Report - estulin.media

Report Overview

Submitted URL
estulin.media
IP
3.33.152.147
ASN
#16509 AMAZON-02
Submitted
2022-09-28 12:59:48
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	927 B	40 kB	142.250.74.10
player.vimeo.com	1858	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	34 kB	162.159.128.61
fresnel.vimeocdn.com	3128	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	780 B	34.120.202.204
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.9 kB	34.160.144.191
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.9 kB	218 kB	142.250.74.163
app.kartra.com	108193	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.6 kB	91 kB	104.17.208.37
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.148.17.90
f.vimeocdn.com	3234	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	254 kB	151.101.86.109
i.vimeocdn.com	3126	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	88 kB	151.101.86.109
vip.timezonedb.com	218872	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	451 B	935 B	142.93.88.12
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	57 kB	34.120.237.76
static.cloudflareinsights.com	1294	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	461 B	393 B	104.18.47.230
estulin.media	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	387 B	3.33.152.147
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	658 B	1.3 kB	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	7.7 kB	142.250.74.3
danielestulin.kartra.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	130 kB	104.17.208.37
d2uolguxr56s4e.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	311 kB	143.204.42.220
d1aettbyeyfilo.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	134 kB	54.230.245.37

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	player.vimeo.com/video/718506821?h=37ff158ba2	1.2 kB	2023-03-08	2023-03-08
Pretty URL player.vimeo.com/video/718506821?h=37ff158ba2 IP 162.159.128.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:45 Last Seen2023-03-08 03:05:45 Times Seen1 Hash 7b614b4524b40b79bd7a452f22608777 692f042049cf06be2a932967b23ce673486fb743 6f59de97aa1458fc0411e24411459ef3286b164433c5a2337a445a99a12a960e Loading...

	f.vimeocdn.com/p/4.10.1/js/player.js	907 kB	2023-03-07	2024-01-10
Pretty URL f.vimeocdn.com/p/4.10.1/js/player.js IP 151.101.86.109 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:01:33 Last Seen2024-01-10 10:41:01 Times Seen2 Hash e8a64fb2ccd5b1506aef3ead91572809 e8c82a646ecec7582b69eb4c6f9b0ce0dfb99f4d f8c22491872aae8cdfb88dce37ade08e14d76f1a677307deda4eb987b995a803 Loading...

	danielestulin.kartra.com/js/build/front/pages/skeleton-above.js	186 kB	2023-03-07	2023-03-11
Pretty URL danielestulin.kartra.com/js/build/front/pages/skeleton-above.js IP 104.17.208.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:28 Last Seen2023-03-11 20:55:14 Times Seen1 Hash 579f366c835e333664547312f2530f06 46598b7be517f720a76edc496deab9b48d39e80f 60835710f6f52432c23178074199763c29ed8fbc7a6fb909999b26acc0b93638 Loading...

	app.kartra.com/js/build/front/pages/countdown.js	8.6 kB	2023-03-08	2023-03-08
Pretty URL app.kartra.com/js/build/front/pages/countdown.js IP 104.17.208.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:45 Last Seen2023-03-08 03:05:45 Times Seen1 Hash 5055bf0735c52d8be85dc9681cb68595 f8344f9ac0dbfc396bc284526302f663227280ca b0efb889045835574bf78e87a016df32e60a9aaa9d6a94b0edeeeb20ebba7e34 Loading...

	player.vimeo.com/api/player.js	20 kB	2023-03-07	2024-04-17
Pretty URL player.vimeo.com/api/player.js IP 162.159.128.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:34 Last Seen2024-04-17 03:49:49 Times Seen9 Hash 42cbd99f83f7d91a7cb7f40f13b0cd98 7aa2158e913a18a4e815fa43fca763bacfe7ebb2 32c580e50f2df6739be4d12863694b740885c8aa6edbc80d87768f1af88f1005 Loading...

	player.vimeo.com/video/729257920?h=b442173e04	1.2 kB	2023-03-08	2023-03-08
Pretty URL player.vimeo.com/video/729257920?h=b442173e04 IP 162.159.128.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:45 Last Seen2023-03-08 03:05:45 Times Seen1 Hash 6c55fa539930addc84181295d5170da3 2dc7b2a6a73d48c02752f2fd261573aea2a9b3ad fae10c691cd498ef9ec2815e96c3e7ceeb07c504d40a07072ccfc6037fbd3fc2 Loading...

	player.vimeo.com/video/729257920?h=b442173e04	12 kB	2023-03-08	2023-03-08
Pretty URL player.vimeo.com/video/729257920?h=b442173e04 IP 162.159.128.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:45 Last Seen2023-03-08 03:05:45 Times Seen1 Hash 67cae7f8892118fec4f1fdf71d89bbd4 e190b8563ef0831b1b6bc314ee5e2af2826d6dbe 81a3a4a2b676a616059ae2a4641b47cb006e40c41299d3170843972ee1d47461 Loading...

	static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194	14 kB	2023-03-07	2024-04-23
Pretty URL static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 IP 104.18.47.230 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-23 06:45:22 Times Seen1630 Hash 19514b1be5ee33b45d32c1fcd4c67ec2 bdeab77b43cafcc638df9d7c26f1aa7f46bf1fd5 fd0a1ac929c11b08e819fe4b0a18c5574012c44f09de8987c6be99a0f055a505 Loading...

	danielestulin.kartra.com/js/build/front/pages/skeleton-immediate.js	7.3 kB	2023-03-07	2024-04-21
Pretty URL danielestulin.kartra.com/js/build/front/pages/skeleton-immediate.js IP 104.17.208.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:28 Last Seen2024-04-21 18:57:13 Times Seen38 Hash d5f6fea94cc32389ffc664bf86de8283 08666ce2de9cc32ca5e424b27318d2bd63118268 8fda0820478381b07d4294f2cb508287a705bfbdb0f9a7d425d4258913221da7 Loading...

	player.vimeo.com/video/729257920?h=b442173e04	200 B	2023-03-07	2023-12-19
Pretty URL player.vimeo.com/video/729257920?h=b442173e04 IP 162.159.128.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:34 Last Seen2023-12-19 13:15:14 Times Seen10 Hash af8cc9e4334b181797ba45066b8ef4d8 c4c1b4ea678176597ae6720445f701d40bfda97d f675bde2f1e403c77205aa30dfe61dc90f15027df3679a79c4582cc804690783 Loading...

	danielestulin.kartra.com/page/NKt7	51 B	2023-03-07	2024-01-27
Pretty URL danielestulin.kartra.com/page/NKt7 IP 104.17.208.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:45:41 Last Seen2024-01-27 09:06:25 Times Seen12 Hash 82722767ff84e3d57c751291504c5816 a54500f9d46602c11669a4e46aee3cdd36be4326 49af59e27a5c1df8013e22df97852ec947ff04f29c61cdd57dd287803ff6e43d Loading...

	app.kartra.com/resources/js/kartra_embed_wild_card?type=kartra_page&owner=8rx4bGRr	6.7 kB	2023-03-07	2023-03-11
Pretty URL app.kartra.com/resources/js/kartra_embed_wild_card?type=kartra_page&owner=8rx4bGRr IP 104.17.208.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:28 Last Seen2023-03-11 20:55:14 Times Seen1 Hash 318f433229be4d9720175cdbca991e4a dd2761f78f5f5ebe5bb2d6f73ceb3f47a8943e89 23c23cb8bd5c026b3fdc092710a2b8bf6bcfdcf0ecb2fc251c5cd4648208f3fb Loading...

	app.kartra.com/js/build/front/pages/jquery.lwtCountdown-1.0.js	4.7 kB	2023-03-08	2024-04-21
Pretty URL app.kartra.com/js/build/front/pages/jquery.lwtCountdown-1.0.js IP 104.17.208.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:45 Last Seen2024-04-21 18:57:13 Times Seen16 Hash bc3753fd9b6d0a5d87359a115cb1fed7 b717ee81983ec943e6725666b7fd2ae25ebd0f16 f85e921670e178dd58061e33b8a6328fa1156cbb170a625e2645e6e6721a1842 Loading...

	player.vimeo.com/video/718506821?h=37ff158ba2	15 kB	2023-03-08	2023-03-08
Pretty URL player.vimeo.com/video/718506821?h=37ff158ba2 IP 162.159.128.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:45 Last Seen2023-03-08 03:05:45 Times Seen1 Hash d435afca52c0f19c5119c9fbcf887f88 656eabba0e37d0f6335020fc1a5c20487f45b81a 6aa057dabd371d142604685aeb5c86aa03c6a86e0eb79d1cda5c0da251679859 Loading...

	app.kartra.com/external_video/vimeo/718506821?h=37ff158ba2&amp	371 B	2023-03-08	2023-03-08
Pretty URL app.kartra.com/external_video/vimeo/718506821?h=37ff158ba2&amp IP 104.17.208.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:45 Last Seen2023-03-08 03:05:45 Times Seen1 Hash 7b1767f6d35541d091b5bbc26749800b 39d5a427464fe171bea15cb54f3a350574172ff9 82171554c84f77a75867e58777d3621202c7113de3466ca23407cab78277a72b Loading...

	f.vimeocdn.com/js_opt/modules/utils/vuid.min.js	1.9 kB	2023-03-07	2024-04-22
Pretty URL f.vimeocdn.com/js_opt/modules/utils/vuid.min.js IP 151.101.86.109 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:34 Last Seen2024-04-22 22:56:20 Times Seen1353 Hash 83583a4061ddc27e8b6ee0dc269519cd 8b1c0acc28729208f640473eb5d8fb82c4ba3e15 c051b8b5eb2a0aef699780f15a449491868faa6f8b39b684b5ae8f64f345b94a Loading...

	f.vimeocdn.com/p/4.10.1/js/module/sentry.js	72 kB	2023-03-07	2023-03-08
Pretty URL f.vimeocdn.com/p/4.10.1/js/module/sentry.js IP 151.101.86.109 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:13:24 Last Seen2023-03-08 03:05:45 Times Seen1 Hash ef9e798e3a6cba82a2294ae3787c71d1 60e4c2e7a48aa0d78a3a041e2d08f32e3ea1e55e e604bf8c9dd015d9ea72cdc7f485b3a993e859cd4ec85a7d026c5c3f43366a8e Loading...

	danielestulin.kartra.com/page/NKt7	1.5 kB	2023-03-08	2023-03-08
Pretty URL danielestulin.kartra.com/page/NKt7 IP 104.17.208.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:45 Last Seen2023-03-08 03:05:45 Times Seen1 Hash 1083c80f7811f448264b5ec13416fd63 ccfbae77611c805d6b904592b2873da508981f5c 7cf2a140cc0e5f6f58f0bea154456a1f44798783fef6257bbe5c85fb0355d82e Loading...

	danielestulin.kartra.com/page/NKt7	1.7 kB	2023-03-08	2023-03-08
Pretty URL danielestulin.kartra.com/page/NKt7 IP 104.17.208.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:05:45 Last Seen2023-03-08 03:05:45 Times Seen1 Hash 6010932904c43697a4d92415a62dd9c4 4929aa11d0e823cf5f598d4914743109fe98c9eb 8a584f948aaba53db19f58a64b8de06447867029ff883d6f55fa59d62a81640c Loading...

	danielestulin.kartra.com/js/build/front/pages/skeleton-below.js	13 kB	2023-03-07	2023-03-11
Pretty URL danielestulin.kartra.com/js/build/front/pages/skeleton-below.js IP 104.17.208.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:28 Last Seen2023-03-11 20:55:14 Times Seen1 Hash baff4bf924d4b578ec20022326419ec9 9bc6ed17db321e068354580c9e6ce03d373c88a7 b5db34f5ec4e18a5411eedc2837a8d9deb88812dc05d48b36a6691a9713bab78 Loading...

	app.kartra.com/resources/js/analytics/8rx4bGRr	6.0 kB	2023-03-07	2023-09-28
Pretty URL app.kartra.com/resources/js/analytics/8rx4bGRr IP 104.17.208.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:54 Last Seen2023-09-28 01:02:01 Times Seen22 Hash 6d9395ac063ad635aec28a343ec318d6 cb06f6556b90647207a6d45587f8b48603faf05f 592a8b27e9a69bbaf008ada9590dfde98d161a1d5e489a8a9d51f66c5cc242f1 Loading...

	app.kartra.com/resources/js/page_check?page_id=rPlbjNveCFCp	127 B	2023-03-07	2024-04-21
Pretty URL app.kartra.com/resources/js/page_check?page_id=rPlbjNveCFCp IP 104.17.208.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:28 Last Seen2024-04-21 18:57:13 Times Seen36 Hash 95814efb19d95eac81fca3eef6cf9245 50573e37fb8aea4a307f02c9254d938cd65edc75 04ba9191a34da1249205be89a6290068726ffc1d18bd809ddabb2d3ef2fe2405 Loading...

HTTP Transactions (82)

	URL	IP	Response	Size
	estulin.media/	3.33.152.147	301 Moved Permanently	77 B
URL HTTP/1.1 estulin.media/ IP 3.33.152.147:0 ASN #16509 AMAZON-02 File type HTML document, ASCII text Size 77 B (77 bytes) Hash 61ed3c764eb3ca5b7fceacf708df25f9 d6937269d21cd5d2fe50deb37c6b17072bc85a22 fa4c1918eeb2a49c0b6811078ab808c07d4dde678f67c5e0cf5c47b623594b19 HTTP Headers `GET / HTTP/1.1 Host: estulin.media User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Date: Wed, 28 Sep 2022 12:59:37 GMT Content-Type: text/html; charset=utf-8 Content-Length: 77 Connection: keep-alive Location: https://danielestulin.kartra.com/page/NKt7 Server: ip-100-74-2-62.eu-west-2.compute.internal X-Request-Id: 323bba44-0987-4e3d-8876-9fd3aa1db799`

	firefox.settings.services.mozilla.com/v1/	143.204.55.36	200 OK	939 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/ IP 143.204.55.36:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 2d12f67fe57a87e7366b662d153a5582 d7b02d81cc74f24a251d9363e0f4b0a149264ec1 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert Cache-Control: max-age=3600 Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Wed, 28 Sep 2022 12:05:41 GMT X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: JCOhJqmvnX-hgunVgCwK4t5QX7dVrMa8IlpmUAPAnLGitWPOiqL5sw== Age: 3236

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7fb7c70f7f4e2cee27eb0e7d875931f7 98fca3817a551b1daecebae103a48e718b8b5a53 2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349" Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9133 Expires: Wed, 28 Sep 2022 15:31:50 GMT Date: Wed, 28 Sep 2022 12:59:37 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8afc4649e99d0e42b9bf5b133eebed5c e3e7e0e614af3262b74bd4b6267ef23293bdb5f0 e16e8b782b441ecb9a57c3fc3db9884b5a3034967b846cca67b2f53644fcabdf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E16E8B782B441ECB9A57C3FC3DB9884B5A3034967B846CCA67B2F53644FCABDF" Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11231 Expires: Wed, 28 Sep 2022 16:06:48 GMT Date: Wed, 28 Sep 2022 12:59:37 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: viLW2Cuayvq0i3aVHGxuNatC058Mwfv1tPziH7jzEbpr4yeCvnGmCdmnMx2kJPKHqT5PqevT8t+3UJat5+PCDg== x-amz-request-id: 9N43S7H2RVEXF7Y5 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 28 Sep 2022 12:50:02 GMT age: 575 last-modified: Sat, 10 Sep 2022 18:47:45 GMT etag: "6113f8408c59aebe188d6af273b90743" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 7ed092227d2b36588b9fc49d058341ca cf66a79c3b62ffc05457fe241d57ee8b508edeb9 730ae93d53b4963d893179d438f24619c1e9d8c623c5bd2120498b747a72660e HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6418 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:37 GMT Last-Modified: Wed, 28 Sep 2022 11:12:40 GMT Server: ECS (ska/F71A) X-Cache: HIT Content-Length: 279`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 28 Sep 2022 12:59:37 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	143.204.55.36	200 OK	329 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 143.204.55.36:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Cache-Control: max-age=3600, max-age=3600 Date: Wed, 28 Sep 2022 12:29:33 GMT Expires: Wed, 28 Sep 2022 13:04:06 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: HmWmuc97M72Z9rN1isS0GAR1iGkm2Sg69EapytupIzgs0LyH9HZ0Uw== Age: 1805

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 3526d5ce1381ba26cbc553db057e1915 fe01c920696448e8bf12e6fff877bce8281d34a2 09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2515 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:38 GMT Last-Modified: Wed, 28 Sep 2022 12:17:43 GMT Server: ECS (ska/F71A) X-Cache: HIT Content-Length: 471`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash e2875a9e06f892f0d4fa46c0f98a1c49 9c0e332f55a592367b602494642ee2127699b543 74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	push.services.mozilla.com/	54.148.17.90	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.148.17.90:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: SE8zbGxkOXuKzF3yvgwYhw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: +NJWdxyvmr0VajO9DEk01WG1Dw4=`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash e2875a9e06f892f0d4fa46c0f98a1c49 9c0e332f55a592367b602494642ee2127699b543 74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:38 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash fc82211401f793132f7d43c2fd253af5 605d8371709b5d2a41967fd390c34fa649f89ea3 b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2	142.250.74.163	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size 16 kB (15744 bytes) Hash 15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 HTTP Headers `GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 21 Sep 2022 19:34:08 GMT expires: Thu, 21 Sep 2023 19:34:08 GMT cache-control: public, max-age=31536000 age: 581131 last-modified: Wed, 11 May 2022 19:24:48 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash fc82211401f793132f7d43c2fd253af5 605d8371709b5d2a41967fd390c34fa649f89ea3 b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	app.kartra.com/css/new/css/pages/font-awesome.css	104.17.208.37	200 OK	23 kB
URL HTTP/2 app.kartra.com/css/new/css/pages/font-awesome.css IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type data Size 23 kB (22675 bytes) Hash 3a1ef51b541e718449eae68c5d32c73c 600abcc291febb4dcff9e20e955cd7f51c92845f 8d7d6a751661ad5cf1275287a6ea949eed690e7cc713542b0a184375c73ac383 HTTP Headers `GET /css/new/css/pages/font-awesome.css HTTP/1.1 Host: app.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:38 GMT content-type: text/css cf-bgj: minify cf-polished: origSize=29915 etag: W/"620e0412-74db" last-modified: Thu, 17 Feb 2022 08:15:14 GMT strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: HIT age: 1897 expires: Wed, 28 Sep 2022 13:04:38 GMT cache-control: public, max-age=300 vary: Accept-Encoding server: cloudflare cf-ray: 751ca84dbc5d0b55-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash fc82211401f793132f7d43c2fd253af5 605d8371709b5d2a41967fd390c34fa649f89ea3 b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	danielestulin.kartra.com/js/build/front/pages/skeleton-above.js	104.17.208.37	200 OK	83 kB
URL HTTP/2 danielestulin.kartra.com/js/build/front/pages/skeleton-above.js IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type data Size 83 kB (83172 bytes) Hash 40a9a6122fb6d494d900ff7deecfb8b3 acd6de5e12a93a85510606652f6bb29be5f1dd02 8e3046bda03150ddaa1fbf5c952856f64aa22a404c761696b14e1f72bf520ec2 HTTP Headers `GET /js/build/front/pages/skeleton-above.js HTTP/1.1 Host: danielestulin.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/page/NKt7 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:39 GMT content-type: application/javascript; charset=utf-8 last-modified: Mon, 01 Aug 2022 12:21:08 GMT etag: W/"62e7c534-2d68c" strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: MISS expires: Wed, 28 Sep 2022 13:04:39 GMT cache-control: public, max-age=300 vary: Accept-Encoding server: cloudflare cf-ray: 751ca84dac410b55-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2	142.250.74.163	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 17032, version 1.0\012- data Size 17 kB (17032 bytes) Hash 05a47f9e469d408c629f931cd33ff8b2 823f21f7b1d456db889c3afea393f0d2b9581c38 6be97ca17228a69c406231d89c003194c3dfba7401eaa9fe9e9ed0ef1c18dc38 HTTP Headers `GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 17032 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 21 Sep 2022 19:51:08 GMT expires: Thu, 21 Sep 2023 19:51:08 GMT cache-control: public, max-age=31536000 age: 580111 last-modified: Wed, 11 May 2022 19:24:52 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2	142.250.74.163	200 OK	18 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 17508, version 1.0\012- data Size 18 kB (17508 bytes) Hash 7fbdfaab6bd8b191496ffe1ef1b9e748 e9e592f8498d489d8000f3a4cfb1bb447f251edd bb8007225d94a099cddbade7ea904667c0dd0b68d5e30778e5c6257589ab94d1 HTTP Headers `GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 17508 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 21 Sep 2022 19:44:30 GMT expires: Thu, 21 Sep 2023 19:44:30 GMT cache-control: public, max-age=31536000 age: 580509 last-modified: Wed, 11 May 2022 19:24:41 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/sourceserifpro/v15/neIQzD-0qpwxpaWvjeD0X88SAOeauXQ-oA.woff2	142.250.74.163	200 OK	20 kB
URL HTTP/2 fonts.gstatic.com/s/sourceserifpro/v15/neIQzD-0qpwxpaWvjeD0X88SAOeauXQ-oA.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 19980, version 1.0\012- data Size 20 kB (19980 bytes) Hash 98704f42d118d52a4979dc08df276440 0066115b1dfedfe4cb6294fbdc73f921e6062ab9 547a2c05a1b8744633148a704ddba5adac238c5cbaf05bbd25606827a372b019 HTTP Headers `GET /s/sourceserifpro/v15/neIQzD-0qpwxpaWvjeD0X88SAOeauXQ-oA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 19980 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 21 Sep 2022 19:39:06 GMT expires: Thu, 21 Sep 2023 19:39:06 GMT cache-control: public, max-age=31536000 age: 580833 last-modified: Wed, 27 Apr 2022 15:45:12 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/sourceserifpro/v15/neIXzD-0qpwxpaWvjeD0X88SAOeasc8btSyqxA.woff2	142.250.74.163	200 OK	21 kB
URL HTTP/2 fonts.gstatic.com/s/sourceserifpro/v15/neIXzD-0qpwxpaWvjeD0X88SAOeasc8btSyqxA.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 20884, version 1.0\012- data Size 21 kB (20884 bytes) Hash 6f83b212799af717170a27228aa65771 68ff4fa008f3d06bdb2950ad19d7020abf12c479 d42a2e1e2995c1b5d0716ac0c6f2eef70ad416c8993b87b95954e15a3c77b26a HTTP Headers GET /s/sourceserifpro/v15/neIXzD-0qpwxpaWvjeD0X88SAOeasc8btSyqxA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 20884 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 21 Sep 2022 23:41:13 GMT expires: Thu, 21 Sep 2023 23:41:13 GMT cache-control: public, max-age=31536000 age: 566306 last-modified: Wed, 27 Apr 2022 15:27:39 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	danielestulin.kartra.com/page/NKt7	104.17.208.37	200 OK	31 kB
URL HTTP/2 danielestulin.kartra.com/page/NKt7 IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type data Size 31 kB (30815 bytes) Hash 6b825885df42300749e09ae06176c1d2 a460dab32d483628615015a288d0ad0bbd32d604 bd1fb17ca2e8bb9d242ab11a3c0ad182fa7817cadc4be3a14f19f604daf40b9c HTTP Headers `GET /page/NKt7 HTTP/1.1 Host: danielestulin.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:38 GMT content-type: text/html; charset=utf-8 last-modified: Mon, 19 Sep 2022 21:46:50 GMT strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: DYNAMIC server: cloudflare cf-ray: 751ca8494f780b55-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash fc82211401f793132f7d43c2fd253af5 605d8371709b5d2a41967fd390c34fa649f89ea3 b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	d2uolguxr56s4e.cloudfront.net/internal/pages/css/new_bootstrap.css	143.204.42.220	200 OK	28 kB
URL HTTP/2 d2uolguxr56s4e.cloudfront.net/internal/pages/css/new_bootstrap.css IP 143.204.42.220:0 ASN #16509 AMAZON-02 File type data Size 28 kB (27852 bytes) Hash 27dd20efe9ed0b2e87740887f61d73fc 646d44323b3eb0e193d9d79c51e675c6c65df2db 7dbe06a3ce654d2f8cb65e398c8233cafc69a4dd595aa78e72ed357ea9c34ea1 HTTP Headers `GET /internal/pages/css/new_bootstrap.css HTTP/1.1 Host: d2uolguxr56s4e.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: text/css date: Wed, 28 Sep 2022 08:26:17 GMT last-modified: Wed, 28 Sep 2022 08:26:11 GMT etag: W/"864ae5aadfb9f1a8f8d9cf49fa0e7280" x-amz-version-id: zCNZIXYGX0tWWfStnJAtVKSim2KXaTdK server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: dGLIS7EAY1-fuT6WLpUyvj9tefS7f0jGQ64e0imkxv3VMst1HrVJoA== age: 16402 X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2	142.250.74.163	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data Size 17 kB (17368 bytes) Hash abe083d96b58eb02ada8b7c30d7b09f2 61447d66d13a8c8f4335696777a85c438c46f749 db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9 HTTP Headers `GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 17368 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 21 Sep 2022 19:47:56 GMT expires: Thu, 21 Sep 2023 19:47:56 GMT cache-control: public, max-age=31536000 age: 580303 last-modified: Wed, 11 May 2022 19:24:42 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/asap/v24/KFOmCniXp96ayz4u4mxK.woff2	142.250.74.163	200 OK	29 kB
URL HTTP/2 fonts.gstatic.com/s/asap/v24/KFOmCniXp96ayz4u4mxK.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 28668, version 1.0\012- data Size 29 kB (28668 bytes) Hash c59fb4cf7f90aa2237982eba72d763d9 fa150f625154855e8bfa3fb68a8efa8a51811d20 2396a71bd8cd6691eddb1986207f0bffe2f2e2437aa486535d9a953bc6280cb3 HTTP Headers `GET /s/asap/v24/KFOmCniXp96ayz4u4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 28668 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 23 Sep 2022 16:47:23 GMT expires: Sat, 23 Sep 2023 16:47:23 GMT cache-control: public, max-age=31536000 age: 418336 last-modified: Fri, 24 Jun 2022 19:40:03 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash fc82211401f793132f7d43c2fd253af5 605d8371709b5d2a41967fd390c34fa649f89ea3 b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2	142.250.74.163	200 OK	31 kB
URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Size 31 kB (30928 bytes) Hash ac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780 HTTP Headers `GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 30928 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 22 Sep 2022 16:40:18 GMT expires: Fri, 22 Sep 2023 16:40:18 GMT cache-control: public, max-age=31536000 age: 505161 last-modified: Mon, 11 Jul 2022 18:57:39 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	app.kartra.com/resources/js/kartra_embed_wild_card?type=kartra_page&owner=8rx4bGRr	104.17.208.37	200 OK	25 kB
URL HTTP/2 app.kartra.com/resources/js/kartra_embed_wild_card?type=kartra_page&owner=8rx4bGRr IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type data Size 25 kB (24605 bytes) Hash 58554a8a25f6e0de139536325687fc82 168c803332d945bf3945beac14ee553205c2f4e8 ae9c50034083debe1152f5d03901cb1a2e0d870df59b1be4cf32f4d4b64505f7 HTTP Headers `GET /resources/js/kartra_embed_wild_card?type=kartra_page&owner=8rx4bGRr HTTP/1.1 Host: app.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:39 GMT content-type: application/javascript; charset=UTF-8 strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: DYNAMIC server: cloudflare cf-ray: 751ca84deca70b55-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	app.kartra.com/resources/js/analytics/8rx4bGRr	104.17.208.37	200 OK	25 kB
URL HTTP/2 app.kartra.com/resources/js/analytics/8rx4bGRr IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type data Size 25 kB (24692 bytes) Hash 364e110e2f5ed0923fe7f89432b27e1e 06f7a5562b0f3506b1289010065a6440c1ab7b66 6a701f657c83fc2d2927491d17e8f41a6159b8c4e6af31aa24d108645a25c47e HTTP Headers `GET /resources/js/analytics/8rx4bGRr HTTP/1.1 Host: app.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:39 GMT content-type: application/javascript; charset=UTF-8 strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: DYNAMIC server: cloudflare cf-ray: 751ca84dcc850b55-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/anton/v23/1Ptgg87LROyAm3Kz-C8.woff2	142.250.74.163	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/anton/v23/1Ptgg87LROyAm3Kz-C8.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 17020, version 1.0\012- data Size 17 kB (17020 bytes) Hash aca09278214a7e267c0498cdd36ce416 ab7def30380e8f14e6064a9fd3c7dca6769ad85d feb9617bd3fcda1a52cbf8539985fddac2aaab0e6df8dbdac21ec3e9a179a4be HTTP Headers `GET /s/anton/v23/1Ptgg87LROyAm3Kz-C8.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 17020 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 26 Sep 2022 20:02:44 GMT expires: Tue, 26 Sep 2023 20:02:44 GMT cache-control: public, max-age=31536000 age: 147415 last-modified: Tue, 19 Apr 2022 18:51:08 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Roboto:300,300i,400,400i,600,600i,700,700i,900,900i\|Lato:300,300i,400,400i,600,600i,700,700i,900,900i\|Raleway:300,300i,400,400i,600,600i,700,700i,900,900i\|Anton:300,300i,400,400i,600,600i,700,700i,900,900i\|Zilla+Slab:300,300i,400,400i,600,600i,700,700i,900,900i\|Asap:300,300i,400,400i,600,600i,700,700i,900,900i\|Source+Serif+Pro:300,300i,400,400i,600,600i,700,700i,900,900i\|Montserrat:300,300i,400,400i,600,600i,700,700i,900,900i\|Nunito:300,300i,400,400i,600,600i,700,700i,900,900i\|Open+Sans:300,300i,400,400i,600,600i,700,700i,900,900i&display=swap	142.250.74.10	200 OK	40 kB
URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,300i,400,400i,600,600i,700,700i,900,900i\|Lato:300,300i,400,400i,600,600i,700,700i,900,900i\|Raleway:300,300i,400,400i,600,600i,700,700i,900,900i\|Anton:300,300i,400,400i,600,600i,700,700i,900,900i\|Zilla+Slab:300,300i,400,400i,600,600i,700,700i,900,900i\|Asap:300,300i,400,400i,600,600i,700,700i,900,900i\|Source+Serif+Pro:300,300i,400,400i,600,600i,700,700i,900,900i\|Montserrat:300,300i,400,400i,600,600i,700,700i,900,900i\|Nunito:300,300i,400,400i,600,600i,700,700i,900,900i\|Open+Sans:300,300i,400,400i,600,600i,700,700i,900,900i&display=swap IP 142.250.74.10:0 ASN #15169 GOOGLE File type data Size 40 kB (39740 bytes) Hash 340c96a50305b8b6748e3ace47a87d13 50930f3f4ace88a75914142f3dc8919ababf93de 428384a7e5a71cdabc8cc58d1f1e5d648a5f9a8c01889b398107358775240164 HTTP Headers GET /css?family=Roboto:300,300i,400,400i,600,600i,700,700i,900,900i\|Lato:300,300i,400,400i,600,600i,700,700i,900,900i\|Raleway:300,300i,400,400i,600,600i,700,700i,900,900i\|Anton:300,300i,400,400i,600,600i,700,700i,900,900i\|Zilla+Slab:300,300i,400,400i,600,600i,700,700i,900,900i\|Asap:300,300i,400,400i,600,600i,700,700i,900,900i\|Source+Serif+Pro:300,300i,400,400i,600,600i,700,700i,900,900i\|Montserrat:300,300i,400,400i,600,600i,700,700i,900,900i\|Nunito:300,300i,400,400i,600,600i,700,700i,900,900i\|Open+Sans:300,300i,400,400i,600,600i,700,700i,900,900i&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 28 Sep 2022 12:59:38 GMT date: Wed, 28 Sep 2022 12:59:38 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash fc82211401f793132f7d43c2fd253af5 605d8371709b5d2a41967fd390c34fa649f89ea3 b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	player.vimeo.com/api/player.js	162.159.128.61	200 OK	6.1 kB
URL HTTP/1.1 player.vimeo.com/api/player.js IP 162.159.128.61:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (20390) Size 6.1 kB (6136 bytes) Hash 517096278768b4afc862e5816d65a0cd efb337f1d1c369be5b5fa5fb34c3742d54dcb87d e39f4bcf8422e05cf4600c00ec36a02ee3ef772f947874272456534c6bffbe13 HTTP Headers `GET /api/player.js HTTP/1.1 Host: player.vimeo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.kartra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Date: Wed, 28 Sep 2022 12:59:39 GMT Content-Type: application/javascript;charset=utf-8 Content-Length: 6136 Connection: keep-alive x-xss-protection: 1; mode=block content-security-policy: default-src 'none'; style-src 'unsafe-inline' x-content-type-options: nosniff content-encoding: gzip strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: * p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy" expires: Wed, 28 Sep 2022 13:24:36 GMT x-host: player-74cdb576d6-rcd5m via: 1.1 varnish, 1.1 varnish cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 x-varnish-cache: 0 x-vserver: playproxy-rollout-prod-varnish-0 x-backend-proxy: playproxy1 x-bapp-server: player-74cdb576d6-rcd5m Accept-Ranges: bytes Age: 304 X-Served-By: cache-bma1663-BMA X-Cache: HIT X-Cache-Hits: 597 X-Timer: S1664369980.640906,VS0,VE0 Vary: Accept-Encoding X-Player-Backend: p CF-Cache-Status: DYNAMIC Set-Cookie: __cf_bm=9u4PTqyX7vibHnaj7Bz_UIXfB2vcIRtxz3Nx4yZkB94-1664369979-0-Ae+h2fXsVvOWp9vS/q6rU6kLE0VEU303gBRz+NY0f6+2IRHh3J2A6rYIjKnzKjtGNrgDv14QwqkoTJYB7lPiDpY=; path=/; expires=Wed, 28-Sep-22 13:29:39 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None Server: cloudflare CF-RAY: 751ca8549b4bb503-OSL

	player.vimeo.com/api/player.js	162.159.128.61	200 OK	6.1 kB
URL HTTP/1.1 player.vimeo.com/api/player.js IP 162.159.128.61:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (20390) Size 6.1 kB (6136 bytes) Hash 517096278768b4afc862e5816d65a0cd efb337f1d1c369be5b5fa5fb34c3742d54dcb87d e39f4bcf8422e05cf4600c00ec36a02ee3ef772f947874272456534c6bffbe13 HTTP Headers `GET /api/player.js HTTP/1.1 Host: player.vimeo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.kartra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Date: Wed, 28 Sep 2022 12:59:39 GMT Content-Type: application/javascript;charset=utf-8 Content-Length: 6136 Connection: keep-alive x-xss-protection: 1; mode=block content-security-policy: default-src 'none'; style-src 'unsafe-inline' x-content-type-options: nosniff content-encoding: gzip strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: * p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy" expires: Wed, 28 Sep 2022 13:24:36 GMT x-host: player-74cdb576d6-rcd5m via: 1.1 varnish, 1.1 varnish cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 x-varnish-cache: 0 x-vserver: playproxy-rollout-prod-varnish-0 x-backend-proxy: playproxy1 x-bapp-server: player-74cdb576d6-rcd5m Accept-Ranges: bytes Age: 303 X-Served-By: cache-bma1624-BMA X-Cache: HIT X-Cache-Hits: 603 X-Timer: S1664369980.674123,VS0,VE0 Vary: Accept-Encoding X-Player-Backend: p CF-Cache-Status: DYNAMIC Set-Cookie: __cf_bm=xfD1c75MTW6G87PHMEJUgjOx2zljSBaDgpCP4jprw5c-1664369979-0-AZFc7B1EUfa7DO5d2tnXhiZIamqJ4EHQvfVuyCyny0rlSmbx76KQ43ym1ZTZENMz0zE+Pql1cVf1/RC7B6RTYxg=; path=/; expires=Wed, 28-Sep-22 13:29:39 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None Server: cloudflare CF-RAY: 751ca854dba1b503-OSL

	player.vimeo.com/video/729257920?h=b442173e04	162.159.128.61	200 OK	4.9 kB
URL HTTP/1.1 player.vimeo.com/video/729257920?h=b442173e04 IP 162.159.128.61:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15227) Size 4.9 kB (4925 bytes) Hash f5bd244074af6e0152efe517fb1cd049 c82e6a7ced6285f971d77e5de0d73cf69301bf8d 7d362e60787d3d943a79c27942ea5c107fce131e702214b0ffb089307a5cdf2e HTTP Headers `GET /video/729257920?h=b442173e04 HTTP/1.1 Host: player.vimeo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.kartra.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Date: Wed, 28 Sep 2022 12:59:39 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive x-xss-protection: 1; mode=block content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://.akamaized.net https://.akamaized-staging.net https://.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://.dna-delivery.com https://.kollective.app/ https://mimir.cloud.vimeo.com https://.wirewax.com https://.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://.vimeocdn.com https://.akamaized.net https://.akamaized-staging.net https://.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://.vimeocdn.com https://.akamaized.net https://.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*; report-uri /_csp x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy" expires: Wed, 28 Sep 2022 13:01:57 GMT x-host: player-74cdb576d6-czlvs via: 1.1 varnish, 1.1 varnish cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 x-varnish-cache: 1 x-vserver: playproxy-rollout-prod-varnish-1 x-backend-proxy: playproxy2 x-bapp-server: player-74cdb576d6-czlvs Age: 0 X-Served-By: cache-bma1675-BMA X-Cache: MISS X-Cache-Hits: 0 X-Timer: S1664369980.643693,VS0,VE122 Vary: Accept-Encoding X-Player-Backend: p CF-Cache-Status: DYNAMIC Set-Cookie: __cf_bm=_bWoCrl8UeM0EeoA6puImikVWEQEAZWAGG5t02Rp_IU-1664369979-0-AZqk44pY8XXftKDJ8WA9VfohqIS0c1Hfn12u3hTNlw1jge7X5xrC5xiCk7hEDNmWMVXMEIKCFJ55K5ILMw6uJ8I=; path=/; expires=Wed, 28-Sep-22 13:29:39 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None Server: cloudflare CF-RAY: 751ca854a95b1bfe-OSL Content-Encoding: gzip

	d2uolguxr56s4e.cloudfront.net/img/shared/favicon.ico	143.204.42.220	200 OK	2.5 kB
URL HTTP/2 d2uolguxr56s4e.cloudfront.net/img/shared/favicon.ico IP 143.204.42.220:0 ASN #16509 AMAZON-02 File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data Size 2.5 kB (2462 bytes) Hash 19a8b89008e4155e061ea82eb846f493 f559e892f3552d53b3c267ce644b4e4102e8aa20 9134248118ae40824ef21fa0e373355ad32b5f63cf727fe633fa0c5c1b3035dd HTTP Headers `GET /img/shared/favicon.ico HTTP/1.1 Host: d2uolguxr56s4e.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK content-type: image/x-icon content-length: 2462 date: Wed, 28 Sep 2022 08:26:16 GMT last-modified: Tue, 10 Mar 2020 15:31:23 GMT etag: "19a8b89008e4155e061ea82eb846f493" x-amz-version-id: epE6h0SoNmE91XgoqF66UFcuWujxroOp accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: IBDY2OEcSKeiM1WzS25PuPNTzV4K2mEbaN2FXumUDvg5rN-dvxMNdw== age: 16403 X-Firefox-Spdy: h2`

	d2uolguxr56s4e.cloudfront.net/img/kartrapages/bg_pattern_noise.png	143.204.42.220	200 OK	32 kB
URL HTTP/2 d2uolguxr56s4e.cloudfront.net/img/kartrapages/bg_pattern_noise.png IP 143.204.42.220:0 ASN #16509 AMAZON-02 File type PNG image data, 128 x 127, 8-bit/color RGBA, non-interlaced\012- data Size 32 kB (32240 bytes) Hash f0d6bbd67673e03fc69b89b32bd469fb aa7ff9910a37abcbaa9598e862fa9056d40a343e 4d3e545d658464f55d95fec32437c3326a6f6ca192bc228d287763933c205262 HTTP Headers `GET /img/kartrapages/bg_pattern_noise.png HTTP/1.1 Host: d2uolguxr56s4e.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK content-type: image/png content-length: 32240 date: Wed, 28 Sep 2022 08:29:36 GMT last-modified: Tue, 10 Mar 2020 09:17:41 GMT etag: "f0d6bbd67673e03fc69b89b32bd469fb" x-amz-version-id: w4aXs1owEPFtTBdc2kuyNq8luGlZK4PF accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: -9nb1G0Lbq3fYsHHpeYD_2P3KeETDzafdVKmFgXfHNk_oJtMWkV2PQ== age: 16204 X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 139d64e28724086d1d5ab6d2f534ff25 2c717905e83564a17bd8ca61dd934133416f629b a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00" Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8522 Expires: Wed, 28 Sep 2022 15:21:41 GMT Date: Wed, 28 Sep 2022 12:59:39 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 139d64e28724086d1d5ab6d2f534ff25 2c717905e83564a17bd8ca61dd934133416f629b a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00" Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8522 Expires: Wed, 28 Sep 2022 15:21:41 GMT Date: Wed, 28 Sep 2022 12:59:39 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 139d64e28724086d1d5ab6d2f534ff25 2c717905e83564a17bd8ca61dd934133416f629b a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00" Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8522 Expires: Wed, 28 Sep 2022 15:21:41 GMT Date: Wed, 28 Sep 2022 12:59:39 GMT Connection: keep-alive`

	f.vimeocdn.com/p/4.10.1/css/player.css	151.101.86.109	200 OK	20 kB
URL HTTP/2 f.vimeocdn.com/p/4.10.1/css/player.css IP 151.101.86.109:0 ASN #54113 FASTLY File type ASCII text, with very long lines (65495) Size 20 kB (20284 bytes) Hash 674ea13d207a5c2820c92eb236796548 439a3a05f926e21e43ed043e47197aec6c02358f 99105d0c1f2a3eee4823bc2f2151f1747c3f7fa45df401596bc2273328abc22f HTTP Headers `GET /p/4.10.1/css/player.css HTTP/1.1 Host: f.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: text/css content-encoding: br via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 28 Sep 2022 12:59:39 GMT age: 667328 x-served-by: cache-iad-kjyo7100154-IAD, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 61, 128252 x-timer: S1664369980.887144,VS0,VE0 vary: Accept-Encoding,x-http-method-override cache-control: max-age=1209600 access-control-allow-origin: * content-length: 20284 X-Firefox-Spdy: h2`

	app.kartra.com/js/build/front/pages/countdown.js	104.17.208.37	200 OK	7.3 kB
URL HTTP/2 app.kartra.com/js/build/front/pages/countdown.js IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type data Size 7.3 kB (7291 bytes) Hash 0abe4602b5bfbfbf49d47f744ba3b2be 72cd842a6bdafc403b3b5d85fddff622c9c2e3aa cc40d82486eccd655b9743de3c9636a4d7c0048663fe6338a6aab5a447a9cde6 HTTP Headers `GET /js/build/front/pages/countdown.js HTTP/1.1 Host: app.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:38 GMT content-type: application/javascript; charset=utf-8 cf-bgj: minify cf-polished: origSize=12143 etag: W/"620cc735-2f6f" last-modified: Wed, 16 Feb 2022 09:43:17 GMT strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: HIT age: 1827 expires: Wed, 28 Sep 2022 13:04:38 GMT cache-control: public, max-age=300 vary: Accept-Encoding server: cloudflare cf-ray: 751ca84dbc6b0b55-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	d1aettbyeyfilo.cloudfront.net/danielestulin/28582289_165452986113VLogomedia.webp	54.230.245.37	200 OK	1.4 kB
URL HTTP/2 d1aettbyeyfilo.cloudfront.net/danielestulin/28582289_165452986113VLogomedia.webp IP 54.230.245.37:0 ASN #16509 AMAZON-02 File type RIFF (little-endian) data, Web/P image\012- data Size 1.4 kB (1392 bytes) Hash 225c3816f00acd2922804dca90392e03 125033dea31d1a92f0a4b686845d8719f81057f5 c0bceac8bdf5b501ce500b97aebf3c09206cf79867ccf580d4c18f087d2205f4 HTTP Headers `GET /danielestulin/28582289_165452986113VLogomedia.webp HTTP/1.1 Host: d1aettbyeyfilo.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: image/webp content-length: 1392 date: Tue, 23 Aug 2022 14:58:29 GMT last-modified: Mon, 06 Jun 2022 15:37:44 GMT etag: "225c3816f00acd2922804dca90392e03" cache-control: public, max-age=31536000 x-amz-version-id: PSK5i1KXbCUM.ABVMz12Pt0Rz2S0idD1 accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: dvzZNLFNrP-N2Ipuoe2Hn5V4BZXCNBKPH7RbLMStPQynrnidF3CdEQ== age: 3103271 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 139d64e28724086d1d5ab6d2f534ff25 2c717905e83564a17bd8ca61dd934133416f629b a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00" Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8522 Expires: Wed, 28 Sep 2022 15:21:41 GMT Date: Wed, 28 Sep 2022 12:59:39 GMT Connection: keep-alive`

	player.vimeo.com/video/718506821?h=37ff158ba2	162.159.128.61	200 OK	5.3 kB
URL HTTP/1.1 player.vimeo.com/video/718506821?h=37ff158ba2 IP 162.159.128.61:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17957) Size 5.3 kB (5250 bytes) Hash 463166fb8bfdb4b33dc39f5090dd676e 7e96402d4148d52e57fe02136c7b81c75f183c9e 4d51e353866b18c1388e6587bff2229cc9712a08269c82de5f230b176456a3c3 HTTP Headers `GET /video/718506821?h=37ff158ba2 HTTP/1.1 Host: player.vimeo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.kartra.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Date: Wed, 28 Sep 2022 12:59:39 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive x-xss-protection: 1; mode=block content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://.akamaized.net https://.akamaized-staging.net https://.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://.dna-delivery.com https://.kollective.app/ https://mimir.cloud.vimeo.com https://.wirewax.com https://.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://.vimeocdn.com https://.akamaized.net https://.akamaized-staging.net https://.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://.vimeocdn.com https://.akamaized.net https://.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://* x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy" expires: Wed, 28 Sep 2022 13:09:39 GMT x-host: player-74cdb576d6-tn4cx via: 1.1 varnish, 1.1 varnish cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 x-varnish-cache: 0 x-vserver: playproxy-rollout-prod-varnish-3 x-backend-proxy: playproxy4 x-bapp-server: player-74cdb576d6-tn4cx Age: 0 X-Served-By: cache-bma1675-BMA X-Cache: MISS X-Cache-Hits: 0 X-Timer: S1664369980.634898,VS0,VE254 Vary: Accept-Encoding X-Player-Backend: p CF-Cache-Status: DYNAMIC Set-Cookie: __cf_bm=H7MMvxjO.JPQqFcVbdA09xLHiy3HxFYcawm.XpWa08g-1664369979-0-AVfQamEP5hrDFPq8YrJsBJv6dUjrHpfyuiFzj+DsUVAMQQsH9kqfc0BurqDpa6oxH8gJwB8KZOr8yWwSuvT6zk8=; path=/; expires=Wed, 28-Sep-22 13:29:39 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None Server: cloudflare CF-RAY: 751ca8549954b4ff-OSL Content-Encoding: gzip

	danielestulin.kartra.com/js/build/front/pages/skeleton-below.js	104.17.208.37	200 OK	14 kB
URL HTTP/2 danielestulin.kartra.com/js/build/front/pages/skeleton-below.js IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type data Size 14 kB (13665 bytes) Hash 805bff39e2dea798b7e662ab0bf30a31 716d0f7085cf12994397bad870313566cd3349d8 9854342b66694aa491e4e6ccc48d0a4994f3f8f2622daf224e322942b61a448f HTTP Headers `GET /js/build/front/pages/skeleton-below.js HTTP/1.1 Host: danielestulin.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/page/NKt7 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:38 GMT content-type: application/javascript; charset=utf-8 last-modified: Mon, 01 Aug 2022 12:21:08 GMT etag: W/"62e7c534-31ec" strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: EXPIRED expires: Wed, 28 Sep 2022 13:04:38 GMT cache-control: public, max-age=300 vary: Accept-Encoding server: cloudflare cf-ray: 751ca84dcc800b55-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (13213 bytes) Hash 62e68c3cd08dd94d910507512a67e85f 3d4fa8701f17e8818c25584ef5f04bfbee8440cd 058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13213 x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZFlATEp8oAMFd9Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0 x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: rV80hKsopWPf_A8hKw0kwTOjVN4Bq-5f8oXDP2wluyGwof5yXFe2Bw== via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google date: Tue, 27 Sep 2022 21:42:47 GMT age: 55012 etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png	34.120.237.76	200 OK	14 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 14 kB (14464 bytes) Hash aa5cad224dbddd71881bd07255beb4da bc214d60be395d4cf753216ff8f9691c33d25e75 82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 14464 x-amzn-requestid: 6627e07e-034b-432e-ab9e-afe035fa0b9a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZI3e9HgIoAMFxUA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63336c5f-7f34c3f6454379724a7ac413;Sampled=0 x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: J27vcANRhkMUuGwTZjXkO0EF0-UjN-MODVQRKgsc7hJI2S-UPF8Ctw== via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google date: Tue, 27 Sep 2022 21:40:53 GMT age: 55126 etag: "bc214d60be395d4cf753216ff8f9691c33d25e75" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (13299 bytes) Hash ad84ed0c5b2090df7996007514cf1984 651600f2ef18cecc2e38370069bbb5e1d86f68e0 a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13299 x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZI3UPF8YIAMF3Nw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0 x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: KmVkKXoPqZmnwFtpKhuox1kJNDoSxMEmYE39_zVPyaeoU4sPqq-_wA== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google date: Tue, 27 Sep 2022 21:44:23 GMT age: 54916 etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (12016 bytes) Hash 4b794c6812cb546de0295e087ebe66a7 a54803cca7d3c509c195f65961e1110c8ec56f55 6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12016 x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZI3e3EtyIAMFdZg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0 x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw== via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google date: Tue, 27 Sep 2022 21:44:30 GMT age: 54909 etag: "a54803cca7d3c509c195f65961e1110c8ec56f55" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	f.vimeocdn.com/js_opt/modules/utils/vuid.min.js	151.101.86.109	200 OK	997 B
URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js IP 151.101.86.109:0 ASN #54113 FASTLY File type ASCII text, with very long lines (1839) Size 997 B (997 bytes) Hash a726e1c270a0429ccce67d981a12ac33 7319cca36fa04ee8d74ea677a0bb5dd113649011 2601818bf89176145a614b0d50b1ef1cd95272a5bc6be5526d54c464f6172dbf HTTP Headers `GET /js_opt/modules/utils/vuid.min.js HTTP/1.1 Host: f.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK content-type: application/javascript content-encoding: gzip cache-control: public, max-age=2592000 timing-allow-origin: * via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 28 Sep 2022 12:59:39 GMT age: 762140 x-served-by: cache-iad-kiad7000169-IAD, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 1, 124143 x-timer: S1664369980.904644,VS0,VE0 vary: Accept-Encoding,x-http-method-override content-length: 997 X-Firefox-Spdy: h2`

	d1aettbyeyfilo.cloudfront.net/danielestulin/27138761_1648701544vI423762311_1635923072Ok3Webn_Millonarias_Sandra_12.9.21_Plain.webp	54.230.245.37	200 OK	66 kB
URL HTTP/2 d1aettbyeyfilo.cloudfront.net/danielestulin/27138761_1648701544vI423762311_1635923072Ok3Webn_Millonarias_Sandra_12.9.21_Plain.webp IP 54.230.245.37:0 ASN #16509 AMAZON-02 File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1322x936, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 66 kB (66120 bytes) Hash 32fef8644a09b67e1eaafa45ab4f4dd2 0eaea70b99a9c85c37b2fd653694d27a9d331367 03ef5cbd43299ac6dfa91d325ef9fb906ecf278c5faf8fc0b51c5d8fde7d79f6 HTTP Headers `GET /danielestulin/27138761_1648701544vI423762311_1635923072Ok3Webn_Millonarias_Sandra_12.9.21_Plain.webp HTTP/1.1 Host: d1aettbyeyfilo.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: image/webp content-length: 66120 date: Mon, 22 Aug 2022 07:50:31 GMT last-modified: Thu, 31 Mar 2022 04:39:07 GMT etag: "32fef8644a09b67e1eaafa45ab4f4dd2" cache-control: public, max-age=31536000 x-amz-version-id: ZLwSZOTqVSRhzHaOXbAkNtZr7.YmFfCw accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: TZdcdWPMKTSrKW8h2nc-GfHuLWtIl1DUnB4iBsmSBPSunRTxitcNBA== age: 3215349 X-Firefox-Spdy: h2

	f.vimeocdn.com/p/4.10.1/js/player.js	151.101.86.109	200 OK	212 kB
URL HTTP/2 f.vimeocdn.com/p/4.10.1/js/player.js IP 151.101.86.109:0 ASN #54113 FASTLY File type ASCII text, with very long lines (64649) Size 212 kB (212091 bytes) Hash 0178a74556a8c2ae4b0adc1e5896add3 a2187164dbe08839a3bed391ee10f5b3ef24542b 0ab6e243b2068c5ba3620a078364c9b73c7075d70f8e73a00be48fad7bf707ae HTTP Headers `GET /p/4.10.1/js/player.js HTTP/1.1 Host: f.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK content-type: application/javascript content-encoding: br via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 28 Sep 2022 12:59:39 GMT age: 667328 x-served-by: cache-iad-kcgs7200127-IAD, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 52, 100077 x-timer: S1664369980.902397,VS0,VE0 vary: Accept-Encoding,x-http-method-override cache-control: max-age=1209600 content-length: 212091 X-Firefox-Spdy: h2`

	i.vimeocdn.com/video/1467857237-a72a6c171f61541617f9a0780bc8459e3365344a3bea757ad0ed06da7af3ae9a-d.jpg?mw=80&q=85	151.101.86.109	200 OK	1.4 kB
URL HTTP/2 i.vimeocdn.com/video/1467857237-a72a6c171f61541617f9a0780bc8459e3365344a3bea757ad0ed06da7af3ae9a-d.jpg?mw=80&q=85 IP 151.101.86.109:0 ASN #54113 FASTLY File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data Size 1.4 kB (1378 bytes) Hash e50406c8521f0fbd6b61a9c730412866 f86ad78d73c2f469ec9d5790e91abd97c1f95b1c 99d523f0f3034a1b8fb73b312294613b8add44dde77073395aaf4d2aa6f031ab HTTP Headers `GET /video/1467857237-a72a6c171f61541617f9a0780bc8459e3365344a3bea757ad0ed06da7af3ae9a-d.jpg?mw=80&q=85 HTTP/1.1 Host: i.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: image/jpeg etag: e50406c8521f0fbd6b61a9c730412866 x-viewmaster-lossless-format: lossy viewmaster-server: viewmaster-us-central1-6nxs cache-control: public, max-age=2592000 via: vvarnish, 1.1 varnish, 1.1 varnish x-backend-server: varnish access-control-allow-origin: * access-control-expose-headers: X-Viewmaster-Status access-control-max-age: 86400 accept-ranges: bytes date: Wed, 28 Sep 2022 12:59:39 GMT age: 2582410 x-served-by: cache-dfw-kdfw8210104-DFW, cache-bma1621-BMA x-cache: miss, HIT, HIT x-cache-hits: 1, 1 x-timer: S1664369980.920297,VS0,VE1 content-length: 1378 X-Firefox-Spdy: h2

	i.vimeocdn.com/video/1447557579-991290d3770768246ef10261c456fe5b58d531dd6d40ff7c916de9f73c3f0d3d-d.jpg?mw=80&q=85	151.101.86.109	200 OK	1.8 kB
URL HTTP/2 i.vimeocdn.com/video/1447557579-991290d3770768246ef10261c456fe5b58d531dd6d40ff7c916de9f73c3f0d3d-d.jpg?mw=80&q=85 IP 151.101.86.109:0 ASN #54113 FASTLY File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data Size 1.8 kB (1793 bytes) Hash 1bb4d025616ce3bd2acdb6e9783d466f 0c2f0cbb0a56d6c19153c5c1f582c3abb7a23714 0c1922e5ed55cf180bd0f86d81aeaff07fb52a99a46bcb2f7b642de3e49d1d77 HTTP Headers `GET /video/1447557579-991290d3770768246ef10261c456fe5b58d531dd6d40ff7c916de9f73c3f0d3d-d.jpg?mw=80&q=85 HTTP/1.1 Host: i.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: image/jpeg etag: 1bb4d025616ce3bd2acdb6e9783d466f x-viewmaster-lossless-format: lossy viewmaster-server: viewmaster-us-central1-h9nn cache-control: public, max-age=2592000 via: vvarnish, 1.1 varnish, 1.1 varnish x-backend-server: varnish access-control-allow-origin: * access-control-expose-headers: X-Viewmaster-Status access-control-max-age: 86400 accept-ranges: bytes date: Wed, 28 Sep 2022 12:59:39 GMT age: 1878651 x-served-by: cache-dfw-kdfw8210106-DFW, cache-bma1621-BMA x-cache: miss, HIT, HIT x-cache-hits: 1, 1 x-timer: S1664369980.931597,VS0,VE2 content-length: 1793 X-Firefox-Spdy: h2

	d1aettbyeyfilo.cloudfront.net/danielestulin/27080629_16485290356ZmMain1.webp	54.230.245.37	200 OK	64 kB
URL HTTP/2 d1aettbyeyfilo.cloudfront.net/danielestulin/27080629_16485290356ZmMain1.webp IP 54.230.245.37:0 ASN #16509 AMAZON-02 File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x1200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 64 kB (64518 bytes) Hash fdd9b1bb922610da538302844418b4d9 d2c64d26b577fc56cce11dc711d969fb48a7afb3 7fc12ee69f10f800325a034fe9fa1e1a9a961d54378e9ee7b5aa58008e6b11f2 HTTP Headers `GET /danielestulin/27080629_16485290356ZmMain1.webp HTTP/1.1 Host: d1aettbyeyfilo.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: image/webp content-length: 64518 date: Wed, 28 Sep 2022 05:07:59 GMT last-modified: Tue, 29 Mar 2022 04:43:58 GMT etag: "fdd9b1bb922610da538302844418b4d9" cache-control: public, max-age=31536000 x-amz-version-id: jBNoIJ8KkK3pIUUdH5EXnQuNSl3l9PoU accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: JKq6n-mg34cMBtlBDvQRmisuKPEuKM7u4dLqfeolXcB6IDMtdnTJ8Q== age: 28301 X-Firefox-Spdy: h2

	d2uolguxr56s4e.cloudfront.net/internal/pages/css/kartra_components.css	143.204.42.220	200 OK	246 kB
URL HTTP/2 d2uolguxr56s4e.cloudfront.net/internal/pages/css/kartra_components.css IP 143.204.42.220:0 ASN #16509 AMAZON-02 File type data Size 246 kB (246077 bytes) Hash 5a1ef04a2cdbb6d302611fae3d4fec82 636d00cdfd0c70b521ecce5c2abc673ad02fc070 6feb38b7afd698a8400f47fd161057a8adee4f88ab9087aa1dd8f5d5adc6ad7f HTTP Headers `GET /internal/pages/css/kartra_components.css HTTP/1.1 Host: d2uolguxr56s4e.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: text/css date: Wed, 28 Sep 2022 08:26:17 GMT last-modified: Wed, 28 Sep 2022 08:26:12 GMT etag: W/"e448ed7e4cd7822627f1bad6a957c5e5" x-amz-version-id: _4GraFY.MBMOCzSfZdv.ospwL.OyiUF_ server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 0J4M9kj4rvfi3vHnstyro5ws2rzR7NX0ikDO3nYfgVOcucMTVm2rsg== age: 16402 X-Firefox-Spdy: h2`

	vip.timezonedb.com/v2/get-time-zone?key=33Q0SKMP8JHE&format=json&by=zone&zone=UTC	142.93.88.12	200 OK	390 B
URL HTTP/1.1 vip.timezonedb.com/v2/get-time-zone?key=33Q0SKMP8JHE&format=json&by=zone&zone=UTC IP 142.93.88.12:0 ASN #14061 DIGITALOCEAN-ASN File type JSON data\012- , ASCII text Size 390 B (390 bytes) Hash 034e05f8075b0474ea4c7ed8948e012a 0ecdcc7417ac9718af037d947107e17cc471ef6c 10466f3b235790d19b2bb38a0ab0fda15aa582b0fcdcde4326991edf46350864 HTTP Headers `GET /v2/get-time-zone?key=33Q0SKMP8JHE&format=json&by=zone&zone=UTC HTTP/1.1 Host: vip.timezonedb.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Server: nginx Date: Wed, 28 Sep 2022 12:59:40 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive X-Identity: f910402b902a55126386f887b6918be4 Access-Control-Allow-Origin: * X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Referrer-Policy: no-referrer-when-downgrade Content-Security-Policy: default-src 'self' http: https: data: blob: 'unsafe-inline' Strict-Transport-Security: max-age=31536000; includeSubDomains; preload

	i.vimeocdn.com/video/1467857237-a72a6c171f61541617f9a0780bc8459e3365344a3bea757ad0ed06da7af3ae9a-d?mw=800&mh=450	151.101.86.109	200 OK	32 kB
URL HTTP/2 i.vimeocdn.com/video/1467857237-a72a6c171f61541617f9a0780bc8459e3365344a3bea757ad0ed06da7af3ae9a-d?mw=800&mh=450 IP 151.101.86.109:0 ASN #54113 FASTLY File type ISO Media, AVIF Image\012- data Size 32 kB (31853 bytes) Hash 39bbe98433266a1ca4b50e0c3a70861d c23d207987e7f50c8b7ea9b6790932af8ed44c6f 4163cf30ef89a9bbcbc7b190a24d398a23ab7ecfc7e6103fafb840580b7f5e25 HTTP Headers `GET /video/1467857237-a72a6c171f61541617f9a0780bc8459e3365344a3bea757ad0ed06da7af3ae9a-d?mw=800&mh=450 HTTP/1.1 Host: i.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: image/avif etag: 39bbe98433266a1ca4b50e0c3a70861d x-viewmaster-lossless-format: automatic viewmaster-server: viewmaster-us-central1-h1dl cache-control: public, max-age=2592000 via: vvarnish, 1.1 varnish, 1.1 varnish x-backend-server: varnish access-control-allow-origin: * access-control-expose-headers: X-Viewmaster-Status access-control-max-age: 86400 accept-ranges: bytes date: Wed, 28 Sep 2022 12:59:40 GMT age: 2562963 x-served-by: cache-dfw-kdfw8210027-DFW, cache-bma1621-BMA x-cache: miss, HIT, HIT x-cache-hits: 1, 1 x-timer: S1664369980.227208,VS0,VE1 vary: Accept content-length: 31853 X-Firefox-Spdy: h2

	f.vimeocdn.com/p/4.10.1/js/module/sentry.js	151.101.86.109	200 OK	19 kB
URL HTTP/2 f.vimeocdn.com/p/4.10.1/js/module/sentry.js IP 151.101.86.109:0 ASN #54113 FASTLY File type ASCII text, with very long lines (50848) Size 19 kB (18774 bytes) Hash 012ac958edf8f2e92c2f76db40d37e75 44565591d569c2578e26708514d1b7837d14ac68 b0fba5c93c6c156971ec9af04d6c6e011f4a028d351d68cf16b19d425e6a7f35 HTTP Headers `GET /p/4.10.1/js/module/sentry.js HTTP/1.1 Host: f.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK content-type: application/javascript content-encoding: br via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Wed, 28 Sep 2022 12:59:40 GMT age: 667326 x-served-by: cache-iad-kiad7000124-IAD, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 43, 16360 x-timer: S1664369980.400164,VS0,VE0 vary: Accept-Encoding,x-http-method-override cache-control: max-age=1209600 content-length: 18774 X-Firefox-Spdy: h2`

	i.vimeocdn.com/video/1447557579-991290d3770768246ef10261c456fe5b58d531dd6d40ff7c916de9f73c3f0d3d-d?mw=1200&mh=676	151.101.86.109	200 OK	48 kB
URL HTTP/2 i.vimeocdn.com/video/1447557579-991290d3770768246ef10261c456fe5b58d531dd6d40ff7c916de9f73c3f0d3d-d?mw=1200&mh=676 IP 151.101.86.109:0 ASN #54113 FASTLY File type ISO Media, AVIF Image\012- data Size 48 kB (48234 bytes) Hash 5cb6364fc631cf161a39d7c835bd607f 89d1dc77320cf9a9c6fc8d73ac7fcc769d70fa3f f09fa06816d8e402efc9d17aa68f6f29d3a536991cbcfd41dd9e5850c78d6a65 HTTP Headers `GET /video/1447557579-991290d3770768246ef10261c456fe5b58d531dd6d40ff7c916de9f73c3f0d3d-d?mw=1200&mh=676 HTTP/1.1 Host: i.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: image/avif etag: 5cb6364fc631cf161a39d7c835bd607f x-viewmaster-lossless-format: automatic viewmaster-server: viewmaster-us-central1-fsjr cache-control: public, max-age=2592000 via: vvarnish, 1.1 varnish, 1.1 varnish x-backend-server: varnish access-control-allow-origin: * access-control-expose-headers: X-Viewmaster-Status access-control-max-age: 86400 accept-ranges: bytes date: Wed, 28 Sep 2022 12:59:40 GMT age: 1285079 x-served-by: cache-dfw-kdfw8210108-DFW, cache-bma1621-BMA x-cache: miss, HIT, MISS x-cache-hits: 1, 0 x-timer: S1664369980.351277,VS0,VE126 vary: Accept content-length: 48234 X-Firefox-Spdy: h2

	i.vimeocdn.com/portrait/70413686_60x60.jpg?subrect=748%2C188%2C1854%2C1294&r=cover	151.101.86.109	200 OK	1.9 kB
URL HTTP/2 i.vimeocdn.com/portrait/70413686_60x60.jpg?subrect=748%2C188%2C1854%2C1294&r=cover IP 151.101.86.109:0 ASN #54113 FASTLY File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 60x60, components 3\012- data Size 1.9 kB (1931 bytes) Hash 06b0749ab2a938f007d81e1c03fe1916 e451067b0c67f4784e00640ccdf5cd7ed9916655 1537938af40e42be05ee2316e10c9d6c5c4021ce3399be731e03679d9bf629de HTTP Headers `GET /portrait/70413686_60x60.jpg?subrect=748%2C188%2C1854%2C1294&r=cover HTTP/1.1 Host: i.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: image/jpeg etag: 06b0749ab2a938f007d81e1c03fe1916 x-viewmaster-lossless-format: lossy viewmaster-server: viewmaster-us-east1-xg90 cache-control: public, max-age=2592000 via: vvarnish, 1.1 varnish, 1.1 varnish x-backend-server: varnish access-control-allow-origin: * access-control-expose-headers: X-Viewmaster-Status access-control-max-age: 86400 accept-ranges: bytes date: Wed, 28 Sep 2022 12:59:40 GMT age: 1360389 x-served-by: cache-dfw-kdfw8210087-DFW, cache-bma1621-BMA x-cache: miss, HIT, HIT x-cache-hits: 1, 1 x-timer: S1664369980.483994,VS0,VE1 content-length: 1931 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2	142.250.74.163	200 OK	24 kB
URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 IP 142.250.74.163:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data Size 24 kB (23580 bytes) Hash e1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537 HTTP Headers `GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23580 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 27 Sep 2022 17:10:21 GMT expires: Wed, 27 Sep 2023 17:10:21 GMT cache-control: public, max-age=31536000 age: 71359 last-modified: Tue, 26 Apr 2022 15:48:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 48c3c4cab9b07b47e29afdf7469a79d8 20a5412e0ec55b65f21079c073e65d71da80c03c 872f9822f6ad00f5b1fa0ec5dacbed1d25dec1345d2447955ffce5e8e051ea2c HTTP Headers `POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:40 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 48c3c4cab9b07b47e29afdf7469a79d8 20a5412e0ec55b65f21079c073e65d71da80c03c 872f9822f6ad00f5b1fa0ec5dacbed1d25dec1345d2447955ffce5e8e051ea2c HTTP Headers `POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:40 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fresnel.vimeocdn.com/add/player-test-impression?beacon=1	34.120.202.204	200 OK	0 B
URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1 IP 34.120.202.204:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /add/player-test-impression?beacon=1 HTTP/1.1 Host: fresnel.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 116 Origin: https://player.vimeo.com Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-credentials: true access-control-allow-origin: https://player.vimeo.com date: Wed, 28 Sep 2022 12:59:40 GMT content-length: 0 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=cd0e383254d44a8da06283c9c4949dbbe44e7d301664369979	34.120.202.204	200 OK	0 B
URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=cd0e383254d44a8da06283c9c4949dbbe44e7d301664369979 IP 34.120.202.204:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /add/player-stats?beacon=1&session-id=cd0e383254d44a8da06283c9c4949dbbe44e7d301664369979 HTTP/1.1 Host: fresnel.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 1461 Origin: https://player.vimeo.com Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK access-control-allow-credentials: true access-control-allow-origin: https://player.vimeo.com date: Wed, 28 Sep 2022 12:59:40 GMT content-length: 0 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 48c3c4cab9b07b47e29afdf7469a79d8 20a5412e0ec55b65f21079c073e65d71da80c03c 872f9822f6ad00f5b1fa0ec5dacbed1d25dec1345d2447955ffce5e8e051ea2c HTTP Headers `POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 28 Sep 2022 12:59:41 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fresnel.vimeocdn.com/add/player-test-impression?beacon=1	34.120.202.204	200 OK	0 B
URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1 IP 34.120.202.204:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /add/player-test-impression?beacon=1 HTTP/1.1 Host: fresnel.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 116 Origin: https://player.vimeo.com Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK access-control-allow-credentials: true access-control-allow-origin: https://player.vimeo.com date: Wed, 28 Sep 2022 12:59:41 GMT content-length: 0 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	app.kartra.com/cdn-cgi/rum?	104.17.208.37	200 OK	20 B
URL HTTP/2 app.kartra.com/cdn-cgi/rum? IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type data Size 20 B (20 bytes) Hash 7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2 HTTP Headers `POST /cdn-cgi/rum? HTTP/1.1 Host: app.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 1805 Origin: https://app.kartra.com Connection: keep-alive Referer: https://app.kartra.com/external_video/vimeo/729257920?h=b442173e04 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:40 GMT content-type: text/plain access-control-allow-origin: https://app.kartra.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 751ca859da820b55-OSL x-frame-options: DENY x-content-type-options: nosniff content-encoding: gzip X-Firefox-Spdy: h2`

	app.kartra.com/cdn-cgi/rum?	104.17.208.37	200 OK	7.6 kB
URL HTTP/2 app.kartra.com/cdn-cgi/rum? IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type data Size 7.6 kB (7591 bytes) Hash d5d9a3bd946aceba3ecd96dce5a478da 13541c32c57ac10ba31a5616662494a25a92dc97 ae7cbaae261488fd9e199070f8807871e48d5abf686462115770091caf6bcfd3 HTTP Headers `POST /cdn-cgi/rum? HTTP/1.1 Host: app.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 1809 Origin: https://app.kartra.com Connection: keep-alive Referer: https://app.kartra.com/external_video/vimeo/718506821?h=37ff158ba2&amp Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:40 GMT content-type: text/plain access-control-allow-origin: https://app.kartra.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 751ca85aeb820b55-OSL x-frame-options: DENY x-content-type-options: nosniff content-encoding: gzip X-Firefox-Spdy: h2`

	app.kartra.com/js/build/front/pages/jquery.lwtCountdown-1.0.js	104.17.208.37	200 OK	0 B
URL HTTP/2 app.kartra.com/js/build/front/pages/jquery.lwtCountdown-1.0.js IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/build/front/pages/jquery.lwtCountdown-1.0.js HTTP/1.1 Host: app.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:38 GMT content-type: application/javascript; charset=utf-8 cf-bgj: minify cf-polished: origSize=5510 etag: W/"620cc735-1586" last-modified: Wed, 16 Feb 2022 09:43:17 GMT strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: HIT age: 1828 expires: Wed, 28 Sep 2022 13:04:38 GMT cache-control: public, max-age=300 vary: Accept-Encoding server: cloudflare cf-ray: 751ca84dbc660b55-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	app.kartra.com/external_video/vimeo/718506821?h=37ff158ba2&amp	104.17.208.37	200 OK	0 B
URL HTTP/2 app.kartra.com/external_video/vimeo/718506821?h=37ff158ba2&amp IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /external_video/vimeo/718506821?h=37ff158ba2&amp HTTP/1.1 Host: app.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:39 GMT content-type: text/html; charset=UTF-8 strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: DYNAMIC server: cloudflare cf-ray: 751ca852ea290b55-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	danielestulin.kartra.com/cdn-cgi/rum?	104.17.208.37	200 OK	0 B
URL HTTP/2 danielestulin.kartra.com/cdn-cgi/rum? IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: danielestulin.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 409 Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://danielestulin.kartra.com/page/NKt7 Cookie: kartrapage_popwindow%2Fpage%2FNKt7=true; tracking_228796=%7B%22lead_id%22%3A0%2C%22device%22%3A%22desktop%22%2C%22type%22%3A%22kp%22%2C%22link_id%22%3A%22%22%2C%22sources%22%3A%7B%22pages%22%3A7%7D%2C%22goals_triggered%22%3A%5B%5D%2C%22tracking_links%22%3A%5B%5D%2C%22tracking_link_unique_ids%22%3A%5B%5D%2C%22video_tags%22%3A%5B%5D%2C%22tracking_tags%22%3A%5B%5D%2C%22videos_played%22%3A%5B%5D%2C%22videos_completed%22%3A%5B%5D%2C%22videos_cta%22%3A%5B%5D%2C%22video_visit%22%3A%5B%5D%2C%22videopage%22%3A%5B%5D%2C%22checkouts%22%3A%5B%5D%2C%22optins%22%3A%5B%5D%2C%22calendars%22%3A%5B%5D%2C%22surveys%22%3A%5B%5D%2C%22last_page_visited%22%3A%7B%22type%22%3A%22kartra_page%22%2C%22page_id%22%3A7%7D%2C%22pages_visited%22%3A%7B%22kartra_pages%22%3A%7B%227%22%3A%7B%22id%22%3A84622%2C%22time%22%3A1664369981%7D%7D%2C%22external_pages%22%3A%5B%5D%7D%7D Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:46 GMT content-type: text/plain access-control-allow-origin: https://danielestulin.kartra.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 751ca88239a60b55-OSL x-frame-options: DENY x-content-type-options: nosniff content-encoding: gzip X-Firefox-Spdy: h2`

	danielestulin.kartra.com/cdn-cgi/rum?	104.17.208.37	200 OK	0 B
URL HTTP/2 danielestulin.kartra.com/cdn-cgi/rum? IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: danielestulin.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 12609 Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://danielestulin.kartra.com/page/NKt7 Cookie: kartrapage_popwindow%2Fpage%2FNKt7=true Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:40 GMT content-type: text/plain access-control-allow-origin: https://danielestulin.kartra.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 751ca85b8bf90b55-OSL x-frame-options: DENY x-content-type-options: nosniff content-encoding: gzip X-Firefox-Spdy: h2`

	app.kartra.com/cdn-cgi/rum?	104.17.208.37	200 OK	0 B
URL HTTP/2 app.kartra.com/cdn-cgi/rum? IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: app.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 421 Origin: https://app.kartra.com Connection: keep-alive Referer: https://app.kartra.com/external_video/vimeo/718506821?h=37ff158ba2&amp Cookie: tracking_228796=%7B%22lead_id%22%3A0%2C%22device%22%3A%22desktop%22%2C%22type%22%3A%22kp%22%2C%22link_id%22%3A%22%22%2C%22sources%22%3A%7B%22pages%22%3A7%7D%2C%22goals_triggered%22%3A%5B%5D%2C%22tracking_links%22%3A%5B%5D%2C%22tracking_link_unique_ids%22%3A%5B%5D%2C%22video_tags%22%3A%5B%5D%2C%22tracking_tags%22%3A%5B%5D%2C%22videos_played%22%3A%5B%5D%2C%22videos_completed%22%3A%5B%5D%2C%22videos_cta%22%3A%5B%5D%2C%22video_visit%22%3A%5B%5D%2C%22videopage%22%3A%5B%5D%2C%22checkouts%22%3A%5B%5D%2C%22optins%22%3A%5B%5D%2C%22calendars%22%3A%5B%5D%2C%22surveys%22%3A%5B%5D%2C%22last_page_visited%22%3A%7B%22type%22%3A%22kartra_page%22%2C%22page_id%22%3A7%7D%2C%22pages_visited%22%3A%7B%22kartra_pages%22%3A%7B%227%22%3A%7B%22id%22%3A84622%2C%22time%22%3A1664369981%7D%7D%2C%22external_pages%22%3A%5B%5D%7D%7D Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:46 GMT content-type: text/plain access-control-allow-origin: https://app.kartra.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 751ca88239ad0b55-OSL x-frame-options: DENY x-content-type-options: nosniff content-encoding: gzip X-Firefox-Spdy: h2`

	app.kartra.com/cdn-cgi/rum?	104.17.208.37	200 OK	0 B
URL HTTP/2 app.kartra.com/cdn-cgi/rum? IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: app.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 421 Origin: https://app.kartra.com Connection: keep-alive Referer: https://app.kartra.com/external_video/vimeo/729257920?h=b442173e04 Cookie: tracking_228796=%7B%22lead_id%22%3A0%2C%22device%22%3A%22desktop%22%2C%22type%22%3A%22kp%22%2C%22link_id%22%3A%22%22%2C%22sources%22%3A%7B%22pages%22%3A7%7D%2C%22goals_triggered%22%3A%5B%5D%2C%22tracking_links%22%3A%5B%5D%2C%22tracking_link_unique_ids%22%3A%5B%5D%2C%22video_tags%22%3A%5B%5D%2C%22tracking_tags%22%3A%5B%5D%2C%22videos_played%22%3A%5B%5D%2C%22videos_completed%22%3A%5B%5D%2C%22videos_cta%22%3A%5B%5D%2C%22video_visit%22%3A%5B%5D%2C%22videopage%22%3A%5B%5D%2C%22checkouts%22%3A%5B%5D%2C%22optins%22%3A%5B%5D%2C%22calendars%22%3A%5B%5D%2C%22surveys%22%3A%5B%5D%2C%22last_page_visited%22%3A%7B%22type%22%3A%22kartra_page%22%2C%22page_id%22%3A7%7D%2C%22pages_visited%22%3A%7B%22kartra_pages%22%3A%7B%227%22%3A%7B%22id%22%3A84622%2C%22time%22%3A1664369981%7D%7D%2C%22external_pages%22%3A%5B%5D%7D%7D Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:46 GMT content-type: text/plain access-control-allow-origin: https://app.kartra.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 751ca88239af0b55-OSL x-frame-options: DENY x-content-type-options: nosniff content-encoding: gzip X-Firefox-Spdy: h2`

	static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194	104.18.47.230	200 OK	0 B
URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 IP 104.18.47.230:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://danielestulin.kartra.com Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:38 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/2021.12.0 last-modified: Thu, 09 Dec 2021 19:55:17 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 751ca84e0fc6b52d-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	danielestulin.kartra.com/js/build/front/pages/skeleton-immediate.js	104.17.208.37	200 OK	0 B
URL HTTP/2 danielestulin.kartra.com/js/build/front/pages/skeleton-immediate.js IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/build/front/pages/skeleton-immediate.js HTTP/1.1 Host: danielestulin.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/page/NKt7 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:38 GMT content-type: application/javascript; charset=utf-8 last-modified: Wed, 16 Feb 2022 09:43:17 GMT etag: W/"620cc735-1c52" strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: MISS expires: Wed, 28 Sep 2022 13:04:38 GMT cache-control: public, max-age=300 vary: Accept-Encoding server: cloudflare cf-ray: 751ca84dcc730b55-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	app.kartra.com/resources/js/page_check?page_id=rPlbjNveCFCp	104.17.208.37	200 OK	0 B
URL HTTP/2 app.kartra.com/resources/js/page_check?page_id=rPlbjNveCFCp IP 104.17.208.37:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /resources/js/page_check?page_id=rPlbjNveCFCp HTTP/1.1 Host: app.kartra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://danielestulin.kartra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK date: Wed, 28 Sep 2022 12:59:39 GMT content-type: application/javascript; charset=UTF-8 strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: DYNAMIC server: cloudflare cf-ray: 751ca84ddc880b55-OSL content-encoding: gzip X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations