAEE625E3DEAF34C1758AC108BD9EE0B66E9795395"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4156
Expires: Thu, 24 Nov 2022 21:52:33 GMT
Date: Thu, 24 Nov 2022 20:43:17 GMT
Connection: keep-alive

                                        
                                            GET /analytics-next/bundles/870.bundle.8c2ad2c20faa7f50ccdf.js HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 21 Nov 2022 22:05:03 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 21 Nov 2022 21:55:23 GMT
etag: W/"6182a27f8db24c6fe6a8590a0884f2e7"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: pJ4eZep8qs58gRd5ke8RmJ_VgyNlBi51
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Nq3fWfreFl2qvO-BQofLR8SGU1vQbDGpDO8TgKRe-LSe2waFy-9GaQ==
age: 254294
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   79757
Md5:    b35c0198349ac6827c90426f44011235
Sha1:   8c5a20b80d03b76419bbf0258f64cba8b0e4e73c
Sha256: 5a91d9d54113984c1e2f2c2a7d23072eff78f20e22198b6a1ef303061563a20c
                                        
                                            GET /agent/static/dab970e7-a0d4-4e86-407e-3536dbfcc619/pendo.js HTTP/1.1 
Host: cdn.pendo.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.55
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 132077
x-guploader-uploadid: ADPycdtYENfK4an_L32-5VlAyE5ldV76VRPlAVBd62afHJ3u4bZoTvrSoM3ftsF5I8XZ53uXZL2xuGIsouut1yNnnTS_NQ
last-modified: Thu, 17 Nov 2022 19:10:51 GMT
x-goog-generation: 1668712250912401
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 132077
content-encoding: gzip
x-goog-hash: crc32c=ngH35A==, md5=tH/pkDtf6iTmhG0es0hBBA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Thu, 24 Nov 2022 20:43:17 GMT
expires: Thu, 24 Nov 2022 20:47:10 GMT
cache-control: max-age=450
etag: "b47fe9903b5fea24e6846d1eb3484104"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: k-EZLZVpkx_lqor03i_SIQlTByaLEZgGrMgKEiKS5Ex8CCPQe2Pl5A==
age: 217
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47462)
Size:   132077
Md5:    b47fe9903b5fea24e6846d1eb3484104
Sha1:   a5193a7968c44e71c71d9221c523e2d06705f689
Sha256: 7fd2d0bafeb815d227f7b63db5634435299a6eccde25b0652aee646e5f2ba903
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /build/styles/pages/account/login.css?v=ApIBoSQscifC2eCokRmD6KBO0bRnF5gU9xOqBmFs9fg HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=Ox3brya8R57NqAjSKoOJvxfYRv8fV6BvfD4zSsuSDsnUJSwDJB19PpAD8fKPgRRm7Yq0VLat1yvhjjdAv6EKrq7apRbaSSLyxqwMFAg04t5FynKvlfbN8g9/BOC+; AWSALBCORS=Ox3brya8R57NqAjSKoOJvxfYRv8fV6BvfD4zSsuSDsnUJSwDJB19PpAD8fKPgRRm7Yq0VLat1yvhjjdAv6EKrq7apRbaSSLyxqwMFAg04t5FynKvlfbN8g9/BOC+; __RequestVerificationToken=j6HR40X5QWqN3MRTzDG45iWxkJwGeulQleO96JY9zunHUZhQLk5Kh5gqoFDzd8fakbf8OknB31kYxz3XLXpxwgOInj01; ft_tz=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.36
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 176901
date: Thu, 24 Nov 2022 20:43:17 GMT
set-cookie: AWSALB=Htz0QjQw7r4StofJ3akyy8hMC7B2bVcq0vypqS674VNJWTzlYx5iY7NGgp9dJnl0HQEvl/AtfcAio13zhZjs3CMIZAoCxXZwagLvFSZ31cLXka31DPWdF+5j+j6n; Expires=Thu, 01 Dec 2022 20:43:17 GMT; Path=/ AWSALBCORS=Htz0QjQw7r4StofJ3akyy8hMC7B2bVcq0vypqS674VNJWTzlYx5iY7NGgp9dJnl0HQEvl/AtfcAio13zhZjs3CMIZAoCxXZwagLvFSZ31cLXka31DPWdF+5j+j6n; Expires=Thu, 01 Dec 2022 20:43:17 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Mon, 21 Nov 2022 21:48:40 GMT
accept-ranges: bytes
etag: "1d8fdf30466df05"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KPzwzDflg36-0iYj1AjXoBY0fmJWTS11wwU5qd-1pp1mQzpHwYAecQ==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (61265), with CRLF line terminators
Size:   176901
Md5:    cfb87cafa30f7302dc070441eb507cc8
Sha1:   9d414bfc67aca6c3301367ddb53ee52f6892dc80
Sha256: 029201a1242c7227c2d9e0a8911983e8a04ed1b467179814f713aa06616cf5f8
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "13AE755909E9DA73553F64925E7CECE847991F33830922761C604759D7D2944A"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12418
Expires: Fri, 25 Nov 2022 00:10:15 GMT
Date: Thu, 24 Nov 2022 20:43:17 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css2?family=Rubik:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rev.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 20:43:17 GMT
date: Thu, 24 Nov 2022 20:43:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1151
Md5:    7c13652c337f9214d13f4e5a8b5469a9
Sha1:   5dfc87624028c53bc60e4c6bb38f06398ff04c7e
Sha256: 3fbb7f90427927326e070f41145aa05e2d900756a321b9fc3e84c7f3cec94b15
                                        
                                            HEAD / HTTP/1.1 
Host: www.adblockanalytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.70.112.88
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Thu, 24 Nov 2022 20:43:17 GMT
vary: Accept-Encoding
cache-control: max-age=0, no-cache
content-language: en-US
x-powered-by: PleskLin
strict-transport-security: max-age=15768000; includeSubDomains; preload
content-encoding: br
X-Firefox-Spdy: h2

                                        
                                            GET /build/curve-common.bundle.js?v=32vC523I3tMuphEwnPKpXE0jK21qQfHiic3TpkwsmuQ HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=AprOb1UJgZXLP+hbTss9bhJr4XEb15rKcYKbLuqfMi+Cr3eQHBJXZ9mmz/PX61zCycpvR252DPV2Radql2783ZLo9eVx/fNUe8Xr2ce70esrZdccwtlSICY2wjAx; AWSALBCORS=AprOb1UJgZXLP+hbTss9bhJr4XEb15rKcYKbLuqfMi+Cr3eQHBJXZ9mmz/PX61zCycpvR252DPV2Radql2783ZLo9eVx/fNUe8Xr2ce70esrZdccwtlSICY2wjAx; __RequestVerificationToken=j6HR40X5QWqN3MRTzDG45iWxkJwGeulQleO96JY9zunHUZhQLk5Kh5gqoFDzd8fakbf8OknB31kYxz3XLXpxwgOInj01; ft_tz=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.36
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 239947
date: Thu, 24 Nov 2022 20:43:17 GMT
set-cookie: AWSALB=tK0Gm7yTUxYJ0xGPzj70pr0nE/5MpDeCfM8dF6eLyamm9TADJK9JlXJhiLuARClj/UxU72Ph/SrORelpVSL2CkG/5XKOfBK9JXvSYDFXBE6WctQcfMcH+En/nwWv; Expires=Thu, 01 Dec 2022 20:43:17 GMT; Path=/ AWSALBCORS=tK0Gm7yTUxYJ0xGPzj70pr0nE/5MpDeCfM8dF6eLyamm9TADJK9JlXJhiLuARClj/UxU72Ph/SrORelpVSL2CkG/5XKOfBK9JXvSYDFXBE6WctQcfMcH+En/nwWv; Expires=Thu, 01 Dec 2022 20:43:17 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Mon, 21 Nov 2022 21:52:09 GMT
accept-ranges: bytes
etag: "1d8fdf380f4e3cb"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0K9YnNZIPrC5FRj7VxXG0UPCDCfz9i7clmTFPow0F3zyuzm3obRb-w==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65459)
Size:   239947
Md5:    960a03c1eec69c3cc3169bee1d22d176
Sha1:   58f0338df78945b414a0e98711b584a903861a6c
Sha256: df6bc2e76dc8ded32ea611309cf2a95c4d232b6d6a41f1e289cdd3a64c2c9ae4
                                        
                                            GET /analytics-next/bundles/auto-track.bundle.ebb49113f9888c836c45.js HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Cookie: _gcl_au=1.1.624272484.1669322597
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.84
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 07 Jul 2022 02:36:27 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 06 Jul 2022 19:57:02 GMT
etag: W/"280d4b2574be32614bd2672e58d8b164"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: dMBivy9Z9TpmRxSvfQCrpUSAxgZpsOJw
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lcLD34bmkdVUT5vsaYFSVxUq0ix_pSqvGA8UXKA3oCe5rE5EYjDh5w==
age: 12161210
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1290
Md5:    a85ce03a0b761f01871d92ab0bd2722c
Sha1:   f1b362344e72802752236cf2b1699b830df5529c
Sha256: 24f5760be178b1f482359dd4fd772bdf4255ed59cd92f29a093dd4ce34f290cb
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /_/ad/baa4434eba124407b506792409258530/pixel?j=1&u=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&tag=ViewContent&ts=1669322597308 HTTP/1.1 
Host: q.quora.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Cookie: __cf_bm=VXj.sdHofRYyHLcECyNXKx0mO7.BqypYfbJx.pqhlCE-1669322597-0-AX22YN51grOvxecVx5h62KaOzTnKB5kZkf+F10ezwSWTDho4sDKIsya2Rr/lDHGJYiKYH2LDk4LyEMgTZxwQLrU=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         44.194.108.63
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,9f8ddbf0687d7310af6f95b4bbae7c89,10.0.0.28,24320,91.90.42.154,,80318511541,1,1669322598.036,0.002,,.,0,0,0.000,0.000,-,0,0,197,173,86,10,35796,,,,,,-,
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rev.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 54027
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rev.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 21:13:13 GMT
expires: Tue, 21 Nov 2023 21:13:13 GMT
cache-control: public, max-age=31536000
age: 257405
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Size:   46524
Md5:    c1fd378f54921c75e4ae1821e7b8fff6
Sha1:   2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
Sha256: 405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
                                        
                                            GET /css2?family=Open+Sans:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500;1,700&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rev.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 20:43:17 GMT
date: Thu, 24 Nov 2022 20:43:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1459
Md5:    4cbdc45127eeea06fecf7c6ea9a88fd7
Sha1:   57e479605ea689a004ff10a87647fe17d7e31a14
Sha256: 536a77a380f0bff9deeb2117703258f7fc0e96c779c07c0fa9404122b5392919
                                        
                                            GET /li.lms-analytics/insight.min.js HTTP/1.1 
Host: snap.licdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.121
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
                                        
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=19569
date: Thu, 24 Nov 2022 20:43:18 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12961)
Size:   4581
Md5:    c1a25b303b61b25e995516f5559bcdea
Sha1:   3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
Sha256: 2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3710
Cache-Control: max-age=97285
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637ea1ed-2d7"
Expires: Fri, 25 Nov 2022 23:44:43 GMT
Last-Modified: Wed, 23 Nov 2022 22:42:53 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 727

                                        
                                            POST /s/gts1d4/7oY8-EgWmNE HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 24 Nov 2022 20:41:08 GMT
expires: Thu, 24 Nov 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 130
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2730
Cache-Control: max-age=119323
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637efbd7-1d7"
Expires: Sat, 26 Nov 2022 05:52:01 GMT
Last-Modified: Thu, 24 Nov 2022 05:06:31 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /libs/mixpanel-2-latest.min.js HTTP/1.1 
Host: cdn.mxpnl.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.186.235.23
HTTP/2 200 OK
content-type: text/javascript
                                        
x-guploader-uploadid: ADPycdsc29Lnxq_CSpv5DZlIfEtaQqm7KTrAOSDEFmg_h_NlBvGfmxk0NPU6biDXvggxR_VVcjNJNe29jwMZBbUAU9NuvFVGs1BL
x-goog-generation: 1645129310876382
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17435
content-encoding: gzip
x-goog-hash: crc32c=PPVzJA==, md5=yqdiCH6ddc7MNLXWYmy3uQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 17435
access-control-allow-origin: *
server: UploadServer
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
date: Thu, 24 Nov 2022 20:39:23 GMT
expires: Thu, 24 Nov 2022 20:49:23 GMT
cache-control: public,max-age=600
age: 235
last-modified: Thu, 17 Feb 2022 20:21:50 GMT
etag: "caa762087e9d75cecc34b5d6626cb7b9"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (755)
Size:   17435
Md5:    caa762087e9d75cecc34b5d6626cb7b9
Sha1:   fcc68d485c2f42e0f880260c3e104cedf50d0d11
Sha256: dc0ec55efae4c1f0ff095cf05133cc835e1cc4ff7906d3b7a2d0d86789bfe145
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /bat.js HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.21.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: private,max-age=1800
content-length: 11421
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=04F71C477D93612E3BA70E217CC46073; domain=.bing.com; expires=Tue, 19-Dec-2023 20:43:18 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DAA61AFEF62A44D38E690F64DE7D91CC Ref B: OSL30EDGE0314 Ref C: 2022-11-24T20:43:18Z
date: Thu, 24 Nov 2022 20:43:18 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Size:   11421
Md5:    22e2e3226eb5ada04929a2e43307eeda
Sha1:   04615fa88f80567974bdeb0f103ca5909746ebd7
Sha256: 41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b
                                        
                                            GET /s/fs.js HTTP/1.1 
Host: edge.fullstory.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.201.112.186
HTTP/2 200 OK
content-type: application/javascript
                                        
x-guploader-uploadid: ADPycduWB855D_t5YSzSNQKpf4ntmNbVqanNNEeXmGsSWgdZtGdlOQJ3EexpUY6-vPi7m_ArA4Bh-_Bue0_9lcag5tbM3w
x-goog-generation: 1667940125290071
x-goog-metageneration: 1
x-goog-stored-content-encoding: br
x-goog-stored-content-length: 65803
content-encoding: br
x-goog-hash: crc32c=LkMtdQ==, md5=s8yJrhEHLJ7ntEP6piPg6Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 65803
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 24 Nov 2022 20:11:20 GMT
expires: Thu, 24 Nov 2022 21:11:20 GMT
cache-control: public, max-age=3600,no-transform
age: 1918
last-modified: Tue, 08 Nov 2022 20:42:05 GMT
etag: "b3cc89ae11072c9ee7b443faa623e0e9"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65410)
Size:   65803
Md5:    b3cc89ae11072c9ee7b443faa623e0e9
Sha1:   00a8279e679a5fb97dfc16860a1572094ff33f3b
Sha256: 0ac7e1b0178f6929b5aeb30c820f83a0101c6258415b280044955bad3974148c
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: EAl6tLulZzQ/p6WXtS3ca+DpeZW8oM0Fhy8ZZ0b0mOPbHEgvuLW9FCcAItaMaDDI2bTx5fdn/AdFk55QgFJxmA==
content-length: 27815
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 20:43:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   27815
Md5:    e68ceaeba1b99548159ea2952a6f7f9c
Sha1:   2a3ecb1e5245e8d296ccdcb1bc139b3119460e97
Sha256: fd4a418f0a67fc363fee8320bb7e11c4e5caa79325c6e80c7233d8f20e815f83
                                        
                                            GET /uwt.js HTTP/1.1 
Host: static.ads-twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.84.157
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Thu, 24 Nov 2022 20:43:18 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1679-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57596), with no line terminators
Size:   15375
Md5:    573e6a7f86f6f3063763360ef0672c01
Sha1:   b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
Sha256: 02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
                                        
                                            GET /pagead/viewthroughconversion/1007079899/?random=1669322597443&cv=11&fst=1669322597443&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&tiba=Sign%20In%20-%20Rev&auid=624272484.1669322597&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.194
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 20:43:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1055
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 20:58:18 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2361), with no line terminators
Size:   1055
Md5:    5eb70504daf28ac255817a8f2ee2852c
Sha1:   f66a4414a85cb88464e7ebd80cb59af0c9142d4a
Sha256: 9fcd7be35c02110183e49a4235c153283eb7472c7b660d302b4a5071609bd84f
                                        
                                            OPTIONS /partner/56622/domain/rev.com/token HTTP/1.1 
Host: cdn.linkedin.oribi.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.42
HTTP/2 200 OK
                                        
content-length: 0
date: Thu, 24 Nov 2022 02:04:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3HDGDGl2u1v4upZ8fUAG7iyTTU9O_qTMA0ZTrPe016hBR8TulKBHAQ==
age: 67138
X-Firefox-Spdy: h2

                                        
                                            GET /Content/img/rev/favicons/apple-touch-icon.png?v=RymW3lzQY9 HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=ZzmQUwFSilFVPxV8McWXtmUTkmVdLB8BkiHH6gDchfsyqp2kKHD3d0fE82MJ2fmWwL4yNu6klNzmTMDvhX6CQAo3luUtcMg28GvdcB98A4mQBuaQLBCzaVFQwIyL; AWSALBCORS=ZzmQUwFSilFVPxV8McWXtmUTkmVdLB8BkiHH6gDchfsyqp2kKHD3d0fE82MJ2fmWwL4yNu6klNzmTMDvhX6CQAo3luUtcMg28GvdcB98A4mQBuaQLBCzaVFQwIyL; __RequestVerificationToken=j6HR40X5QWqN3MRTzDG45iWxkJwGeulQleO96JY9zunHUZhQLk5Kh5gqoFDzd8fakbf8OknB31kYxz3XLXpxwgOInj01; ft_tz=0; _gcl_au=1.1.624272484.1669322597
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.36
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 3553
date: Thu, 24 Nov 2022 20:43:18 GMT
set-cookie: AWSALB=fDGWnru1wEJZl1eiE/q1hSb4em/IENJlleT5Wc4wU3vx2gAqr+Ssmoa10KsJ9G/oPC4CCuAhbNZbq4I1mAtxUqexfjVeHD0R0goj9PKSKStVRVEkNqmCqchH9w2w; Expires=Thu, 01 Dec 2022 20:43:18 GMT; Path=/ AWSALBCORS=fDGWnru1wEJZl1eiE/q1hSb4em/IENJlleT5Wc4wU3vx2gAqr+Ssmoa10KsJ9G/oPC4CCuAhbNZbq4I1mAtxUqexfjVeHD0R0goj9PKSKStVRVEkNqmCqchH9w2w; Expires=Thu, 01 Dec 2022 20:43:18 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Thu, 17 Nov 2022 00:58:45 GMT
accept-ranges: bytes
etag: "1d8fa1fbe3c9d61"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G22qZJAnxxSTv0ssjhUimTe67pBTaIN2KGFtYyCQ0vE67C1RR-FM0Q==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 180 x 180, 8-bit grayscale, non-interlaced\012- data
Size:   3553
Md5:    9d8e5b045b992041f44106b7f20ac51d
Sha1:   dc5635c2f00e3956c8cd4edddd71a1c9cf593037
Sha256: 21b18b9d67d4a16674df0a00c683a923f68905310e50852c22b1543557e04a84
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2730
Cache-Control: max-age=119323
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637efbd7-1d7"
Expires: Sat, 26 Nov 2022 05:52:01 GMT
Last-Modified: Thu, 24 Nov 2022 05:06:31 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3710
Cache-Control: max-age=97285
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637ea1ed-2d7"
Expires: Fri, 25 Nov 2022 23:44:43 GMT
Last-Modified: Wed, 23 Nov 2022 22:42:53 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 727

                                        
                                            GET /modules.e1bdbadbcc63daea6270.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.40
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 68720
date: Thu, 24 Nov 2022 08:09:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "53db6c810ee48127f87a9c79e206fc67"
last-modified: Thu, 24 Nov 2022 08:08:08 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: l1ctqHIEdHfFLc2k8BTMqBeTJBrU-qKR66DDL8oM6XVjMZcQkXNOvA==
age: 45252
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (48714)
Size:   68720
Md5:    53db6c810ee48127f87a9c79e206fc67
Sha1:   aa53e521ba10b23524afc519c6e6ba8d1eb5147c
Sha256: f89c4d3c17828a5c54ecc60f5107e2bfe92cb8b4622fb766fda6d1fca1c95fdd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/7oY8-EgWmNE HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E821136385B83549CF4661B8D084C5A14492719AA466DC7700045C62D1A538A6"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9647
Expires: Thu, 24 Nov 2022 23:24:05 GMT
Date: Thu, 24 Nov 2022 20:43:18 GMT
Connection: keep-alive

                                        
                                            GET /pagead/1p-user-list/1007079899/?random=1669322597443&cv=11&fst=1669320000000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&tiba=Sign%20In%20-%20Rev&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1862190655&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 20:43:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/1007079899/?random=1669322597443&cv=11&fst=1669320000000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&tiba=Sign%20In%20-%20Rev&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1862190655&rmt_tld=0&ipr=y HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 20:43:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /p/action/4078409.js HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.21.200
HTTP/2 204 No Content
                                        
cache-control: private,max-age=1800
set-cookie: MUID=23F4A4242DB9677A23E1B6422CEE66F6; domain=.bing.com; expires=Tue, 19-Dec-2023 20:43:18 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 04E815AB73554AB18CBDE62CE04DBEB1 Ref B: OSL30EDGE0314 Ref C: 2022-11-24T20:43:18Z
date: Thu, 24 Nov 2022 20:43:18 GMT
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /collect?v=2&fmt=js&pid=56622&time=1669322597898&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.42.14
HTTP/2 302 Found
                                        
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D56622%26time%3D1669322597898%26url%3Dhttps%253A%252F%252Fwww.rev.com%252Faccount%252Fauth%252Flogin%253FreturnUrl%253Dhttps%25253A%25252F%25252Fwww.rev.com%25252Ftranscript-editor%25252FEdit%25253Ftoken%25253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%252526loadFrom%25253DDocumentDeeplink%2526viewType%253DExpiredToken%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJuOby9ICIw1AAAAYSrYWhajdS63RwPT9E4a6Z0niaT9ebkybeaz8QtCZMQkIx1cSIex7jvGV5Zrw; Max-Age=2592000; Expires=Sat, 24 Dec 2022 20:43:18 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure AnalyticsSyncHistory=AQL-ObTdHBrqngAAAYSrYWhaPYoQH6qX40-Nmy-tVHROU1KgQorariuZ95VuHF_VD8S6Xps4wEq_ryelbG-ISQ; Max-Age=2592000; Expires=Sat, 24 Dec 2022 20:43:18 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&a461478b-f276-49ae-88c8-dca27bb2efca"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 24-Nov-2023 20:43:18 GMT; SameSite=None lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2419:u=1:x=1:i=1669322598:t=1669408998:v=2:sig=AQF3xncH6iMvKzv4Fs1QIrxsB6re1Js2"; Expires=Fri, 25 Nov 2022 20:43:18 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXuPXR/dju/lYuMWzNtRA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: EB0691B67F984B50BEC0CBA5E5890901 Ref B: OSL30EDGE0122 Ref C: 2022-11-24T20:43:18Z
date: Thu, 24 Nov 2022 20:43:18 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /ads/pixel.js HTTP/1.1 
Host: www.redditstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.140
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 07 Nov 2022 16:45:46 GMT
etag: "3528fd00b652f61a266eb584d96f4fcc"
cache-control: public, max-age=60
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 24 Nov 2022 20:43:18 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25224)
Size:   7722
Md5:    3528fd00b652f61a266eb584d96f4fcc
Sha1:   d89e16aa1323c6c4f1ed3941122020684a599361
Sha256: 77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332
                                        
                                            POST /s/gts1d4/H52z8kwlIbA HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1 
Host: vars.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.118
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hskHa5Gu6bh3wTHbBXjVODZX3B7Tdk3VO2wO5tN6FZW2j9xOW5c9Yg==
age: 113592
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size:   1035
Md5:    e0652b84b7b3b650769c759fc520c3f8
Sha1:   0b55d6e28613350c7f41b88f19e726e6751ad03b
Sha256: 94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4218
Cache-Control: max-age=126261
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637f1121-117"
Expires: Sat, 26 Nov 2022 07:47:39 GMT
Last-Modified: Thu, 24 Nov 2022 06:37:21 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5923
Cache-Control: max-age=147005
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637f5b80-13a"
Expires: Sat, 26 Nov 2022 13:33:23 GMT
Last-Modified: Thu, 24 Nov 2022 11:54:40 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 314

                                        
                                            GET /21451281.js HTTP/1.1 
Host: js.hs-banner.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.33.171
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
date: Thu, 24 Nov 2022 20:43:18 GMT
x-amz-id-2: DxFKsPFo6A7NQGoUk2s/3mIkmfjVCx0ebvlnA6lN3A57ynVGTM8ORkZoi4Z+boMQqvDTmJao4qs=
x-amz-request-id: WY55T450VCW086WR
last-modified: Tue, 25 Oct 2022 23:00:58 GMT
etag: W/"b9c047860d21bc3177c6f438d52d3299"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: 5gySMbMv.nEYkSe1hM8TRef_ngJcepv8
access-control-allow-origin: https://www.rev.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Thu, 24 Nov 2022 20:46:26 GMT
cf-cache-status: HIT
age: 112
server: cloudflare
cf-ray: 76f4f9e1ed971c16-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (60033)
Size:   15316
Md5:    dedc8f465e08c60a709bf1f3ba0c3f71
Sha1:   21067ed1d1735a4daccd0271d74bee4173b8f1c6
Sha256: d9b85f20ebad49a8e30823b087cc05e34e6fb5160e136c2aa66a1720d8dc4027
                                        
                                            GET /A3461866-f171-406d-97bd-3eec5071f77f1.js HTTP/1.1 
Host: utt.impactcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.186.249.72
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
x-guploader-uploadid: ADPycdvAbRQ6bx3JO4UssMtoJmjFNlnajSNS3rUOwSiJ8dbTw1OXFb2uiIVz9HCRFddxjtcVzCz3e2-vV0YxHb2JSQfnCQ
x-goog-generation: 1668808035096983
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13116
content-encoding: gzip
x-goog-hash: crc32c=Wh2iug==, md5=xuhZ4v/lveqILnk5eqbg3w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 13116
server: UploadServer
date: Thu, 24 Nov 2022 20:43:18 GMT
expires: Thu, 24 Nov 2022 20:48:18 GMT
cache-control: public,max-age=900,s-maxage=300
last-modified: Fri, 18 Nov 2022 21:47:15 GMT
etag: "c6e859e2ffe5bdea882e79397aa6e0df"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (42298), with no line terminators
Size:   13116
Md5:    c6e859e2ffe5bdea882e79397aa6e0df
Sha1:   1576b07b23ca5a68096f781750cbfe46dc6126be
Sha256: cb7ba591091147c56f971d0c41b15da7dbbdbc3c1a4c2e8a9fef547fdbff52a4
                                        
                                            POST /rec/page HTTP/1.1 
Host: rs.fullstory.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: text/plain
Content-Length: 444
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.186.194.58
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://www.rev.com
content-encoding: gzip
date: Thu, 24 Nov 2022 20:43:18 GMT
content-length: 1429
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (4470)
Size:   1429
Md5:    ed0cf1d31f367b435bcb5d482b63b664
Sha1:   0ead20df41a05e8fb91ce46c06c3061eff39ee81
Sha256: a1f7758c227325fda707547398a298589021a3094ec1c252e0af26603fa10b5a
                                        
                                            GET /Content/img/rev/favicons/favicon-16x16.png?v=RymW3lzQY9 HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=ZzmQUwFSilFVPxV8McWXtmUTkmVdLB8BkiHH6gDchfsyqp2kKHD3d0fE82MJ2fmWwL4yNu6klNzmTMDvhX6CQAo3luUtcMg28GvdcB98A4mQBuaQLBCzaVFQwIyL; AWSALBCORS=ZzmQUwFSilFVPxV8McWXtmUTkmVdLB8BkiHH6gDchfsyqp2kKHD3d0fE82MJ2fmWwL4yNu6klNzmTMDvhX6CQAo3luUtcMg28GvdcB98A4mQBuaQLBCzaVFQwIyL; __RequestVerificationToken=j6HR40X5QWqN3MRTzDG45iWxkJwGeulQleO96JY9zunHUZhQLk5Kh5gqoFDzd8fakbf8OknB31kYxz3XLXpxwgOInj01; ft_tz=0; _gcl_au=1.1.624272484.1669322597
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.36
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 755
date: Thu, 24 Nov 2022 20:43:18 GMT
set-cookie: AWSALB=g78KfQg3u+olifvigIt79dteDasioiW2uKrEVPFhicmJ3IXIJtTo1v0Uby4V6juhHuJhOmZrYuch66Qbt5RDmPIeDJJ7Ty8gCBrhuR0AS6JONRC1B3CUzlo2hrhJ; Expires=Thu, 01 Dec 2022 20:43:18 GMT; Path=/ AWSALBCORS=g78KfQg3u+olifvigIt79dteDasioiW2uKrEVPFhicmJ3IXIJtTo1v0Uby4V6juhHuJhOmZrYuch66Qbt5RDmPIeDJJ7Ty8gCBrhuR0AS6JONRC1B3CUzlo2hrhJ; Expires=Thu, 01 Dec 2022 20:43:18 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Thu, 17 Nov 2022 00:58:45 GMT
accept-ranges: bytes
etag: "1d8fa1fbe3c9273"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: b6L3UminwJFKL_kbvBk4zvv2e1BHEM4IpY3Lp35eciJ-PFoIf-qsyA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced\012- data
Size:   755
Md5:    77c410041b33524816376d276b1f1015
Sha1:   35aba8406bfc07044581909c29977d8dd0a546bf
Sha256: f97d4d141e2363115a9d80c86df09125b71a6c5cee54204c9ab3ae037ceca7e8
                                        
                                            POST /s/gts1d4/H52z8kwlIbA HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /i/adsct?bci=3&eci=2&event_id=4a41846e-6675-4e4a-b571-f5834b3388df&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=f7c13ab6-e74f-4768-83ea-60115bc6c719&tw_document_href=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxh9s&type=javascript&version=2.3.29 HTTP/1.1 
Host: t.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.244.42.133
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:17 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=bdd889e8-7d95-4c4f-add6-ae3cb760436b; Max-Age=63072000; Expires=Sat, 23 Nov 2024 20:43:18 GMT; Path=/; Domain=t.co; Secure; SameSite=None
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: dfb7c96c2dfed7ef
strict-transport-security: max-age=0
x-response-time: 111
x-connection-hash: 6e56a7016c99269b079ca9224a859a74516d5cb20a2b7fc90d3f9eed19711961
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E821136385B83549CF4661B8D084C5A14492719AA466DC7700045C62D1A538A6"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9647
Expires: Thu, 24 Nov 2022 23:24:05 GMT
Date: Thu, 24 Nov 2022 20:43:18 GMT
Connection: keep-alive

                                        
                                            OPTIONS /cookie-banner-public/v1/activity/view HTTP/1.1 
Host: js.hs-banner.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.33.171
HTTP/2 200 OK
content-type: application/octet-stream
                                        
date: Thu, 24 Nov 2022 20:43:18 GMT
content-length: 0
access-control-allow-origin: https://www.rev.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76f4f9e24d59b521-OSL
X-Firefox-Spdy: h2

                                        
                                            POST /11063/pageInfo HTTP/1.1 
Host: www.mczbf.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: application/x-www-form-urlencoded
Origin: https://www.rev.com
Content-Length: 454
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.112
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 68
Connection: keep-alive
Date: Thu, 24 Nov 2022 20:43:18 GMT
X-Request-ID: a0b888fd-6c38-11ed-877e-2b3625547dac
Server: nginx
Access-Control-Allow-Origin: *
Cache-Control: no-store
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mkNGwF8DTqN1CjDOSxEXRoiWaSXV6TwnptQ_sRUvw1ijbJ5_u1HK9g==


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size:   68
Md5:    91e42db1c66c0b276abf6234dc50b2eb
Sha1:   c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
Sha256: 63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4072
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 20:43:19 GMT
Last-Modified: Thu, 24 Nov 2022 19:35:27 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /action/0?ti=4078409&Ver=2&mid=76d4dc55-456d-4df1-877b-0433155493fb&sid=a04b81206c3811edb8250d13a11f5f01&vid=a04b80d06c3811edab629f7b3a9642ea&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Sign%20In%20-%20Rev&p=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&r=&lt=3321&evt=pageLoad&sv=1&rn=421344 HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.21.200
HTTP/2 204 No Content
                                        
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2787F547520368502DC1E72153546948; domain=.bing.com; expires=Tue, 19-Dec-2023 20:43:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: AF69036264534B6C9C147E5DBA6C24AF Ref B: OSL30EDGE0314 Ref C: 2022-11-24T20:43:19Z
date: Thu, 24 Nov 2022 20:43:18 GMT
X-Firefox-Spdy: h2

                                        
                                            POST /cookie-banner-public/v1/activity/view HTTP/1.1 
Host: js.hs-banner.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: application/json
Content-Length: 133
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.33.171
HTTP/2 204 No Content
                                        
date: Thu, 24 Nov 2022 20:43:19 GMT
x-trace: 2B977ADE6C1C8ECE7E11545858CDF31331CDA1BC4B8FA1A242683EF24C01
x-hubspot-correlation-id: b0ff707c-e0e3-4627-ba6c-6f0ca00b3b43
access-control-allow-origin: https://www.rev.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76f4f9e31ec3b521-OSL
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3172
Cache-Control: max-age=98891
Date: Thu, 24 Nov 2022 20:43:19 GMT
Etag: "637eaa4e-139"
Expires: Sat, 26 Nov 2022 00:11:30 GMT
Last-Modified: Wed, 23 Nov 2022 23:18:38 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313

                                        
                                            GET /tr/?id=658102074251173&ev=PageView&dl=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&rl=&if=false&ts=1669322598336&sw=1280&sh=1024&v=2.9.89&r=canary&a=seg&ec=0&o=30&ttf=2526&tts=2232&ttse=2523&fbp=fb.1.1669322598335.1847718954&it=1669322598047&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 24 Nov 2022 20:43:19 GMT
X-Firefox-Spdy: h2

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-18309154-6&cid=2080446928.1669322598&jid=535590234&gjid=83732982&_gid=783153936.1669322598&_u=YEBAAEAAAAAAACAAI~&z=1098804198 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.150.156
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.rev.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 24 Nov 2022 20:43:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            GET /sessions/1164326?s=0.25&r=0.12488381161706863 HTTP/1.1 
Host: vc.hotjar.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.64
HTTP/2 204 No Content
                                        
access-control-allow-origin: *
cache-control: no-store
date: Thu, 24 Nov 2022 20:43:19 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Oi947WPG9IFfDf9UIAApiVgl6ps5VpLAjS0h-nihCeQhSPWb9_gAqA==
X-Firefox-Spdy: h2

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-18309154-6&cid=2080446928.1669322598&jid=450796942&gjid=2000386667&_gid=783153936.1669322598&_u=aGDAAEABQAAAACAAI~&z=117288334 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.150.156
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.rev.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 24 Nov 2022 20:43:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            GET /rp.gif?ts=1669322598345&id=t2_3w91srwk&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=108a9a21-8a5e-4bd6-bae1-5a3504d1a9fe&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1 
Host: alb.reddit.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.140
HTTP/2 200 OK
content-type: image/gif
                                        
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Thu, 24 Nov 2022 20:43:19 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D56622%26time%3D1669322597898%26url%3Dhttps%253A%252F%252Fwww.rev.com%252Faccount%252Fauth%252Flogin%253FreturnUrl%253Dhttps%25253A%25252F%25252Fwww.rev.com%25252Ftranscript-editor%25252FEdit%25253Ftoken%25253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%252526loadFrom%25253DDocumentDeeplink%2526viewType%253DExpiredToken%26liSync%3Dtrue HTTP/1.1 
Host: www.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.42.14
HTTP/2 302 Found
                                        
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=56622&time=1669322597898&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None bcookie="v=2&aac90ccc-8b2b-49cd-8438-de2473d2df7c"; Domain=.linkedin.com; Expires=Fri, 24-Nov-2023 20:43:19 GMT; Path=/; Secure; SameSite=None bscookie="v=1&202211242043194f5a403a-3641-4728-8835-804a4af700c7AQES8AG-XBRVuF3fHAJi0ZznMGi-4zm3"; Domain=.www.linkedin.com; Expires=Fri, 24-Nov-2023 20:43:19 GMT; Path=/; HttpOnly; Secure; SameSite=None li_gc=MTswOzE2NjkzMjI1OTk7MjswMjGli1enONwIcRNyCVWoWzApe094z3ToVMTr999bnHy2zA==; Domain=.linkedin.com; Expires=Tue, 23 May 2023 20:43:19 GMT; Path=/; Secure; SameSite=None lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2377:u=1:x=1:i=1669322599:t=1669408999:v=2:sig=AQE9ErzlGtDl0LADW3GAFogpA9dXAuqD"; Expires=Fri, 25 Nov 2022 20:43:19 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXuPXSI8/186MrbzPvuIA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 0D21D042885D490AA37BE0485A2D82AF Ref B: OSL30EDGE0122 Ref C: 2022-11-24T20:43:19Z
date: Thu, 24 Nov 2022 20:43:19 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /i/adsct?bci=3&eci=2&event_id=4a41846e-6675-4e4a-b571-f5834b3388df&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=f7c13ab6-e74f-4768-83ea-60115bc6c719&tw_document_href=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxh9s&type=javascript&version=2.3.29 HTTP/1.1 
Host: analytics.twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.244.42.195
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:18 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_c2XTY43J4pKyn8B/RSgA6A=="; Max-Age=63072000; Expires=Sat, 23 Nov 2024 20:43:19 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 207f56e0c5ae4212
strict-transport-security: max-age=631138519
x-response-time: 116
x-connection-hash: 2dbad8d93f32da0290f0c4ae7d1de5fcf11b94ab45a2d32bf1596ce359347b1d
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            POST /g/collect?v=2&tid=G-6P9JYJWB5F&gtm=2oeb90&_p=415033085&cid=2080446928.1669322598&ul=en-us&_rdi=1&_geo=1&_s=1&sid=1669322598&sct=1&seg=0&dl=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&dt=Sign%20In%20-%20Rev&en=page_view&_fv=1&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://www.rev.com
date: Thu, 24 Nov 2022 20:43:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /collect?v=2&fmt=js&pid=56622&time=1669322597898&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&liSync=true HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.42.14
HTTP/2 200 OK
content-type: application/javascript
                                        
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&f9823ba0-a298-457d-8b51-d3ad99b5d695"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 24-Nov-2023 20:43:19 GMT; SameSite=None lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2419:u=1:x=1:i=1669322599:t=1669408999:v=2:sig=AQEIwGmEzz4dGub9wsg7BEyuvablDKt3"; Expires=Fri, 25 Nov 2022 20:43:19 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXuPXSL44Ch9nPZnd9Kpg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 1F8FB62DCA0B443AA2D20C8FDD6797C2 Ref B: OSL30EDGE0122 Ref C: 2022-11-24T20:43:19Z
date: Thu, 24 Nov 2022 20:43:19 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.41
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Thu, 24 Nov 2022 20:43:19 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 24 Nov 2022 20:01:14 GMT
Expires: Fri, 25 Nov 2022 20:01:14 GMT
ETag: "f6f022ea485408cc542faf497d22f4ca52d81f39"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    b48287c33e019a23450d718ddadf8d36
Sha1:   f6f022ea485408cc542faf497d22f4ca52d81f39
Sha256: e86f3b53683988f43addb83372c5ca24ce667f7adcffacb7ba64dfc93bb4966f
                                        
                                            POST /s/gts1d4/S_oXU3H4Jpc HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/S_oXU3H4Jpc HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/S_oXU3H4Jpc HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /data/guide.gif/dab970e7-a0d4-4e86-407e-3536dbfcc619?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1669322599357&v=2.161.1_prod HTTP/1.1 
Host: data.pendo.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.107.204.85
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 24 Nov 2022 20:43:19 GMT
content-length: 42
access-control-allow-credentials: false
access-control-allow-headers: Origin,Accept,Content-Type,Authorization
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 600
x-content-type-options: nosniff
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /s/gts1d4/S_oXU3H4Jpc HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /data/ptm.gif/dab970e7-a0d4-4e86-407e-3536dbfcc619?v=2.161.1_prod&ct=1669322599346&jzb=eJxNkeFvmzAQxf8XS-xTUhoMJESqpnYQWmUjWZtm2aYJUXIJDmDT44CUqv97nayaJvmD7-7d89PPv18ZvVTApqxQyZYN2BOqrgaMSZS6O3Jdj1uW43l85AxYK2pBCmOx1QvxMoj8RbyKL53FfN0_d9He0QZJmqpG0lkjm6IYsAYLLc-Iqnpqml3XXSC0F6kqzQ-tmTSUmYXaC_kZgRqUj1hcnRcMfm1YM33-W9MVYSLrFEVFQ9ieIuleoC8Gn5HKQRrc79Od12Tl_Rcvv3v4qqKDTeIGyOrxfj2chyLMw3BjZztl93P_2I_bMR8f2tlOHvJl_v2xjbqSRj--HZtgEnAHlf-rtcr5Tz8bdoblnmjNUGfhvq_SpgRJPkBVCJl_agV0Kw31KjhWAmG7OiXSZCpUVc2mr2fUH4C57U3e9ChB7bBKnu7-UaO_BQu4ezPO4BpuJahNWGmjHSYlnIe3D_u1W1rZ8-QyWC64e_rAFwL9iu3ab3_eAZr4oPE HTTP/1.1 
Host: data.pendo.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.107.204.85
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 24 Nov 2022 20:43:20 GMT
content-length: 42
access-control-allow-credentials: false
access-control-allow-headers: Origin,Accept,Content-Type,Authorization
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 600
x-content-type-options: nosniff
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1419
Cache-Control: max-age=163786
Date: Thu, 24 Nov 2022 20:43:20 GMT
Etag: "637faea8-118"
Expires: Sat, 26 Nov 2022 18:13:06 GMT
Last-Modified: Thu, 24 Nov 2022 17:49:28 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:20 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 13:02:17 GMT
Expires: Mon, 28 Nov 2022 13:02:16 GMT
Etag: "8381ef4efe9812d88e0a7b21a4e2eb62525acb86"
Cache-Control: max-age=317335,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f4f9ea5b821c0a-OSL

                                        
                                            GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=21451281&rcu=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin&pu=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&t=Sign+In+-+Rev&cts=1669322599323&vi=d482893c7fc36e70e91b224568e03a70&nc=true&ce=false&pt=1&cc=0 HTTP/1.1 
Host: track.hubspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.19.155.83
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 24 Nov 2022 20:43:20 GMT
content-length: 45
cf-ray: 76f4f9eb7f36b4fa-OSL
cache-control: no-cache, no-store, no-transform
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
p3p: CP="NOI CUR ADM OUR NOR STA NID"
x-hubspot-correlation-id: f74fb566-43ea-4017-8f5f-186e1f42b1ab
x-robots-tag: none
set-cookie: __cf_bm=3piFazOK2afYjrqwpfRsJe6Z3YmELaILv457vrE8tS8-1669322600-0-AUByCr/DB7oXCjRmUuhdszl7VXc6CHs2QqCLSjMtWHK37XScjK7oje/D3+d6WCshqloltbg69UJLLn6MqnReS1E=; path=/; expires=Thu, 24-Nov-22 21:13:20 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9jT3WTMFzsCyvxZmdz97R%2FgamLo8AyV8BUu2YpnoH3ITRuyb7hKX9KdXssyPzI0N6zOpWPipqh5qx9FvRplh15VL8hfoX2Lkr4%2Bc1l6yxEpindePBVP%2FkZCfb6hUVyKmnAd7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   45
Md5:    c8817d472077ebfc04593c1fa019d32d
Sha1:   e1e86f41c86c7b9cd2e8b76c6a925a1a3e7e3247
Sha256: dc111a70984a9eda00752b06277113029ef288f1125c31eff2477413e15e8aa4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1419
Cache-Control: max-age=163786
Date: Thu, 24 Nov 2022 20:43:20 GMT
Etag: "637faea8-118"
Expires: Sat, 26 Nov 2022 18:13:06 GMT
Last-Modified: Thu, 24 Nov 2022 17:49:28 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /is HTTP/1.1 
Host: 44.228.85.26
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         44.228.85.26
HTTP/1.1 200 OK
content-type: text/plain;charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-length: 32
x-envoy-upstream-service-time: 0
server: istio-envoy
connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   32
Md5:    55577d3431e2d4579d512064382ca5cd
Sha1:   03f1d9a41f4ed75473ef472b083f67c38f53ffc3
Sha256: a1acc63831d4672d159b4245615e038a8532f98c70409ff90eb7960db1c99737

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /data/guide.js/dab970e7-a0d4-4e86-407e-3536dbfcc619?id=4&jzb=eJxNkG-vmjAYxb8LCXullw10ThOzuBXYDRs6p-7PG9PAg1RKy8rT4lj87ta7aUz64jkn5zQnv7-OYS1DqZ5zZ-bsV2FKlvvN_vV4mez63116GDsDh2aZ1AKvEaE5HzhacZsuEZt25nld1z0pME-ZrL3_UY9qLD0uD0y8V4Baia3i85eCGyxcP7LvoWYVKiraTLEGh5BfB1kvtIcbRCgrEG5A-qyY6rJef5xWz98-y_Q4QvYB0O_VejdMYhZXcfxjVBZy1Cfk1E_MJJgcTVSIY7Wqvm5N2tX45vuXkw7fhcFYSfLL-HXyk5TDzvXfcknzSNktASEy0zUIJAANZ6J6ZRh0mz8NzMNTwxTkm-siC6YGpDlF6szuHO15vhP7Jxqq7GeLR8uW4AbTgGqZFDfZAi8-yRbB0i4ob-F8vgDmw5RF&v=2.161.1_prod&ct=1669322599355 HTTP/1.1 
Host: data.pendo.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.107.204.85
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 24 Nov 2022 20:43:19 GMT
vary: Accept-Encoding
access-control-allow-credentials: false
access-control-allow-headers: Origin,Accept,Content-Type,Authorization
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 600
x-content-type-options: nosniff
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   6039
Md5:    e0f9a118c59186cbab2ad2fb40b51964
Sha1:   a94c2e0ae9768341406217c0a0693515acebc61b
Sha256: ba666645d6999255ed0b48445d5a79834215080270798046d968751bfcdca59e
                                        
                                            POST /gsgccr3dvtlsca2020 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:22 GMT
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 28 Nov 2022 18:58:28 GMT
ETag: "41e54d9a450bd36cce2eea6cabf225d41f9de765"
Last-Modified: Thu, 24 Nov 2022 18:58:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2226
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f4f9fafad7b511-OSL


--- Additional Info ---
Magic:  data
Size:   1414
Md5:    c86b407b666386507cbbf5d5e28414f1
Sha1:   41e54d9a450bd36cce2eea6cabf225d41f9de765
Sha256: 00c60636ec6508b0344d6e2b1392d5654539735e3c56afb8909d34d7695e03d0
                                        
                                            GET /partner/56622/domain/rev.com/token HTTP/1.1 
Host: cdn.linkedin.oribi.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: application/json
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.42
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 24 Nov 2022 20:09:18 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MgAOKyGpzhJeXuIgz3go8Zz_-eDpjBKLK36t4RnDtehXFtB6WTGZ7w==
age: 2040
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /c/hotjar-1164326.js?sv=7 HTTP/1.1 
Host: static.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.98
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Thu, 24 Nov 2022 20:43:12 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/9f1e657a2c7f747942a3383200d921fb
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dT-LYLNLsrHAyolD6eS3lpFNih-1v0PjHunZBx_or40cRgCtRqmh9A==
age: 6
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /21451281.js HTTP/1.1 
Host: js.hs-scripts.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.213.204
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:18 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.rev.com
access-control-max-age: 3600
cache-control: public, max-age=60
cf-bgj: minify
cf-polished: origSize=968
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 99d4960d-698e-40ad-b4b9-ce60a24dddd4
x-trace: 2B55FCF0553D42602FFDBBE4F99A631F5C3D7F22E9000000000000000000
last-modified: Thu, 24 Nov 2022 20:43:12 GMT
cf-cache-status: HIT
age: 0
expires: Thu, 24 Nov 2022 20:44:18 GMT
server: cloudflare
cf-ray: 76f4f9e14f70b523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /st?ga_tracking_id=UA-18309154-6&ga_client_id=2080446928.1669322598&shpt=Sign%20In%20-%20Rev&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-18309154-6%22%2C%22ga_client_id%22%3A%222080446928.1669322598%22%2C%22shpt%22%3A%22Sign%20In%20-%20Rev%22%2C%22dcm_cid%22%3A%22undefined.undefined%22%2C%22dcm_gid%22%3A%22783153936.1669322598%22%2C%22mntnis%22%3A%22DnY9p%2Bdmk077EhRcTscD%2ByMgoXjRMzkF%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=undefined.undefined&dcm_gid=783153936.1669322598&dxver=4.0.0&shaid=32131&plh=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253Dzcf9uhmRC9kISLoNj4tiBet2zrRV-KGiGkGGX4hfo4zKDxz7v737jvFfnjkPkQUvNwmt1WMxuE8E35roDZv2mKYDh-w%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&shadditional=multiple_conv_types%3Dtrue%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue&cb=1669322601113768&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1669322601823 HTTP/1.1 
Host: px.steelhousemedia.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.245.46.233
HTTP/1.1 200 OK
content-type: application/javascript;charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:22 GMT
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: rt=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;Domain=steelhousemedia.com;Max-Age=63113852;Path=/;SameSite=None;Secure guid=35b0bce9-d250-329d-b012-c0426f88d0bd;Domain=steelhousemedia.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close


--- Additional Info ---
                                        
                                            GET /qevents.js HTTP/1.1 
Host: a.quora.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.159.152.17
HTTP/2 200 OK
content-type: text/plain
                                        
date: Thu, 24 Nov 2022 20:43:17 GMT
x-amz-id-2: jHbk68zF0oCrN99I6TpiQ8LNg0dDTKL0BkbZQKZkL1zB85BMiiIcpjSQWNebJHGDeWUqTCN88Lg=
x-amz-request-id: 4K18RXATE8CH2H8E
last-modified: Fri, 18 Mar 2022 00:16:52 GMT
etag: W/"47078e63380c6b0cbbfb6d8508b25ee7"
x-amz-meta-s3cmd-attrs: atime:1647562609/ctime:1647562609/gid:150037/gname:ezhang/md5:47078e63380c6b0cbbfb6d8508b25ee7/mode:33204/mtime:1647562609/uid:150037/uname:ezhang
cache-control: public, max-age=14400
x-amz-version-id: vyBstMTGyA6m5sV66zq8xsypUg.tAOk.
cf-cache-status: HIT
age: 9735627
expires: Fri, 25 Nov 2022 00:43:17 GMT
set-cookie: __cf_bm=VXj.sdHofRYyHLcECyNXKx0mO7.BqypYfbJx.pqhlCE-1669322597-0-AX22YN51grOvxecVx5h62KaOzTnKB5kZkf+F10ezwSWTDho4sDKIsya2Rr/lDHGJYiKYH2LDk4LyEMgTZxwQLrU=; path=/; expires=Thu, 24-Nov-22 21:13:17 GMT; domain=.quora.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f4f9db5ad6b4f1-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /c/hotjar-1164326.js?sv=6 HTTP/1.1 
Host: static.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.98
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Thu, 24 Nov 2022 20:43:12 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/9f1e657a2c7f747942a3383200d921fb
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f5OTseLDGpiU1c95VF7xvp1Nw3a9uJ3rlevNplgll_74_XjuHa9uQQ==
age: 6
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css2?family=Lora:ital,wght@0,400;0,700;1,400;1,700&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rev.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 20:43:17 GMT
date: Thu, 24 Nov 2022 20:43:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /analytics/1669322400000/21451281.js HTTP/1.1 
Host: js.hs-analytics.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.69.176
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 24 Nov 2022 20:43:19 GMT
x-amz-id-2: vPaRVTZBm3u4p6EUxHxYJyi6DJhC98ZvkbZOBd6R/Hgty+9frqoYB40SdKu5/5Y32zYu/U2zATctih3qL7pWdQ==
x-amz-request-id: H5CWB89168BF2XEH