Report - brandedmedia.io/

Report Overview

Submitted URL
brandedmedia.io/
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2023-03-30 00:31:01
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	946 B	54.230.245.118
ocsp.r2m01.amazontrust.com	unknown	2022-10-12T22:43:53Z	2023-03-31T21:26:28Z	700 B	60 kB	54.230.80.227
trackcmp.net	8111	2014-05-09T06:45:07Z	2023-04-01T04:42:30Z	409 B	643 B	172.64.145.151
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-31T21:42:43Z	1.2 kB	109 kB	142.250.74.78
www.clickfunnels.com	51002	2014-10-08T22:01:35Z	2023-03-31T15:17:15Z	554 B	568 B	104.18.39.181
s3.amazonaws.com	unknown	2020-05-13T22:53:44Z	2023-04-01T00:00:52Z	404 B	11 kB	52.216.140.102
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-31T22:03:32Z	381 B	61 kB	142.250.74.168
app.clickfunnels.com	34727	2015-03-12T09:40:23Z	2023-03-30T21:19:12Z	381 B	680 B	104.16.14.194
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-31T18:14:44Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-31T18:18:04Z	413 B	5.9 kB	34.160.144.191
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-31T20:44:48Z	4.4 kB	184 kB	142.250.74.35
app.paykickstart.com	321576	2016-10-07T21:27:41Z	2023-03-25T09:26:32Z	838 B	2.0 kB	54.230.111.106
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-31T18:12:04Z	3.0 kB	8.0 kB	23.36.76.226
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-31T20:23:24Z	2.3 kB	4.3 kB	142.250.74.106
clickfunnels-assets.s3.amazonaws.com	unknown	2022-10-26T03:42:08Z	2023-03-30T13:49:27Z	387 B	4.5 kB	52.216.222.161
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-31T21:56:16Z	682 B	711 kB	192.229.221.95
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-31T18:12:05Z	373 B	327 kB	157.240.205.11
www.google.com	7	2015-05-10T13:11:19Z	2023-03-31T20:35:26Z	679 B	641 B	142.250.74.132
brandedmedia.io	unknown	2018-08-21T17:18:24Z	2023-03-29T06:31:45Z	792 B	2.1 kB	188.114.97.1
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-31T18:13:52Z	606 B	238 B	34.117.65.55
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	619 B	349 B	157.240.205.35
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-31T18:12:09Z	333 B	391 B	34.117.237.239
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-31T22:08:04Z	678 B	641 B	216.58.207.227
s.w.org	748	2017-01-30T05:56:16Z	2023-03-31T07:54:55Z	402 B	1.8 kB	192.0.77.48
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-31T21:58:31Z	673 B	2.0 kB	142.250.74.66
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-31T18:12:03Z	6.2 kB	1.2 MB	142.250.74.131
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-31T07:51:33Z	3.8 kB	115 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-30	medium	brandedmedia.io/	Malware
2023-03-30	medium	brandedmedia.io/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (40)

	URL	Size	First Seen	Last Seen
	brandedmedia.io/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL brandedmedia.io/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 22:30:21 Times Seen68500 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	brandedmedia.io/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-19
Pretty URL brandedmedia.io/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 20:39:52 Times Seen37996 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	brandedmedia.io/	104 B	2023-03-07	2024-04-19
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-04-19 15:12:07 Times Seen4272 Hash 3217923b47c3b4f1720c42f8cc99b87f 951a09e9e5b98a7ac8d114e42a743e5d41cb5dfb 39aa079dbe6286ef5a74421f2ca2a4d1b8f13b1c1506e51f0635a2c434b1b286 Loading...

	brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/post-grid-compat.min.js?v=3.17.1&ver=3.17.1	1.4 kB	2023-03-13	2024-01-25
Pretty URL brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/post-grid-compat.min.js?v=3.17.1&ver=3.17.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:30:08 Last Seen2024-01-25 08:52:31 Times Seen48 Hash c13ee6e0d2bbf9c8cb68663ca0b77486 d414a41cf05f25455bcd10aa511d06528958f231 7c992648620a50a4cf38839e583b63e2ea5f3084db1527d16443528247ef1c06 Loading...

	brandedmedia.io/wp-includes/js/masonry.min.js?ver=4.2.2	24 kB	2023-03-07	2024-04-19
Pretty URL brandedmedia.io/wp-includes/js/masonry.min.js?ver=4.2.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-04-19 19:42:48 Times Seen15202 Hash 3b3fc826e58fc554108e4a651c9c7848 76778fd446e2ff2377588a7b4ac4d79f258427c9 e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb Loading...

	brandedmedia.io/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-18
Pretty URL brandedmedia.io/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-18 13:42:00 Times Seen30936 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5HJNHV5	158 kB	2023-04-01	2023-04-01
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5HJNHV5 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:31:54 Last Seen2023-04-01 10:31:54 Times Seen1 Hash 5ac3881bbcc1a875d408739a962228cc 6a3d17fb0155659bf647481a977bb351bff61566 3f831d61e51948aa34d7f91da7c3e41642ae929398895cd344b572007377e219 Loading...

	brandedmedia.io/wp-content/themes/thrive-theme/thrive-dashboard/js/dist/frontend.min.js?ver=3.30.1	2.0 kB	2023-03-08	2024-04-07
Pretty URL brandedmedia.io/wp-content/themes/thrive-theme/thrive-dashboard/js/dist/frontend.min.js?ver=3.30.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:46 Last Seen2024-04-07 00:11:12 Times Seen309 Hash 2284a91d0f0ed760c51bb3030ff28ccc 62e2dc31436ac1c810b551afd2f4d7751c87cf09 e8522aa52369b8db91bd2c9aaadaab736bd4bc83f2e9b5441ec476344b736999 Loading...

	brandedmedia.io/	553 B	2023-03-07	2023-05-14
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:55:12 Last Seen2023-05-14 02:31:09 Times Seen3 Hash 1db971792bcf0e58e6d6897ed5fe92bc ef706eb31fd3e6105769510d1826056c88ec1047 a9969fd32352ff4927bba1431f9ffb843cfd6dc7139ea647f6234de3af6c3ba3 Loading...

	brandedmedia.io/	1.5 kB	2023-04-01	2023-04-01
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:31:54 Last Seen2023-04-01 10:31:54 Times Seen1 Hash 8d3464ebc4da78137a1ea136495c8fef 20a97bec949ebb05f3bcb4e3d48bada622d6b8e4 e4246299ecede291dd71ce670cd2d5b0b209ce2782050070692249317f060396 Loading...

	brandedmedia.io/	666 B	2023-03-07	2023-05-14
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:55:12 Last Seen2023-05-14 02:31:09 Times Seen3 Hash 30720adfd29858590aa7de45bc663d71 a2f83e1a7173a46b63686e3102464d7af77d36ee 375c422388a381eac170ebc6dbd6bf5e3b0ed0ec25fa2ab9c9d319252796ed63 Loading...

	brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/video.min.js?v=3.17.1&ver=3.17.1	16 kB	2023-03-10	2024-04-07
Pretty URL brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/video.min.js?v=3.17.1&ver=3.17.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 05:51:58 Last Seen2024-04-07 00:11:12 Times Seen513 Hash f86be1d27bcf552e0a8bc6b7cd3fe541 0b42ccd8d9df883edad385d9f09f30807cbcc7a4 02c2b073cc46eff63ac859009cad431a97791600dea5568c2c8bc5c6c899793b Loading...

	brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/dropdown.min.js?v=3.17.1&ver=3.17.1	3.1 kB	2023-03-07	2024-04-07
Pretty URL brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/dropdown.min.js?v=3.17.1&ver=3.17.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:43 Last Seen2024-04-07 00:11:12 Times Seen360 Hash 4bce64686b4c1820cfccc47709335288 87c7bcaee775124b6af81998ad7bc15a6254af8a 90e5e86645964e8bd0d9ba2e16ee85f7b38bd10f1430bfc8a6970570275903ff Loading...

	brandedmedia.io/	480 B	2023-03-07	2023-05-14
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:55:12 Last Seen2023-05-14 02:31:09 Times Seen3 Hash e46beda0e2241722d800c7ba31b2251a cd3a256b4c10b904c7c786513f70f6a7f5b65d9f df8dbf13ce69e4dea5d0cf43e1862f119fc5c33771b517cd3edd01b00736f070 Loading...

	brandedmedia.io/	2.5 kB	2023-03-07	2024-04-18
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:07 Last Seen2024-04-18 14:17:55 Times Seen274 Hash 5da6ae11462c0c19a450086a2808f955 a20730772ef2ba42cdfa54b7b8bac7611a2b4d07 8e7c61a2f04f21c74b67b134bd5e831809cb420127a951b4d28c96f89f03a44c Loading...

	brandedmedia.io/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-19
Pretty URL brandedmedia.io/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-19 20:39:51 Times Seen31782 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	brandedmedia.io/	149 B	2023-03-07	2024-04-19
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:35 Last Seen2024-04-19 12:28:56 Times Seen171 Hash b6725efdda299611c0ac1826c9115385 9d14697a8e0d1028750f5f705027b4519f1c81ff bf39e9c00143f292d0d901dbdcf684dfd2ec595b6c50386708005601c6cc2671 Loading...

	brandedmedia.io/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2	1.5 kB	2023-03-08	2024-04-15
Pretty URL brandedmedia.io/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:41 Last Seen2024-04-15 10:04:54 Times Seen1025 Hash 95bd9b340ad6826beff005e5df32bd77 fdb64d88e53c9279ea62b5acbcf86641c52d63f2 f2c809f77b19df64ec8270272ac29ce3d84d242a663e589825a9e4f57b8a5461 Loading...

	trackcmp.net/visit?actid=89104844&e=&r=&u=https%3A%2F%2Fbrandedmedia.io%2F	0 B	2023-03-07	2024-04-19
Pretty URL trackcmp.net/visit?actid=89104844&e=&r=&u=https%3A%2F%2Fbrandedmedia.io%2F IP 172.64.145.151 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 22:46:02 Times Seen36967850 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	app.paykickstart.com/tracking-script	3.8 kB	2023-03-07	2024-02-02
Pretty URL app.paykickstart.com/tracking-script IP 54.230.111.106 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:28 Last Seen2024-02-02 18:47:27 Times Seen63 Hash f6b70eee1655adae3d4d2297f870c31b d761b5dc3a68c35072e7cd4a9e1438f86d38cd51 84a81b91c0555df7c9b690d26cfaf9ab7799607e51efea70c8ace118cf67d6aa Loading...

	brandedmedia.io/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b	1.8 kB	2023-03-07	2024-04-19
Pretty URL brandedmedia.io/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-19 19:42:48 Times Seen6624 Hash cd0eb3406096ff80266e7c9d7d419186 0e3709691bf96233766de30e2fd473b84166c5b6 c2e606e1fc82ea3a554aad5d0520e25d2677b89a891dc5c49e7ace08fce92e25 Loading...

	brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/post-list.min.js?v=3.17.1&ver=3.17.1	3.7 kB	2023-03-08	2024-04-07
Pretty URL brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/post-list.min.js?v=3.17.1&ver=3.17.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:46 Last Seen2024-04-07 00:11:11 Times Seen267 Hash be0427a33d55c9ae55ee04c50a0eb1c2 93a7eb711710725a383d87b2662c888297f4d27d e87011953c822377177ad49af5736e15ee229d11b017e7a2894a61189191d31e Loading...

	brandedmedia.io/	185 B	2023-03-07	2023-05-14
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:55:12 Last Seen2023-05-14 02:31:09 Times Seen3 Hash a6f8ed01da76ca9aa65ffbbf5e2c7faa fce7ccf7e4cdccee0885e8dbb1a446eb3a3146a4 ba69a0f4c6f14452d04466cc8ad9eb98fb131aa75214966fe2f1b93ba6cf66d5 Loading...

	connect.facebook.net/signals/config/171235756649402?v=2.9.100&r=stable	386 kB	2023-03-13	2023-04-01
Pretty URL connect.facebook.net/signals/config/171235756649402?v=2.9.100&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 21:04:19 Last Seen2023-04-01 10:31:54 Times Seen2 Hash b2e3500d5c94132e477a769ae9acc045 2484b0db7cecfc210ec774d7cfc650b7e09625dc d32dc57d68b0cfe0ad18a7a006ca2e5e0a1f8c81c6aec996108f37a40ce39fb9 Loading...

	brandedmedia.io/	77 B	2023-03-07	2024-04-19
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:41 Last Seen2024-04-19 12:28:56 Times Seen2982 Hash 5af95593fa0a9561e570c1b541e71015 fa1bd87e5f6c7c610e54d6f747f15ae266ea0e7a c8494110ab9c137e6ac077fca96700bea0f6e73389ed3a93a6d707cb31a13b1c Loading...

	brandedmedia.io/wp-content/themes/thrive-theme/inc/assets/dist/frontend.min.js?ver=3.15.1	29 kB	2023-03-13	2023-06-19
Pretty URL brandedmedia.io/wp-content/themes/thrive-theme/inc/assets/dist/frontend.min.js?ver=3.15.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:28:00 Last Seen2023-06-19 00:42:19 Times Seen6 Hash 0c6b6ae76e976098cd184cc225b0c237 8caf1f15f416e49ebc10a1b890b38eb17cd3df8b 0e2075776eed1a0d979ca4cff828cb1ecb0d7e9410e38b9a2035e144d55f9ecf Loading...

	brandedmedia.io/	340 B	2023-03-07	2023-05-14
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:55:12 Last Seen2023-05-14 02:31:09 Times Seen3 Hash 1a38543eec08b9d928dfe663bdaa534b 2d104357a4c8ce57a24f6963643e23c62616f9b8 3af2f03a0a68271818d19caf36ecf36a23408e9c4867b2d157f8129beb749226 Loading...

	brandedmedia.io/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4	7.9 kB	2023-03-07	2024-04-19
Pretty URL brandedmedia.io/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:23 Last Seen2024-04-19 10:33:44 Times Seen4730 Hash 75b90c4351b6e079459237e66836ef4e 723590ed08677aad34239e4b03a5edd64acd208e f65784e5e7332dc1e4bbeacbec70fdeef4a1bea84f16ce2ee144999719d195ce Loading...

	brandedmedia.io/	8.1 kB	2023-03-07	2023-05-14
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:55:12 Last Seen2023-05-14 02:31:09 Times Seen3 Hash 3aa53292cc58fa0426b525cbb6eebd88 d42345f3c1a647bc5d7d0effbcf17d5fa248d869 375e6498d3a724293b761ff1269da9ff60512f147666930f7c9581646784fef4 Loading...

	app.clickfunnels.com/assets/cfpop.js?ver=1.0.0	4.1 kB	2023-03-07	2024-03-11
Pretty URL app.clickfunnels.com/assets/cfpop.js?ver=1.0.0 IP 104.16.14.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:32 Last Seen2024-03-11 19:49:49 Times Seen61 Hash e83cbdf3822c36a0bba96e279dbbcc18 be639d66d3586f4afd4523771d294212428c7520 edca09937ddbf8dbe53f7ec35eca8c5ebf6ce464c51601f05ecb55f9d48c978f Loading...

	brandedmedia.io/	2.1 kB	2023-03-09	2023-05-14
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:03:19 Last Seen2023-05-14 02:31:09 Times Seen3 Hash 2df81484f424f7353bc16007bee58392 aefdd81d28c54841822ec4a4ecb952ce010ee7cc 5f79c8cdaa926517dbce5112bba1ad0e1109809ce282b7f809e522cb54a06639 Loading...

	brandedmedia.io/wp-content/plugins/activecampaign-subscription-forms/site_tracking.js?ver=6.1.1	1.4 kB	2023-03-07	2024-04-19
Pretty URL brandedmedia.io/wp-content/plugins/activecampaign-subscription-forms/site_tracking.js?ver=6.1.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:32 Last Seen2024-04-19 07:31:32 Times Seen610 Hash 3b30e74bf0084e36e4a65c7e11602f56 0b27c22102dc32df2ffe91433cd58c37ae4ef49e 9a19938485ca7f6c582d3f78d17d9e443d26b260cac24c9dd9499f70b5d28390 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/876471740/?random=1680136277195&cv=11&fst=1680136277195&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fbrandedmedia.io%2F&hn=www.googleadservices.com&frm=0&tiba=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&rfmt=3&fmt=4	2.6 kB	2023-04-01	2023-04-01
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/876471740/?random=1680136277195&cv=11&fst=1680136277195&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fbrandedmedia.io%2F&hn=www.googleadservices.com&frm=0&tiba=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&rfmt=3&fmt=4 IP 142.250.74.66 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:31:54 Last Seen2023-04-01 10:31:54 Times Seen1 Hash 35b7c24667e56041ffd4d73625f64a87 87bdd3057198b0d2b8a6a504d7e0f97d99591a4f 5ffba865e3f0b0960fd39a670ae22b3e7682460b8d4303dfb70b5d8ac5212ad9 Loading...

	brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/lead-generation.min.js?v=3.17.1&ver=3.17.1	19 kB	2023-03-13	2023-11-21
Pretty URL brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/lead-generation.min.js?v=3.17.1&ver=3.17.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:30:08 Last Seen2023-11-21 21:49:03 Times Seen17 Hash b111e5d17412e72dc806a01316119782 c5a77af38d3742bfe41e35889abd875a92a3d63b 2b5fd60055309886a1758be42edd34bd395ab6202657281d1d908909702c2cc4 Loading...

	brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/general.min.js?ver=3.17.1	70 kB	2023-03-13	2023-08-18
Pretty URL brandedmedia.io/wp-content/plugins/thrive-visual-editor/editor/js/dist/modules/general.min.js?ver=3.17.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:30:08 Last Seen2023-08-18 21:25:45 Times Seen10 Hash 926118fab20c1f05ae022a85d56adb59 80cf368dcf0957a3462a026cb224f9c45b75bca0 4fd3bb77061643fd5d39fd342ffaa04264cb8c068e39c94df023a92bbf8bc163 Loading...

	brandedmedia.io/	854 B	2023-03-07	2024-04-07
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:43 Last Seen2024-04-07 00:11:12 Times Seen408 Hash 09f43569088cff2769fce893c6ea2578 9cb22a0d9bdb2d5cf919ec76f55e36216b660f93 cbe9ee97d8c46da626eab3334fa04d523624aeff28b351210c4b495a7352e1e4 Loading...

	brandedmedia.io/	129 B	2023-03-07	2023-05-14
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:55:12 Last Seen2023-05-14 02:31:09 Times Seen3 Hash c9873c36f9d11bfb85afa379d5e8d705 1060d2d745e44932f34600d21a39a28e47ef9fb8 dbd65122b1816beb9eea74fb4d3099c5eedc7d048be05881f3a26d39857488a0 Loading...

	brandedmedia.io/	3.7 kB	2023-03-08	2023-05-14
Pretty URL brandedmedia.io/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:02:20 Last Seen2023-05-14 02:31:09 Times Seen3 Hash 631d9d0e7b92659a3ce37bdc179e846d 6f94633194d09ce4800cc5a8100326f568721793 4ac1d61b16df489ff70f36fc6efb86dcb8f67fdde5b87b5a6e51a94160a2b6cb Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	connect.facebook.net/en_US/fbevents.js	110 kB	2023-03-29	2024-01-01
Pretty URL connect.facebook.net/en_US/fbevents.js IP 157.240.205.11 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:21:14 Last Seen2024-01-01 20:32:51 Times Seen5908 Hash 16a85e90ff4a7f49fb83743f7e338b4f c6ef02e6771407f89b4eb7efccf9efc08b4ca242 dbf060c555e91a539d9cb849f4aa0c656db9b0a1da32c99aafb12d7c508c6849 Loading...

HTTP Transactions (76)

URL IP Response Size

brandedmedia.io/

188.114.97.1

301 Moved Permanently

155 B

URL HTTP/1.1
brandedmedia.io/
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
155 B (155 bytes)
Hash
42c394b8f0152b372537ace9acc3f7bb
1219c55c4e3ea109c473aab65deb81f09a0fe0a6
6aaad3365c30c4f8d2504e569527e588d33eeae66dd7045bcfeef7413820db2a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 30 Mar 2023 00:30:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://brandedmedia.io/
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: 9ko8xsa2g6
X-FW-Version: 5.0.0
Accept-Ranges: bytes
X-Served-By: cache-bma1634-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1680136250.030295,VS0,VE136
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q3AsKwbuFSd6X7dlLsRvpZ5GoShs1LVuZw68qPLTRLo16IT6xowiigxrFXYSV6gIMqW51QxO1PwI7fBODJfAHkKsBFJvbm2GPIKhGFnhFSoJYdk39k3C4l1fQHljHZjwo%2FY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7afc3f0a8adf1c06-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8620
Expires: Thu, 30 Mar 2023 02:54:30 GMT
Date: Thu, 30 Mar 2023 00:30:50 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13665
Expires: Thu, 30 Mar 2023 04:18:35 GMT
Date: Thu, 30 Mar 2023 00:30:50 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 30 Mar 2023 00:16:01 GMT
content-type: application/json
age: 889
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c0d9353dc46e88bf564ed464b0b073c7
0b5ce170e7db24267a3ba5b79a48548b1acd2e5b
7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13658
Expires: Thu, 30 Mar 2023 04:18:28 GMT
Date: Thu, 30 Mar 2023 00:30:50 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 3hzB89aRyuVGzHFSwZay5mX0WSMWiWyYnrcZitI08BvOM1PMtmrGQYZecwblJmEuyRcNN17O0RU=
x-amz-request-id: Y11G70JB9PKSTK0T
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 30 Mar 2023 00:02:42 GMT
age: 1688
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 30 Mar 2023 00:30:50 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ae064c74a3769d42109473ad05d56fb9
d48029ab8568cee6ab7416d3b476ed792d780a56
9852216f395a42f7b4792e852f9f9fa83e07d917a979237d5d7406a1d74edc4f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9852216F395A42F7B4792E852F9F9FA83E07D917A979237D5D7406A1D74EDC4F"
Last-Modified: Wed, 29 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3703
Expires: Thu, 30 Mar 2023 01:32:33 GMT
Date: Thu, 30 Mar 2023 00:30:50 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Expires, Cache-Control, Content-Length, Retry-After, Last-Modified, Pragma, ETag, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 30 Mar 2023 00:17:26 GMT
age: 804
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.117.65.55

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.117.65.55:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bBGc22KImOvmyYsTmhpnCA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: y6NmeJ9BLKWsPNgkmdpDwcH+hsM=
Date: Thu, 30 Mar 2023 00:30:50 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.clickfunnels.com/assets/cfpop.js

104.18.39.181

302 Found

0 B

URL HTTP/2
www.clickfunnels.com/assets/cfpop.js
IP
104.18.39.181:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
Connection: keep-alive
Cookie: __cf_bm=fzGZC4Zn_ZP4OKkOn4QVRGLoYDXUsHEBidsu_Ikzg1U-1680136251-0-AbNwnIs8Bp+7X1PFW51GO81b23ozOc+bb0OydQ3PSxwtVQl7bya6P9R2udjlhme+lV+k+OuUOFyeNia8UipNh02z2QIrbGtpbB+vnjvINN9N
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Thu, 30 Mar 2023 00:30:52 GMT
content-length: 0
location: https://clickfunnels-assets.s3.amazonaws.com/assets/cfpop.js
set-cookie: __cf_bm=exD4.Hy0m14a0zqswNdNkvW4Y.EiTOtOBvo_PhlwQJI-1680136252-0-AYfgFnBoLPikZ7TrGisJm2NxXwMmik7x7Q/zyYSX9B84RPQL4ZTjovH2btjYnNye2nup3G2wGHjxJK2ugBlnpZ8=; path=/; expires=Thu, 30-Mar-23 01:00:52 GMT; domain=.www.clickfunnels.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7afc3f16ef220b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Barlow:400,400i,700,700i,500,500i,600,600i,800,800i,900,900i&subset=latin&display=swap

142.250.74.106

200 OK

1.2 kB

URL HTTP/2
fonts.googleapis.com/css?family=Barlow:400,400i,700,700i,500,500i,600,600i,800,800i,900,900i&subset=latin&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.2 kB (1180 bytes)
Hash
e91400f7ae79209b826bc1abcd43bba0
a524ba754bb6ea52ddfa6545e56f6bc2681a9a11
38a2973b5763342a65478c5cf8a0f73a8921a49925f5b5307d007a95373c52ff

HTTP Headers

GET /css?family=Barlow:400,400i,700,700i,500,500i,600,600i,800,800i,900,900i&subset=latin&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 30 Mar 2023 00:30:51 GMT
date: Thu, 30 Mar 2023 00:30:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.118

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.118:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
49c1fca38ad6347c9c30036d57219ca3
9b4697f9667ebdb7bbf1b4f9c25414bc8197e4ac
9f08baa3ef477200cc8256a25c8071d185be21e8ea5a3ac5a2dd0e6fb15a1ddd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 30 Mar 2023 00:30:52 GMT
Last-Modified: Wed, 29 Mar 2023 23:08:29 GMT
Server: ECAcc (nya/7919)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jzQHqROjaK-48eNAHbdN27ToF7STx6J0-3njtpOw5t7DfavLJbqSkA==
Age: 4943

www.googletagmanager.com/gtm.js?id=GTM-5HJNHV5

142.250.74.168

200 OK

60 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5HJNHV5
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2709)
Size
60 kB (60036 bytes)
Hash
07254072de4e985a43d9b320131343da
5bdda71b3e7ff58347f48faa2f8f5769ea97897d
5e5c46c5fdb7beff5841096b1c82f148a3791740e28850d36f4c9f60a7208d3b

HTTP Headers

GET /gtm.js?id=GTM-5HJNHV5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 30 Mar 2023 00:30:52 GMT
expires: Thu, 30 Mar 2023 00:30:52 GMT
cache-control: private, max-age=900
last-modified: Thu, 30 Mar 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 60036
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15086
Expires: Thu, 30 Mar 2023 04:42:18 GMT
Date: Thu, 30 Mar 2023 00:30:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15086
Expires: Thu, 30 Mar 2023 04:42:18 GMT
Date: Thu, 30 Mar 2023 00:30:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15086
Expires: Thu, 30 Mar 2023 04:42:18 GMT
Date: Thu, 30 Mar 2023 00:30:52 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ede7667-0c62-431d-bf52-4d8ccdc0a386.jpeg

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ede7667-0c62-431d-bf52-4d8ccdc0a386.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
6.5 kB (6543 bytes)
Hash
949f7d8150710f002e06185e3d15d4c5
26c7ac7e28e197a43d1175bc98dbb48d8818dcfa
84fc35b7be356815110d2cf5b5c7fd1ed41a5cdebff48350fee141be07e0c137

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ede7667-0c62-431d-bf52-4d8ccdc0a386.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4692
x-amzn-requestid: 0de8cf95-12c7-4525-acc8-976d03ae205e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CewbkExoIAMFTQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64229449-56bda0e31c0771da427ce9b9;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 07:16:25 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: U7tLDFft82AChDcWO5zUAQJzGUNTM6h4on7E5y2uPS_VdvrIF7RAQw==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 08:08:16 GMT
age: 58956
etag: "7d7843c3395b2206b25de1a2ecf1d52e8008b7e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

32 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F611db66e-eb19-4ce3-9ee4-93c32afc29a5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
32 kB (32229 bytes)
Hash
f6babd16a3feda30faa1a420fc5e714a
a1a523abb9d34a520b4e9c295a218cd499acad9f
7ca48be08bb4cf00b5e7b260f0125cdff4deb26f49d1c6499fdc42574e60db4a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F611db66e-eb19-4ce3-9ee4-93c32afc29a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8795
x-amzn-requestid: 33d91f7c-7d04-405b-8060-33e438ed09f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkAz2GwKoAMFW5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae7e-54ba3517206ac61c50167c3e;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: nORkLBTHqZ_ZrUuEkg9BcVT2TJzP7OLBRQtfUUzRgvwP9Q9dZtMFbg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:50 GMT
etag: "214322b88798120159ab55c7121c8775727b8fc7"
content-type: image/jpeg
age: 9962
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15086
Expires: Thu, 30 Mar 2023 04:42:18 GMT
Date: Thu, 30 Mar 2023 00:30:52 GMT
Connection: keep-alive

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9230d52f-0316-48dd-9c8a-231c8091c313.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13520 bytes)
Hash
774be594ff620b3c0559c1d6df5cdb19
39e47800138c74f1d9be4d80fc46d062c661c334
911c5154354c8f46cf0f900f1030536569055c748035960fcf5e850d24747a1d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9230d52f-0316-48dd-9c8a-231c8091c313.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13520
x-amzn-requestid: a686a0ab-8bd4-4721-b2dc-58ae073a47d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkAzsGwWoAMFgEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae7d-70f61c697c0a31362bf67fde;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: h_o785exPydSyuemQhU_pYNdhApV-gwQPR6ChOCXhuc-TUF0jggrIQ==
via: 1.1 e39f48cc8f516dc1072afdb086c71f32.cloudfront.net (CloudFront), 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:51 GMT
etag: "39e47800138c74f1d9be4d80fc46d062c661c334"
content-type: image/jpeg
age: 9961
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

18 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
18 kB (17896 bytes)
Hash
8374705e4e8e7d83b649992515ba8a1c
17a1ec6015efe0624e1bb9f0b18eb00f2c186e0a
2de00e50d8b89b3fd0b52270c685b25f24d40cbeab3685fdb30a4af032f8e367

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10271
x-amzn-requestid: db0d1fe4-060a-4e61-90f3-ec9befee1295
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkBoXGh5oAMFfzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424afce-2e9251552b4acdcb19e02dfc;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 6lKfWQ4mVZdKDpPhp9KzllP2eyH03CsFufQxXVTUZ1s1t1gQs1OUFA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:50 GMT
age: 9962
etag: "cf7cf08aa8969a86bf03695af2129686fd62fe86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15086
Expires: Thu, 30 Mar 2023 04:42:18 GMT
Date: Thu, 30 Mar 2023 00:30:52 GMT
Connection: keep-alive

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28245e40-16bd-42a4-8bce-13d3a5e205a7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
14 kB (14399 bytes)
Hash
83d525783dc5bfdbe48b83be260e0a1f
b9fd78861dd628d7d73d356ae8ccf14cea319caa
e1043b6d96a1e5869fca4420afdf7c0fcd2423b00f76907eee051b15b0444c30

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28245e40-16bd-42a4-8bce-13d3a5e205a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5664
x-amzn-requestid: de6df023-a8ee-4f43-843e-567fe1492c17
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CewdBHOGoAMF1og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64229453-061fdcb64703d00d020ac124;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 07:16:35 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 2g-LYr-b-IJim3w09VnMfdGbG0gH_Tywg5Q836IMdWb93R9Y6sjNUA==
via: 1.1 17d76c2aee343249585a570f2d36d2ee.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 07:32:17 GMT
age: 61115
etag: "c5a65e7d2b648ab55c758ff43ae62ed03ea1cef6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3697d60-af19-4bfb-9d00-0a88b42c7092.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9030 bytes)
Hash
6119f1997cb5d1f4e61ddeeedae7a35f
13e9881bc79a5c361211430b0ba20eab32b3dbef
f38d53a870575f53855e00b6cb5422ffbf7a2210ccff25fc837c6a71b0d528b9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3697d60-af19-4bfb-9d00-0a88b42c7092.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9030
x-amzn-requestid: 5e98c214-3229-484f-911f-ca61e9a6ada3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cew9OHDgoAMFqxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64229521-0014bec92bd97c080a5015fd;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 07:20:01 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: iKE8kCq1U3EIAGIg4aerYZ6j0MeCjGzp9G_7aExDq23hzJtxZVg05A==
via: 1.1 5502255f9557c1e2c098b94110b6151c.cloudfront.net (CloudFront), 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 07:28:58 GMT
age: 61314
etag: "13e9881bc79a5c361211430b0ba20eab32b3dbef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2

142.250.74.35

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21144, version 1.0\012- data
Size
21 kB (21144 bytes)
Hash
2bc7630144496092dc786ce63109e560
723df3658078cfed03c85e47f15fc439eb4331be
7c9c80a6c32c0619d61c28f28723e68c5f8f75163e77ee5cf64c39e640e0d71e

HTTP Headers

GET /s/barlow/v12/7cHpv4kjgoGqM7E_DMs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:27:03 GMT
expires: Sat, 23 Mar 2024 10:27:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:43:23 GMT
content-type: font/woff2
age: 482629
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2

142.250.74.35

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 20960, version 1.0\012- data
Size
21 kB (20960 bytes)
Hash
d312d179276a175029c56c50e9bc9d0b
aa9285dd6183c696fc39ec31c221581e2d4959c1
7c0597b1b0c771139c958982210f05b275993037f0f3ba20d7a9300a0741dc80

HTTP Headers

GET /s/barlow/v12/7cHqv4kjgoGqM7E3_-gs51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:27:03 GMT
expires: Sat, 23 Mar 2024 10:27:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:18:28 GMT
content-type: font/woff2
age: 482629
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3j-ws51os.woff2

142.250.74.35

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3j-ws51os.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21416, version 1.0\012- data
Size
21 kB (21416 bytes)
Hash
d258461a8f2c53d244500969828bdd3f
c796103e6ca328dd6a92bfecf72cda8f0a143158
f9bfb04a18c8be687fadacd7f67647b65113ee8d1aabcb0f410eac21681fa7ef

HTTP Headers

GET /s/barlow/v12/7cHqv4kjgoGqM7E3j-ws51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21416
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 11:27:35 GMT
expires: Wed, 27 Mar 2024 11:27:35 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:56:36 GMT
content-type: font/woff2
age: 133397
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:42 GMT
expires: Sat, 23 Mar 2024 10:26:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 482650
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f6b3bb903e6f7394985c0ae662919208
ee3cb0fbd0017ed3a001ce195bc0cfa386979567
c6b84721f8ea52808c9884b612ffeaa16fe1e14345d9561135fbcf738a56dd2b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3q-0s51os.woff2

142.250.74.35

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3q-0s51os.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 22052, version 1.0\012- data
Size
22 kB (22052 bytes)
Hash
f27acc0d33d769a3da576516ca236c41
a678c0f6905303906a2537c1ff983258286a9263
1f132510bc7b665bbe5fb9227b0d2daafa5513296a72f88f88d38179eded9277

HTTP Headers

GET /s/barlow/v12/7cHqv4kjgoGqM7E3q-0s51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:28:26 GMT
expires: Sat, 23 Mar 2024 10:28:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:05:17 GMT
content-type: font/woff2
age: 482546
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2

142.250.74.35

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21724, version 1.0\012- data
Size
22 kB (21724 bytes)
Hash
c3609c36a150ce088ea4dcab92b7c00b
0c18236a183e962533a4f61bff3ae2581313561a
65a47caa5183b035bf78d0f93adbe5cea500333410259c54abf2de356740df7e

HTTP Headers

GET /s/barlow/v12/7cHqv4kjgoGqM7E3t-4s51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:27:47 GMT
expires: Sat, 23 Mar 2024 10:27:47 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:29:44 GMT
content-type: font/woff2
age: 482585
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

clickfunnels-assets.s3.amazonaws.com/assets/cfpop.js

52.216.222.161

200 OK

4.1 kB

URL HTTP/1.1
clickfunnels-assets.s3.amazonaws.com/assets/cfpop.js
IP
52.216.222.161:0
ASN
#0

File type
ASCII text, with very long lines (4128), with no line terminators
Size
4.1 kB (4128 bytes)
Hash
e83cbdf3822c36a0bba96e279dbbcc18
be639d66d3586f4afd4523771d294212428c7520
edca09937ddbf8dbe53f7ec35eca8c5ebf6ce464c51601f05ecb55f9d48c978f

HTTP Headers

GET /assets/cfpop.js HTTP/1.1
Host: clickfunnels-assets.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: KC2HSu8AfGJ2JmHkKsEmjnTBMUq58C4lm3SOJqir4kDvtkDd3MM4wh8JFg0OUyZ8FACc41Xj010=
x-amz-request-id: XS1QJ2ABQN1SBBMW
Date: Thu, 30 Mar 2023 00:30:53 GMT
Last-Modified: Mon, 16 Nov 2020 15:46:04 GMT
ETag: "e83cbdf3822c36a0bba96e279dbbcc18"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 4128

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:23 GMT
expires: Wed, 27 Mar 2024 10:31:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 136769
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2

142.250.74.35

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21796, version 1.0\012- data
Size
22 kB (21796 bytes)
Hash
8074c760fbdd366fc1c33ce702911abf
b68cdebfb413c4ad60fa131dc29e36da4b3ce45c
2b14e8397d552f351a4396dec25ec5da1348865683100e94c4ab0faea4a9a254

HTTP Headers

GET /s/barlow/v12/7cHqv4kjgoGqM7E30-8s51os.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:27:31 GMT
expires: Sat, 23 Mar 2024 10:27:31 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 19:35:19 GMT
content-type: font/woff2
age: 482601
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://brandedmedia.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:43 GMT
expires: Sat, 23 Mar 2024 10:26:43 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
age: 482649
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

s.w.org/images/core/emoji/14.0.0/svg/1f635.svg

192.0.77.48

200 OK

1.3 kB

URL HTTP/2
s.w.org/images/core/emoji/14.0.0/svg/1f635.svg
IP
192.0.77.48:0
ASN
#2635 AUTOMATTIC

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1340), with no line terminators
Size
1.3 kB (1340 bytes)
Hash
08cf46d4be10cd96a7f69a8b372d1425
a9a67d966625aa9a3c09c299b34e84c869846a80
2855e7fe4a56e8cb37719c984ca30399fc2f8321e5e1f408c9192db4ebda9f9d

HTTP Headers

GET /images/core/emoji/14.0.0/svg/1f635.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 30 Mar 2023 00:30:52 GMT
content-type: image/svg+xml
content-length: 1340
last-modified: Tue, 12 Apr 2022 03:50:59 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
33a7b746a4cc108e99d97decf7b2f2e2
4fa931fadad039eb95445e5a9d49b96fdf142560
aa28f663f472907b77a7fbf55ba698b60509b9a803e186a1b7b0946740502a7c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139445
Date: Thu, 30 Mar 2023 00:30:53 GMT
Etag: "64245590-1d7"
Expires: Fri, 31 Mar 2023 15:14:58 GMT
Last-Modified: Wed, 29 Mar 2023 15:13:20 GMT
Server: ECAcc (dcb/7352)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bhBz9yuSz1M0vJlbOIpsvCHFfC1xJpVquj6ehWE6c7_hNHh1ibu5Xg==
Age: 98

app.paykickstart.com/tracking-script

54.230.111.106

302 Found

110 B

URL HTTP/2
app.paykickstart.com/tracking-script
IP
54.230.111.106:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
110 B (110 bytes)
Hash
f366e0e18b589cb6f243bf43ce75e83c
0f95dda86ab28586f00bc878b42ecd09e579a890
075f0fd7eeb4bfec31816d61be72b064d4899853b224bd5f380041d7dd0b1d19

HTTP Headers

GET /tracking-script HTTP/1.1
Host: app.paykickstart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: text/html
content-length: 110
location: https://s3.amazonaws.com:443/img.paykickstart.com/tracking/tracking-script.min.js
server: awselb/2.0
date: Thu, 30 Mar 2023 00:30:53 GMT
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zPK-5o_FvunsbNKWyBIoibwgIs9zNWjKm2i7n3c9P3gp4BdAnPOSyQ==
X-Firefox-Spdy: h2

trackcmp.net/visit?actid=89104844&e=&r=&u=https%3A%2F%2Fbrandedmedia.io%2F

172.64.145.151

200 OK

0 B

URL HTTP/2
trackcmp.net/visit?actid=89104844&e=&r=&u=https%3A%2F%2Fbrandedmedia.io%2F
IP
172.64.145.151:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /visit?actid=89104844&e=&r=&u=https%3A%2F%2Fbrandedmedia.io%2F HTTP/1.1
Host: trackcmp.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 30 Mar 2023 00:30:53 GMT
content-type: text/javascript;charset=UTF-8
content-length: 0
cache-control: no-cache, private
p3p: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
set-cookie: cmp89104844=a001230f6280b5dd1cad81262e784913; expires=Sun, 30 Apr 2023 00:30:53 GMT; Max-Age=2678400; path=/; secure; httponly; samesite=none
x-envoy-upstream-service-time: 156
x-powered-by: PHP/8.1.16
x-privacy-policy: You can find our privacy policy here: https://www.activecampaign.com/help/privacy-policy/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7afc3f1cfc54b505-OSL
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

58 kB

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, PhotometricIntepretation=RGB, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe Photoshop 23.3 (Macintosh), datetime=2022:05:07 16:30:05], baseline, precision 8, 1920x974, components 3\012- data
Size
58 kB (58479 bytes)
Hash
49537e3a4f1b0d9bdd9eced630f05b6d
b42158f9161882adaee74e3463f019fc4691f7bb
de9c8c06dd5afb37f77b7c0a4eae5bd46aecba8c378cbfd064936b4ad83d7d4d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=85983
Date: Thu, 30 Mar 2023 00:30:53 GMT
Etag: "642371bc-1d7"
Expires: Fri, 31 Mar 2023 00:23:56 GMT
Last-Modified: Tue, 28 Mar 2023 23:01:16 GMT
Server: ECAcc (nya/789D)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8esioPr_6QApB50y5QM_jM-y9wz1rRQBVNDP2dr4XlpKuLTUsqfo1w==
Age: 4960

s3.amazonaws.com/img.paykickstart.com/tracking/tracking-script.min.js

52.216.140.102

200 OK

11 kB

URL HTTP/1.1
s3.amazonaws.com/img.paykickstart.com/tracking/tracking-script.min.js
IP
52.216.140.102:0
ASN
#16509 AMAZON-02

File type
PNG image data, 300 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10601 bytes)
Hash
fe213229287ee74d70d348901a1c62d0
b25261de94d97753b92b24397493cb6f61cf64e3
277dd3f8bc0eacc1a85425dda25ffc37f301b63ddb4813934f4a04d9c5c46e27

HTTP Headers

GET /img.paykickstart.com/tracking/tracking-script.min.js HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brandedmedia.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: kHrGpiEHGatWNJaP4bls8tka4hX4YNOO3IICJNJJNTtey6u7MS3t430TB7b/AnbxgAHRY2mweGo=
x-amz-request-id: B7MSGA6YH8ATQWFC
Date: Thu, 30 Mar 2023 00:30:54 GMT
Last-Modified: Thu, 10 Feb 2022 10:37:20 GMT
ETag: "f6b70eee1655adae3d4d2297f870c31b"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 3778

www.google-analytics.com/analytics.js

142.250.74.78

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.78:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 30 Mar 2023 00:05:11 GMT
expires: Thu, 30 Mar 2023 02:05:11 GMT
cache-control: public, max-age=7200
age: 1543
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

894 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
PNG image data, 2077 x 574, 8-bit/color RGBA, non-interlaced\012- data
Size
894 kB (894465 bytes)
Hash
ebca9f442b1c5e2df307c04073b4ae9f
727136fe8f1f6e11f0de2014001c2f9a778e0e19
8d5cffc95f8cfad72fe71dae7661734b20b9a51f1b9d96461bbcb171fcbd4055

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

192.229.221.95

200 OK

710 kB

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
710 kB (709524 bytes)
Hash
bc67baa3883e98f81f51e84905fde7d0
6a246ff58035b6c24ee4b555c2ac5cf85bb3a7bc
141077773b071f719bd5fbc5a6b85113b9e9bcc509edb9182004b33d77f6ee59

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3484
Cache-Control: max-age=168405
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:54 GMT
Etag: "6424b977-1d7"
Expires: Fri, 31 Mar 2023 23:17:39 GMT
Last-Modified: Wed, 29 Mar 2023 22:19:35 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471

www.google-analytics.com/j/collect?v=1&_v=j99&a=1709911182&t=pageview&_s=1&dl=https%3A%2F%2Fbrandedmedia.io%2F&ul=en-us&de=UTF-8&dt=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=357582832&gjid=402195385&cid=146438113.1680136279&tid=UA-124441546-1&_gid=1619210302.1680136279&_r=1&_slc=1&gtm=45He33r0n815HJNHV5&z=2050960722

142.250.74.78

200 OK

88 kB

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1709911182&t=pageview&_s=1&dl=https%3A%2F%2Fbrandedmedia.io%2F&ul=en-us&de=UTF-8&dt=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=357582832&gjid=402195385&cid=146438113.1680136279&tid=UA-124441546-1&_gid=1619210302.1680136279&_r=1&_slc=1&gtm=45He33r0n815HJNHV5&z=2050960722
IP
142.250.74.78:0
ASN
#15169 GOOGLE

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
88 kB (87506 bytes)
Hash
2586f3f0bbcf1a0735b5d9ea2a499d08
57d37f15fde5b91a7b02066b3f746a730bd9251f
c212161bd650c649fc1e85acec7b088c648fe71e6c520cc7d211bcffa7cc138c

HTTP Headers

POST /j/collect?v=1&_v=j99&a=1709911182&t=pageview&_s=1&dl=https%3A%2F%2Fbrandedmedia.io%2F&ul=en-us&de=UTF-8&dt=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=357582832&gjid=402195385&cid=146438113.1680136279&tid=UA-124441546-1&_gid=1619210302.1680136279&_r=1&_slc=1&gtm=45He33r0n815HJNHV5&z=2050960722 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://brandedmedia.io
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://brandedmedia.io
date: Thu, 30 Mar 2023 00:30:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 3
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/876471740/?random=1680136277195&cv=11&fst=1680136277195&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fbrandedmedia.io%2F&hn=www.googleadservices.com&frm=0&tiba=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&rfmt=3&fmt=4

142.250.74.66

200 OK

1.2 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/876471740/?random=1680136277195&cv=11&fst=1680136277195&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fbrandedmedia.io%2F&hn=www.googleadservices.com&frm=0&tiba=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&rfmt=3&fmt=4
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2575), with no line terminators
Size
1.2 kB (1216 bytes)
Hash
6a941a766bf1a69c5139fded7734d164
bfddd43e3a7ed6c209c366c05463268581c97395
7398969df92bd138061d4f8bf10a5d541f601b7d7223369fe26e4073c5d4373a

HTTP Headers

GET /pagead/viewthroughconversion/876471740/?random=1680136277195&cv=11&fst=1680136277195&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fbrandedmedia.io%2F&hn=www.googleadservices.com&frm=0&tiba=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 30 Mar 2023 00:30:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1216
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 30-Mar-2023 00:45:54 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

157.240.205.11

200 OK

326 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
157.240.205.11:0
ASN
#32934 FACEBOOK

File type
data
Size
326 kB (325610 bytes)
Hash
43347daf43fd99b4c70c21771e660659
95a65cc46d49955a326b2ba663ae2a34a3eb3e5d
43f7dafa5e75e2fcdb115f8a40cf09eef7878ed0090691b9345c9ca1f6f0d6f3

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: E2WnLOZTTIvyhzSPiYyXhgvmtf1AXpa+tpx8z8IUqO3nMsyx2PsaAQdHuT9tUaPUw6b+fApkzWb5zLchf1iWcw==
content-length: 27909
x-fb-trip-id: 1679558926
date: Thu, 30 Mar 2023 00:30:54 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
db42c4cc6d88b3b3a84f2e1386ac1bb8
b92a86df1426bea2fbc4d3a4206de7ef014ab0ca
1c72f8eec3272ab2702d499b8449c69519d0d55235d7c40937fd65ac359edd93

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3376
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:54 GMT
Last-Modified: Wed, 29 Mar 2023 23:34:38 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6674c1bff1cd533fa4a8992632d6d4e3
a2ca2162800e1401ac9a13d854faaa022997d823
c8a170da75fab65dd94c351514fc9304c9ea3b3682334607b65700b91f895201

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f161a33a46c303fe6941d93b84aa0db4
44f5db5883e92d3ced3250ef1af279ca6cd21ef6
106c024af015f65e48565d3dccc95942ce222f4a7e02de0966751ad6ff129129

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9f52e1a56e3580c1bf81562a9df645f8
7c0b65f04f7c1ce3cc65f0ab3207d8d18ba5350b
28f16d1df407bb8bf6b28d978c94a40ea1f151dbc9e4e73493c999d881c3dc25

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/pagead/1p-user-list/876471740/?random=1680136277195&cv=11&fst=1680134400000&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fbrandedmedia.io%2F&frm=0&tiba=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&fmt=3&is_vtc=1&random=363704567&rmt_tld=1&ipr=y

216.58.207.227

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/876471740/?random=1680136277195&cv=11&fst=1680134400000&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fbrandedmedia.io%2F&frm=0&tiba=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&fmt=3&is_vtc=1&random=363704567&rmt_tld=1&ipr=y
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/876471740/?random=1680136277195&cv=11&fst=1680134400000&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fbrandedmedia.io%2F&frm=0&tiba=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&fmt=3&is_vtc=1&random=363704567&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 30 Mar 2023 00:30:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/pagead/1p-user-list/876471740/?random=1680136277195&cv=11&fst=1680134400000&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fbrandedmedia.io%2F&frm=0&tiba=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&fmt=3&is_vtc=1&random=363704567&rmt_tld=0&ipr=y

142.250.74.132

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/876471740/?random=1680136277195&cv=11&fst=1680134400000&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fbrandedmedia.io%2F&frm=0&tiba=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&fmt=3&is_vtc=1&random=363704567&rmt_tld=0&ipr=y
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/876471740/?random=1680136277195&cv=11&fst=1680134400000&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fbrandedmedia.io%2F&frm=0&tiba=BrandedMedia.io%20%E2%80%93%20Personal%20Branding%20for%20Founders%20%26%20CEOs&fmt=3&is_vtc=1&random=363704567&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 30 Mar 2023 00:30:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

178 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
178 kB (177469 bytes)
Hash
9c130704cd9cb0a790eefedeb821c0ad
8e48a4bc4a3caabc4c07570dd582ec105038819c
b228f81d98478b1c7abee54fe0138f67188389e83dd701c1431405c23b2874ab

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

89 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
89 kB (88564 bytes)
Hash
093efdcdc6fbb26381fadb6a7b2b746c
adee17ce338e89bd8f83a4cc2e253e377413fd32
f18e0433901c7884ae40f9daf3062cb91a2e537d04cbc6d26662d0060e64b7df

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 00:30:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.facebook.com/tr/?id=171235756649402&ev=PageView&dl=https%3A%2F%2Fbrandedmedia.io%2F&rl=&if=false&ts=1680136279052&sw=1280&sh=1024&v=2.9.100&r=stable&a=tmgoogletagmanager&ec=0&o=30&cs_est=true&fbp=fb.1.1680136279049.167826495&it=1680136278736&coo=false&rqm=GET

157.240.205.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=171235756649402&ev=PageView&dl=https%3A%2F%2Fbrandedmedia.io%2F&rl=&if=false&ts=1680136279052&sw=1280&sh=1024&v=2.9.100&r=stable&a=tmgoogletagmanager&ec=0&o=30&cs_est=true&fbp=fb.1.1680136279049.167826495&it=1680136278736&coo=false&rqm=GET
IP
157.240.205.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=171235756649402&ev=PageView&dl=https%3A%2F%2Fbrandedmedia.io%2F&rl=&if=false&ts=1680136279052&sw=1280&sh=1024&v=2.9.100&r=stable&a=tmgoogletagmanager&ec=0&o=30&cs_est=true&fbp=fb.1.1680136279049.167826495&it=1680136278736&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 30 Mar 2023 00:30:54 GMT
X-Firefox-Spdy: h2

app.paykickstart.com/collect?resolution=1280x1024&page=https%3A%2F%2Fbrandedmedia.io%2F&referrer=

54.230.111.106

200 OK

42 B

URL HTTP/2
app.paykickstart.com/collect?resolution=1280x1024&page=https%3A%2F%2Fbrandedmedia.io%2F&referrer=
IP
54.230.111.106:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
9b5e8704c89f018cff215cb5ed3e0128
2a9fa3661b326c503e492b89cdd9130d12ead03d
b2c78c910f5ea29e3a9d223dabc203c055c8708b1fe7d83788b490638126db4d

HTTP Headers

GET /collect?resolution=1280x1024&page=https%3A%2F%2Fbrandedmedia.io%2F&referrer= HTTP/1.1
Host: app.paykickstart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/gif
content-length: 42
date: Thu, 30 Mar 2023 00:30:55 GMT
server: nginx
cache-control: no-cache=Set-Cookie, private, proxy-revalidate
content-encoding: none
expires: Wed, 11 Jan 2000 12:59:00 GMT
last-modified: Wed, 11 Jan 2006 12:59:00 GMT
pragma: no-cache
x-frame-options: DENY
set-cookie: laravel_session=eyJpdiI6IkxyUTFNRkM0c2tcL1I5ajRYcUVEZFJBPT0iLCJ2YWx1ZSI6IkxlNlE0cU9Ydnl1R2N1Uitid3VHZnc4bmVjTXdCbktGUHJRVU42Y2w0djhhN1FBQTZkYnpaYWk0ajdyaktldUlaWU5VeFFOYjNPa2hvcG9ReDVLaGE1OW11NXJhajZaTGsrWlwvKzJvekpjYlpqSkNqbkxHOHJKSmNGTlZ0NGJ5TyIsIm1hYyI6IjliNGE3YTRiOGQzMmRhNzY4NzEzM2VmNTFkYTA3YzA2MjJkOTM1NzY2YjE0N2Y4YmNlMDRmOTAxOThjNDNlOWEifQ%3D%3D; expires=Thu, 30-Mar-2023 01:30:55 GMT; Max-Age=3600; path=/; secure; httponly; samesite=none
pk_vid=eyJpdiI6ImxMaVRQQnBXeEpGUEhFbk9tUG80YXc9PSIsInZhbHVlIjoiVW9aalhweGN6SDY4RUFSY1FEVGZoSGxMVlA3NzcwTXJcL0kzMjkxb2gwSEM0ZW9mZzZ4XC92TXRtam9BaXI1U3lQUDFcL3c5eElyK2tOWHN4ZE10UWJ6cjJvZkw2RzVUSUVwVk1zMmJXSGZtcDA9IiwibWFjIjoiOTZiOGE1MmM4N2MyZTMwZjFjODZlOTdlMzdjN2Q1ZWRlZGU4NTExNTFkMjBlYjU4NDU1OGVjMTZmYTc2NThiOCJ9; expires=Tue, 28-Mar-2028 00:30:55 GMT; Max-Age=157680000; path=/; secure; httponly; samesite=none
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: By8ozxbwWhH257sBpMW_VFY1sUXdwkguFGNqjcnjruZrHUCznTBfYg==
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d272e70-53f2-46d1-82a2-713d0539212f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13563 bytes)
Hash
e17677df3c62e2528f78149356f707fa
ed990a670d1b5f33e42e1927266c82d1532b2c75
3f23e0cf1a3b09c3747e5ac9917793d7035b3195a085d1e34777c5f3f09ce72c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d272e70-53f2-46d1-82a2-713d0539212f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 13563
x-amzn-requestid: 61cfd396-07a1-451f-81df-868644a5e653
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkAymEFOIAMFW3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae76-7adecc212066dc3c5252eb2f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: BRJ5kSrwZs5uuXG1oJqrGYfy4o9J_g2GtXVBvb67OG4mdMYnpHlAiw==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:50 GMT
etag: "ed990a670d1b5f33e42e1927266c82d1532b2c75"
content-type: image/jpeg
age: 9969
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Muli:400,400i,800,800i,700,700i,500,500i,600,300,200,900&subset=latin&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Muli:400,400i,800,800i,700,700i,500,500i,600,300,200,900&subset=latin&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Muli:400,400i,800,800i,700,700i,500,500i,600,300,200,900&subset=latin&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 30 Mar 2023 00:30:51 GMT
date: Thu, 30 Mar 2023 00:30:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:400,400i,900,900i,500,700,300,100&subset=latin&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:400,400i,900,900i,500,700,300,100&subset=latin&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:400,400i,900,900i,500,700,300,100&subset=latin&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 30 Mar 2023 00:30:51 GMT
date: Thu, 30 Mar 2023 00:30:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Barlow:400,400i,700,700i,500,500i,600,600i,800,800i,900,900i&subset=latin

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Barlow:400,400i,700,700i,500,500i,600,600i,800,800i,900,900i&subset=latin
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Barlow:400,400i,700,700i,500,500i,600,600i,800,800i,900,900i&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 30 Mar 2023 00:30:51 GMT
date: Thu, 30 Mar 2023 00:30:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Barlow:400,400i,700,700i,600,600i,500,500i,800,800i,900,900i&subset=latin

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Barlow:400,400i,700,700i,600,600i,500,500i,800,800i,900,900i&subset=latin
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Barlow:400,400i,700,700i,600,600i,500,500i,800,800i,900,900i&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 30 Mar 2023 00:30:51 GMT
date: Thu, 30 Mar 2023 00:30:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

app.clickfunnels.com/assets/cfpop.js?ver=1.0.0

104.16.14.194

301 Moved Permanently

0 B

URL HTTP/2
app.clickfunnels.com/assets/cfpop.js?ver=1.0.0
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/cfpop.js?ver=1.0.0 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brandedmedia.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Thu, 30 Mar 2023 00:30:51 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 7afc3f160a8d0b65-OSL
age: 1179
cache-control: public, max-age=1200
expires: Thu, 30 Mar 2023 00:50:51 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
set-cookie: __cf_bm=fzGZC4Zn_ZP4OKkOn4QVRGLoYDXUsHEBidsu_Ikzg1U-1680136251-0-AbNwnIs8Bp+7X1PFW51GO81b23ozOc+bb0OydQ3PSxwtVQl7bya6P9R2udjlhme+lV+k+OuUOFyeNia8UipNh02z2QIrbGtpbB+vnjvINN9N; path=/; expires=Thu, 30-Mar-23 01:00:51 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2

brandedmedia.io/

188.114.97.1

200 OK

0 B

URL HTTP/2
brandedmedia.io/
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: brandedmedia.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Thu, 30 Mar 2023 00:30:51 GMT
content-type: text/html; charset=UTF-8
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: 9ko8xsa2g6
x-fw-version: 5.0.0
x-cacheable: YES
fastly-restarts: 1
x-served-by: cache-bma1678-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1680136250.369672,VS0,VE1265
vary: Accept-Encoding
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0Oi0F5V%2BjKCFAuSoI1hfyZ9d16lG4xNt33yWwsT%2Bm4fIMVuLHNLjbikh%2FVIj%2Bp7wyf7Ay6dO6H9n1WEiCmgAtMHqFbAKtbAFBQBl7VFOP4zguPKTE6M9D0B6NY9yxjaSWGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7afc3f0ca800b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (40)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML