r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f416977a8d6dfaafb2dbfd0e68b871f8
dfa97bd829b03162de91c80133f2fde69b58a8d2
2c4d0fd1b7a6d398026a4817267adce203429acdd3defa44a879f0d945f392d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C4D0FD1B7A6D398026A4817267ADCE203429ACDD3DEFA44A879F0D945F392D5"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11692
Expires: Mon, 23 Jan 2023 01:27:08 GMT
Date: Sun, 22 Jan 2023 22:12:16 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0be6cec5607bb65c06dbadd33456aec1
9d13129e936eb5fc82e403931884cdc8c6e6ab92
cb028034340b709ece65e45e8fc1a26a64dd85926beaa542f308d3f1d5ee2c84
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB028034340B709ECE65E45E8FC1A26A64DD85926BEAA542F308D3F1D5EE2C84"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14560
Expires: Mon, 23 Jan 2023 02:14:56 GMT
Date: Sun, 22 Jan 2023 22:12:16 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 22 Jan 2023 21:42:33 GMT
content-type: application/json
age: 1783
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 31c8743c2b5202ce0228bac5aad7229b
4b5eee8e1ecbfc992505003be58e265ff3a0ee0a
8b3b47ea29fc02b8a08ee2a340a05ab23e391f0eb3b8d6beb17516706bb2e94d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B3B47EA29FC02B8A08EE2A340A05AB23E391F0EB3B8D6BEB17516706BB2E94D"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7152
Expires: Mon, 23 Jan 2023 00:11:28 GMT
Date: Sun, 22 Jan 2023 22:12:16 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NIGulzE9sDPaRUnfTRh0Nbtovm7iuSbejWNKyHejihVx/1vvGoudLj1i8fPg+C5yIKUtnjXaR+0=
x-amz-request-id: VY97NT2SXV12XXRQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 22 Jan 2023 21:18:35 GMT
age: 3221
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 22:12:16 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
blackdiamondrun.com/
301 Moved Permanently 236 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c45725dc2613525943df8b8fc2926539
def943abfa04efef617256984cc0f5c8e0b148c9
4851db300b5a0689ef823fd830407f58cce7dbb4926e1586323995a590d5292f
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: blackdiamondrun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 22 Jan 2023 22:12:16 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://blackdiamondrun.com/
CF-Cache-Status: EXPIRED
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78dba14e9b160b61-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 22 Jan 2023 21:48:58 GMT
age: 1398
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 89d90ccfe01cf51319c1c2e44610536a
c4e019ab4433b5ed371fb9a12329534cef75a886
dbb211ea2a6925a7b365bd5199d7bcea2587cd3dcb001b7ad9702fbf5aecee3b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB211EA2A6925A7B365BD5199D7BCEA2587CD3DCB001B7AD9702FBF5AECEE3B"
Last-Modified: Sun, 22 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 23 Jan 2023 04:12:16 GMT
Date: Sun, 22 Jan 2023 22:12:16 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 0c74880fa99032b5c3831c179d702419
0020b368309735c94d8053d3781a7efb7283cfc5
437e2d4e2bbfb33b0ff696172378ce55a0a5ed005a1b8c4005eab4a6995a3042
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3427
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:12:16 GMT
Last-Modified: Sun, 22 Jan 2023 21:15:09 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IIPsv1iNV5+cEgbHZOSiRQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Q+R7DpOJnmbhAkBSc5NN1nR+rz4=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4125
Expires: Sun, 22 Jan 2023 23:21:03 GMT
Date: Sun, 22 Jan 2023 22:12:18 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4125
Expires: Sun, 22 Jan 2023 23:21:03 GMT
Date: Sun, 22 Jan 2023 22:12:18 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4125
Expires: Sun, 22 Jan 2023 23:21:03 GMT
Date: Sun, 22 Jan 2023 22:12:18 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4125
Expires: Sun, 22 Jan 2023 23:21:03 GMT
Date: Sun, 22 Jan 2023 22:12:18 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4125
Expires: Sun, 22 Jan 2023 23:21:03 GMT
Date: Sun, 22 Jan 2023 22:12:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c5YOTqrEv9RLv_lKsrC377yost8auxYRPLubBFGjIWtnbueiGMJYGw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 07:27:54 GMT
age: 53064
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2aa8ea3b-13bb-49a3-a61a-2cecc5ae20aa.jpeg
200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2aa8ea3b-13bb-49a3-a61a-2cecc5ae20aa.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2146bf738fb2120d9f167533c7ec2ab
ce546aa88e2ab0958a99c5a8240fcd95500ef1ea
54405cd0508b2dcf343c3b8563ad8bb484f01866e58b29a034aa650a415925d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2aa8ea3b-13bb-49a3-a61a-2cecc5ae20aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5250
x-amzn-requestid: 364176ba-8f3f-4e2f-8d52-8c03d91b5f02
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fnEHMsoAMFysQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c612f9-33117b2d2175e2d55cedfa1f;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: avMFeAuR4DRfk759c1EL880OtEdTXp2fnCFv9aflVuurrqOi71rE6A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:56:00 GMT
age: 978
etag: "ce546aa88e2ab0958a99c5a8240fcd95500ef1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F296d62aa-29a6-401f-a40f-9238dace1001.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F296d62aa-29a6-401f-a40f-9238dace1001.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9c9e3df640be93567ea081ffe31576f6
fb07a0e3cfcb7f53b94f614a2e96ec1d8d5967d4
679e5a9ab43a5599759171b70ad5dbe0c4ca8facb895f08ef0313b0c7e691ea3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F296d62aa-29a6-401f-a40f-9238dace1001.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7387
x-amzn-requestid: 54845590-a39f-4a1b-ba4a-fe24368b268a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fD7N3GmQIAMF6AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb0bf2-4b4bf4fc209388b74cb1c7f7;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 21:47:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 67ewmF74mKQGH8hoGiYfRHTaVmS0JZc4WkSHXiODoz8sirBFY5MD2w==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 16:31:47 GMT
age: 20431
etag: "fb07a0e3cfcb7f53b94f614a2e96ec1d8d5967d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f6ce48-0095-4b2b-b098-c6f6de90570c.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f6ce48-0095-4b2b-b098-c6f6de90570c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5401628b3bdd03eeee51f68177ac4d41
bb12e1d1bc5a87d3fa05371894a8bc8eb3d1bb29
3e231ba2e44699d88ed1e28510dad0762a57e0854a11d40f752421bd41738944
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f6ce48-0095-4b2b-b098-c6f6de90570c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10052
x-amzn-requestid: 10422f29-dc81-41f9-b03e-76fb2b0f4f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2vnHFT9oAMFbmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c62d-780503606bec4fff6e911fc8;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:48:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NQaGhmXW_zeKd-WXUxi_z0e3Ul1YrtBgIbPEEWRfQfG7d8C0JyZdXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:56:00 GMT
age: 978
etag: "bb12e1d1bc5a87d3fa05371894a8bc8eb3d1bb29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 42a648f9d34d8fb703f0b80a52e0deec
7ccefd66211d249ae5266c3b6ae3375a19e5cb6d
a57f8792e8caa2a31045a141d019f53f51b633d5d04baebdae97387740c6639d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5903
x-amzn-requestid: 64a84c78-8acc-4d6f-b037-40d3b6e4f86c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fKfM0EUeIAMF1hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdabeb-5c8c25897a599f933d9f2e82;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 21:34:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ntQ3E1t7RLz_c2HFhflZi2-H0ovDDJtk2AhFOQ9TZ2S-SaIFdX5ivA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:55:47 GMT
age: 991
etag: "7ccefd66211d249ae5266c3b6ae3375a19e5cb6d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd306d72a-970f-418b-a611-d3fd05043123.jpeg
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd306d72a-970f-418b-a611-d3fd05043123.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 008bdbc8d07694aa05dd561e14e5c8e7
2c4727cd94e60fb6c4f8f09361a479f723e86fc2
f92c2af227f065fdae6976dd2dd23545a3211d79037bbf184b46cb976a2758de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd306d72a-970f-418b-a611-d3fd05043123.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9297
x-amzn-requestid: bd94feb6-b9fe-4893-aa09-d5841a111e1b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9KRKE85oAMFldA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8573a-08f0f4717d20f7311a32ba52;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 20:31:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kwmvuvBc5iFpet8qRenipVvyk85sxcBOni8moIh5kntm1acluKD6pA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:43:31 GMT
age: 1727
etag: "2c4727cd94e60fb6c4f8f09361a479f723e86fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 45fbffd137fc15f1dc4ebc05c3193fce
f043f1dfb8e49d8bcf4434b97c2171e47387b528
b7e49038a3a1b2dc8bd528e327dfbb551361982723d311ecbe8eb9f2b5cc6ec2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6004
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:12:18 GMT
Last-Modified: Sun, 22 Jan 2023 20:32:14 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 45fbffd137fc15f1dc4ebc05c3193fce
f043f1dfb8e49d8bcf4434b97c2171e47387b528
b7e49038a3a1b2dc8bd528e327dfbb551361982723d311ecbe8eb9f2b5cc6ec2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6004
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:12:18 GMT
Last-Modified: Sun, 22 Jan 2023 20:32:14 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 41d9a97f3e66fa295337149c04ad0bae
5d0ffce8986ba0d9e47cd508b79c1feab18076cf
fa5f51ac868aed9106d71f0d5ae7d2fba4afed36bc9fdb94a5a66cea3ac15550
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:12:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.fontawesome.com/releases/v5.9.0/css/all.css
200 OK 12 kB URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/all.css
IP
File type ASCII text, with very long lines (55782)
Hash 41dd582f5377ae98951afe4e5dec5e22
82d7b00f3f3c07ae6a08718e33c43a0719aec290
405fabacd464d503c80e1bbd4d2676841efb04a472bf050298612c1ce5973ec9
GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:18 GMT
content-type: text/css
x-amz-id-2: vC8KBN503iyWKZzHxfJc5rs99Ocw4DSTaifdaL1SsWTbuhhIHZc4Cm+BPlh6dJ7ueugjQrc5cWE=
x-amz-request-id: F0PHW7H6699FG8TW
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2278831
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sZ%2BBSANTzxFpQ54BGVGKo%2FjIL0MhG%2FRW%2FPLJ9FT68QwmHcObjqna49EihIJV9zlR0UJQc%2FW38bsbl4XcGV4epwlLgxqdcUNKkOci5Jy%2F7bVmSQLw2Fnqdq4QnzbimMoeQ%2BW4%2FtZx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dba15f6b2572d0-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
200 OK 2.9 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
IP
Hash 92da1c6542c2f5b7f1b0c164cc179fe5
5609b47b3f728cf0b7f0e5155482a650f050dc67
50a3c5089636e5a94f04b3c2818c0f40d14606c4d5b5137dc598171cacab87f8
GET /css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 22 Jan 2023 22:12:18 GMT
date: Sun, 22 Jan 2023 22:12:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blackdiamondrun.com/
200 OK 26 kB IP
Hash b51968f4aa2e45f264e3160073ce8912
85adfe163bcec3638f65833a7c10564b4ac424e1
8faddd4e33458bcae6f4742c3742947a7095947e88e08f7c837f26e223a1a41e
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: blackdiamondrun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:18 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-endurance-cache-level: 2
x-nginx-cache: WordPress
last-modified: Sun, 22 Jan 2023 22:12:17 GMT
set-cookie: PHPSESSID=2307ab84de6dcb8be8155ee6f4f4e31d; path=/
__cf_bm=gZF3qsM.EvpPoSnlWnYmkX3l4Cqu8vLvKnLuPaspCS4-1674425537-0-ARq7MX/kPlH2/Wgt7aOh7oy/F+/lPl90Fwcc3A/vicfwB1mAB304DaFmaE3dGBffpcCrpZaVQSvx9UqA6GvKHiwEPoDtRFzdL01TKElQoWun; path=/; expires=Sun, 22-Jan-23 22:42:17 GMT; domain=.clickfunnels.com; HttpOnly; Secure
cf-cache-status: MISS
server: cloudflare
cf-ray: 78dba1535eab0b45-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=YVZtZisrT3YremxiT0xpNExnSFYyUT09LS04eEpPeFh1bUhEMm1SZUlRY3RiSUN3PT0%3D--5f7de9526b8f7acadc57c6b11eb1e17de027a1bf&page_id=a2tVSmRLVnAzNERZM2IrUnZjZC9uZz09LS1qNGNxQUsvOTFjU0FOY1pxVEJPaThRPT0%3D--147c71f209448afa176f4ddb48d5be21fd1b9eb4&funnel_step_id=K1pEdFJyMTB0ejRuL0ZjSmZTWitUZz09LS1kdEhqQzZnczJGTW9UdHVsdHdvL1JRPT0%3D--c6a6917b6287e6095e315fa1eede2ca111e80f28&user_id=cCtVckpPT3FpckExQVFqdTMvTkREQT09LS1tNnY3MW1WZ1dDeSt1QkVDeExWVTBnPT0%3D--8857bc5acfe774794b630d2292c2e6eed7c45e0c&account_id=bHowZmNIeXA3Q1VkQWtNYSsvZGxGUT09LS1rL3gwQjVqMk9BamRPL08yUmJ5WlpBPT0%3D--6dc9f7dfb76e653d390e70c957ed96a33b2f838d&page_code=NTcwMTIzMDU%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniquePageviewsCreatedSummary&nonce=8227b57b-bfa0-4f64-8b1a-c0dc1b09150d&url=https%3A%2F%2Fblackdiamondrun.com%2F
202 Accepted 672 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=YVZtZisrT3YremxiT0xpNExnSFYyUT09LS04eEpPeFh1bUhEMm1SZUlRY3RiSUN3PT0%3D--5f7de9526b8f7acadc57c6b11eb1e17de027a1bf&page_id=a2tVSmRLVnAzNERZM2IrUnZjZC9uZz09LS1qNGNxQUsvOTFjU0FOY1pxVEJPaThRPT0%3D--147c71f209448afa176f4ddb48d5be21fd1b9eb4&funnel_step_id=K1pEdFJyMTB0ejRuL0ZjSmZTWitUZz09LS1kdEhqQzZnczJGTW9UdHVsdHdvL1JRPT0%3D--c6a6917b6287e6095e315fa1eede2ca111e80f28&user_id=cCtVckpPT3FpckExQVFqdTMvTkREQT09LS1tNnY3MW1WZ1dDeSt1QkVDeExWVTBnPT0%3D--8857bc5acfe774794b630d2292c2e6eed7c45e0c&account_id=bHowZmNIeXA3Q1VkQWtNYSsvZGxGUT09LS1rL3gwQjVqMk9BamRPL08yUmJ5WlpBPT0%3D--6dc9f7dfb76e653d390e70c957ed96a33b2f838d&page_code=NTcwMTIzMDU%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniquePageviewsCreatedSummary&nonce=8227b57b-bfa0-4f64-8b1a-c0dc1b09150d&url=https%3A%2F%2Fblackdiamondrun.com%2F
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 19754ed4d508cf576c80cf36e0db8c50
f459beac714e5be68aa75349fa806a5642af456a
5216f197f782f4bb872e02a677986af90a488015910f8d3864b796ad68dbd389
GET /userevents/?funnel_id=YVZtZisrT3YremxiT0xpNExnSFYyUT09LS04eEpPeFh1bUhEMm1SZUlRY3RiSUN3PT0%3D--5f7de9526b8f7acadc57c6b11eb1e17de027a1bf&page_id=a2tVSmRLVnAzNERZM2IrUnZjZC9uZz09LS1qNGNxQUsvOTFjU0FOY1pxVEJPaThRPT0%3D--147c71f209448afa176f4ddb48d5be21fd1b9eb4&funnel_step_id=K1pEdFJyMTB0ejRuL0ZjSmZTWitUZz09LS1kdEhqQzZnczJGTW9UdHVsdHdvL1JRPT0%3D--c6a6917b6287e6095e315fa1eede2ca111e80f28&user_id=cCtVckpPT3FpckExQVFqdTMvTkREQT09LS1tNnY3MW1WZ1dDeSt1QkVDeExWVTBnPT0%3D--8857bc5acfe774794b630d2292c2e6eed7c45e0c&account_id=bHowZmNIeXA3Q1VkQWtNYSsvZGxGUT09LS1rL3gwQjVqMk9BamRPL08yUmJ5WlpBPT0%3D--6dc9f7dfb76e653d390e70c957ed96a33b2f838d&page_code=NTcwMTIzMDU%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniquePageviewsCreatedSummary&nonce=8227b57b-bfa0-4f64-8b1a-c0dc1b09150d&url=https%3A%2F%2Fblackdiamondrun.com%2F HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blackdiamondrun.com
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sun, 22 Jan 2023 22:12:19 GMT
content-type: text/html
cf-ray: 78dba1634fb11c16-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 871bdb3a5d61e0867995210f7213f688
x-runtime: 0.043538
set-cookie: __cf_bm=dmqw82gMQT55TtCG8xxZEpLyq_ykL2HttHj3aFjz5oI-1674425539-0-AXInZVDdVxR2Ztv6s3nmsAmj3InRD54RQEVXG3bx/rzv4CWRGL5+YkEPAc39GODnm1NFwoeQnpkUHfv7PeRZQZALoz9iMZvbrC73OeWeUp+7; path=/; expires=Sun, 22-Jan-23 22:42:19 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
images.clickfunnels.com/cdn-cgi/image/fit=scale-down,width=1150,quality=75/https://images.clickfunnels.com/10/5c6682c1ac48689d734c9d43790c92/steps123.png
200 OK 8.1 kB URL HTTP/2 images.clickfunnels.com/cdn-cgi/image/fit=scale-down,width=1150,quality=75/https://images.clickfunnels.com/10/5c6682c1ac48689d734c9d43790c92/steps123.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 633x96, components 3\012- data
Hash 4382c50b983b0ebb2da1d1ef3e7fb270
db83bbc5e62b7702cb64ec28598abe1f54591466
dc488b1e29ef1814e0f2246de38268a742f8be636cc1374d8754d1f0ade4d019
GET /cdn-cgi/image/fit=scale-down,width=1150,quality=75/https://images.clickfunnels.com/10/5c6682c1ac48689d734c9d43790c92/steps123.png HTTP/1.1
Host: images.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Cookie: __cf_bm=Nn4P7OA06CKInS5o2RRfgS_iQm7Eilx1Lt21YyN5i_8-1674425538-0-AYDXHGmgj19fhXWp1GUa2MvQudrlgDe3B+uzYvmcf9p2adm7MZQsV8qtyhdYcBHmN13JQhs0l5bAQid/+APm0pDDnO/N2Y2mROFtoRfn6v9k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:19 GMT
content-type: image/jpeg
content-length: 8105
cf-ray: 78dba164a8c91c16-OSL
accept-ranges: bytes
cache-control: max-age=2073600
etag: "cfi48pJagVShss7VJusotVVKg9jsT79EnOD-VoEO8ADQ:239a337af79a2433e2a49189c2ec6e7a"
last-modified: Fri, 14 Aug 2020 00:45:22 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:75,h2pri
cf-resized: internal=ok/h q=0 n=8+0 c=0+11 v=2023.1.3 l=8105
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
js-agent.newrelic.com/859.95d4308d-1222.js
200 OK 3.0 kB URL HTTP/2 js-agent.newrelic.com/859.95d4308d-1222.js
IP
File type ASCII text, with very long lines (6657), with no line terminators
Hash 364ac85aef21ab784eeec8f55116dff7
82089547d57defc88e114832b7eb9919a8876e31
255295be519de9a2d1040b1c547c25756b63310e2d7234bcf252ed41d5278c0b
GET /859.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PAOkWJ6WiOdnSUVZHZQv79Edy7uPwU81uM9fUJQx6T8UpQupKV3O9whnAR+3HGoYTBPmehtRe7k=
x-amz-request-id: WFN4FJZ1XN6DZ8EG
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "b087387593417c0b63259918da3584e3"
x-amz-version-id: GtNmis6Y3zB4SbtciuRtabFzp3T7wBIy
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sun, 22 Jan 2023 22:12:19 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 200246
x-timer: S1674425540.510586,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2975
X-Firefox-Spdy: h2
js-agent.newrelic.com/41.95d4308d-1222.js
200 OK 439 B URL HTTP/2 js-agent.newrelic.com/41.95d4308d-1222.js
IP
File type ASCII text, with very long lines (828), with no line terminators
Hash 46946da829a2257cd8bdeb75bc6f8ff9
bfb81d0ebb2c5a2c0fe666f6a9c4c09cc5a545b3
50e164f0b5274f88ecc28c833729663593b3380aed5a4ac3a06d29106332a544
GET /41.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2TG7kVMnt5x5EwbcjDgF/pAaH/jmgGXStlMFEbvOUPNYaRTe14pFRmwb0VQGFJQN7uXfEncHoqkNLs4TYWl92Q==
x-amz-request-id: MFEHG5GPGK6ZYQVP
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "29dd8aef66100e4c69e07fd60fc88b12"
x-amz-version-id: 6FOFyXAonMoqJqLGEMhx7HWIp32cv4MT
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sun, 22 Jan 2023 22:12:19 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 3011
x-timer: S1674425540.674560,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 439
X-Firefox-Spdy: h2
js-agent.newrelic.com/569.95d4308d-1222.js
200 OK 3.2 kB URL HTTP/2 js-agent.newrelic.com/569.95d4308d-1222.js
IP
File type ASCII text, with very long lines (7513), with no line terminators
Hash 8d0953404ce6fdf0926ef6bf37d7e041
8cec9d9883f8b7720721bb33bffb4afe45193b1d
83966eef1899edd421692b78cda8df58dfb9b0b2b27a7485183c5b4cb44a336d
GET /569.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: v+E2uK5EOShfz1aeDzYcwNWitGv9mKnF6hMwgfWjfoR/qfIZPK6AF+v3z+by8JUQg3fSUYcltK4=
x-amz-request-id: WFNFJ5TESSHD3FE6
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "e97726ab932639fed09971b1d682788c"
x-amz-version-id: umZj.yHws5JPiBHG1j096ELWHEKx7rh0
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sun, 22 Jan 2023 22:12:19 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 2997
x-timer: S1674425540.677706,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3173
X-Firefox-Spdy: h2
js-agent.newrelic.com/620.95d4308d-1222.js
200 OK 1.3 kB URL HTTP/2 js-agent.newrelic.com/620.95d4308d-1222.js
IP
File type ASCII text, with very long lines (2989), with no line terminators
Hash 7094c3f93699a846fe91edd766391f01
25e8c79409acc2bb73a728c0768e1eda66019255
85eb01219e8aaa7c7968aa175c2421454f99615ae66350b15c60465f4616826f
GET /620.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: QggJtv+14rx8wEd4C6ZTDmmxUSe6+8jiYhTGnWcIRu6DC5pRiaL5fPRx8/lgChduQ7GqRSlO6xY=
x-amz-request-id: WFN5FXFSJTZYM7K6
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "ca9b029ff66dd9146273984d16e20abc"
x-amz-version-id: HYguQMwVKEHCmodKuQRUzW1qxlElK9Xr
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sun, 22 Jan 2023 22:12:19 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 2998
x-timer: S1674425540.677805,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1342
X-Firefox-Spdy: h2
js-agent.newrelic.com/457.95d4308d-1222.js
200 OK 2.0 kB URL HTTP/2 js-agent.newrelic.com/457.95d4308d-1222.js
IP
File type ASCII text, with very long lines (4809), with no line terminators
Hash 09c0cca8d2a9fd69f1892a1c2d1319b9
b46f4fe3b0adc98785d22a092818b74145a91cc0
593022809e272793157f8280bae176bfa74a02f9f9a6d3269384e2dd434be046
GET /457.95d4308d-1222.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 6YLQBRWWkaavoi6QR5dS+9cRhXVrpaQK5v3G9/iqQ5oKPUxxFI0Uv2tN9ar51sQUG2xwVmTWBnY=
x-amz-request-id: WFN1Z9NXJZGF8XE5
last-modified: Wed, 18 Jan 2023 20:22:30 GMT
etag: "c16abc7fa2e34cbb7baf3e290120ad5a"
x-amz-version-id: qROfxBD9CF8WXmbywdhvCmImuu9HvRNA
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sun, 22 Jan 2023 22:12:19 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 3002
x-timer: S1674425540.678041,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1953
X-Firefox-Spdy: h2
bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1222.PROD&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=4015&ck=0&s=28f70d20d6a29b5d&ref=https://blackdiamondrun.com/&ap=395&be=2497&fe=1101&dc=882&perf=%7B%22timing%22:%7B%22of%22:1674425534467,%22n%22:0,%22f%22:653,%22dn%22:655,%22dne%22:655,%22c%22:656,%22s%22:665,%22ce%22:844,%22rq%22:845,%22rp%22:2458,%22rpe%22:2458,%22dl%22:2475,%22di%22:3353,%22ds%22:3378,%22de%22:3491,%22dc%22:3598,%22l%22:3598,%22le%22:3716%7D,%22navigation%22:%7B%7D%7D&fcp=2965&jsonp=NREUM.setToken
200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1222.PROD&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=4015&ck=0&s=28f70d20d6a29b5d&ref=https://blackdiamondrun.com/&ap=395&be=2497&fe=1101&dc=882&perf=%7B%22timing%22:%7B%22of%22:1674425534467,%22n%22:0,%22f%22:653,%22dn%22:655,%22dne%22:655,%22c%22:656,%22s%22:665,%22ce%22:844,%22rq%22:845,%22rp%22:2458,%22rpe%22:2458,%22dl%22:2475,%22di%22:3353,%22ds%22:3378,%22de%22:3491,%22dc%22:3598,%22l%22:3598,%22le%22:3716%7D,%22navigation%22:%7B%7D%7D&fcp=2965&jsonp=NREUM.setToken
IP
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/NRJS-fc902efb332119fff33?a=367981416&v=1222.PROD&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=4015&ck=0&s=28f70d20d6a29b5d&ref=https://blackdiamondrun.com/&ap=395&be=2497&fe=1101&dc=882&perf=%7B%22timing%22:%7B%22of%22:1674425534467,%22n%22:0,%22f%22:653,%22dn%22:655,%22dne%22:655,%22c%22:656,%22s%22:665,%22ce%22:844,%22rq%22:845,%22rp%22:2458,%22rpe%22:2458,%22dl%22:2475,%22di%22:3353,%22ds%22:3378,%22de%22:3491,%22dc%22:3598,%22l%22:3598,%22le%22:3716%7D,%22navigation%22:%7B%7D%7D&fcp=2965&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 22:12:19 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 78dba1675b611c16-OSL
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
app.clickfunnels.com/assets/lander.js
200 OK 0 B URL HTTP/2 app.clickfunnels.com/assets/lander.js
IP
GET /assets/lander.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:18 GMT
content-type: application/x-javascript
cf-ray: 78dba15e9b3c1c16-OSL
access-control-allow-origin: *
age: 156
cache-control: public, max-age=1200
etag: W/"63c93a1e-2391a3"
expires: Sun, 22 Jan 2023 22:32:18 GMT
last-modified: Thu, 19 Jan 2023 12:39:58 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=75AFfuGCCFUfuO4VeEc4dmXNAaVxDw0KbV7L7xCwW1U-1674425538-0-AZGQ5sDbb/hfopHYTsldl2e7fQUSJkRDZzpEyI77L/kjIgzkItzra2hA2AMSfUAUy0tygO8ITeDizQm+u3Dmp2r2el7WnS/TrKDCKHcbbvPN; path=/; expires=Sun, 22-Jan-23 22:42:18 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=0fnTkkisFZg_0kWsuyjdSY5gHnZkZ4TuVwB8nPBMk_E-1674425538-0-AVcw464mYw017Mcv4s4MeRSOty4zYOmhJfwAaIm-myaz-LmdA9YCCYe8PT3dgK586hAcOH8LjW8r9sSdLPqsKKMgZ6iD32NqBYXtJ_Ov0nDy"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=0fnTkkisFZg_0kWsuyjdSY5gHnZkZ4TuVwB8nPBMk_E-1674425538-0-AVcw464mYw017Mcv4s4MeRSOty4zYOmhJfwAaIm-myaz-LmdA9YCCYe8PT3dgK586hAcOH8LjW8r9sSdLPqsKKMgZ6iD32NqBYXtJ_Ov0nDy; report-to cf-csp-endpoint
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/assets/userevents/application.js
200 OK 0 B URL HTTP/2 app.clickfunnels.com/assets/userevents/application.js
IP
GET /assets/userevents/application.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:18 GMT
content-type: application/x-javascript
cf-ray: 78dba15e9b441c16-OSL
access-control-allow-origin: *
age: 1146
cache-control: public, max-age=1200
etag: W/"63c939da-147c"
expires: Sun, 22 Jan 2023 22:32:18 GMT
last-modified: Thu, 19 Jan 2023 12:38:50 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=tshTI0kvS_xUKtVhoShuOM3r_m6DMBKoGWffhWs1kpM-1674425538-0-AerLYl9kIETxkejO1PpHQxe/HchGVwyw9jqqPCj+HT1XQywrWPjf+B9sww/9AZ1Xn7QJL7pz5wLymqGYK9Lpmlk0Lif1OM/TXLMfDVLJY3J0; path=/; expires=Sun, 22-Jan-23 22:42:18 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/assets/pushcrew.js
200 OK 0 B URL HTTP/2 app.clickfunnels.com/assets/pushcrew.js
IP
GET /assets/pushcrew.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:18 GMT
content-type: application/x-javascript
cf-ray: 78dba15ebb4f1c16-OSL
access-control-allow-origin: *
age: 163
cache-control: public, max-age=1200
etag: W/"63c939d9-27d"
expires: Sun, 22 Jan 2023 22:32:18 GMT
last-modified: Thu, 19 Jan 2023 12:38:49 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=fzb7nOpp6l9BAxWgR9RqH3AhLPernUc_RkTUPFBmvJE-1674425538-0-AQT8IzNihgk/e8iD+SxxDXRZ/29Mb9UV8W4HF95xcOHSFdM0TwucYqdFbnwYDxJkFT8qGbdmf3QpQWzHIi+Wqga2AqQ3F58xGtjg344Ag7Fx; path=/; expires=Sun, 22-Jan-23 22:42:18 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
blackdiamondrun.com/cdn-cgi/rum?
200 OK 0 B URL HTTP/2 blackdiamondrun.com/cdn-cgi/rum?
IP
Analyzer Verdict Alert fortinet Malware
POST /cdn-cgi/rum? HTTP/1.1
Host: blackdiamondrun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 539
Origin: https://blackdiamondrun.com
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Cookie: PHPSESSID=2307ab84de6dcb8be8155ee6f4f4e31d; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTcwMTIzMDU=:visited=true; cf:visitor_id=e5054aad-797c-476d-b13a-defc10c6596b; addevent_track_cookie=ca3f24ea-ab68-4445-b521-064091a898b8; is_eu=false; ada0i2qzmn6kfjqx=true; 12572210_viewed_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:24 GMT
server: cloudflare
cf-ray: 78dba185c93e0b45-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
IP
GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:18 GMT
content-type: text/css
x-amz-id-2: HpuDfuJOnoRBIn1oGWh6kpnFISyPAhBcUuSh2sgaSOixf+diILYpFUsoF1uDkiR93wgKGECAn7k=
x-amz-request-id: F0PPGVAN5CXAHSGM
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2278830
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T7lWjQJ2RXLPwArRi%2FbxnZBMC0LvufSHKn8d2t8k1GOTCnNJLV6JvSfLeuByudCVnkERcCeadFdpe%2BQh9w%2FLKiZFmmp%2F2Q7euxJGYj1gOspDK26uv6yfTzVZGxzO2RgpHUatSDB1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dba15f7b2c72d0-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=YVZtZisrT3YremxiT0xpNExnSFYyUT09LS04eEpPeFh1bUhEMm1SZUlRY3RiSUN3PT0%3D--5f7de9526b8f7acadc57c6b11eb1e17de027a1bf&page_id=a2tVSmRLVnAzNERZM2IrUnZjZC9uZz09LS1qNGNxQUsvOTFjU0FOY1pxVEJPaThRPT0%3D--147c71f209448afa176f4ddb48d5be21fd1b9eb4&funnel_step_id=K1pEdFJyMTB0ejRuL0ZjSmZTWitUZz09LS1kdEhqQzZnczJGTW9UdHVsdHdvL1JRPT0%3D--c6a6917b6287e6095e315fa1eede2ca111e80f28&user_id=cCtVckpPT3FpckExQVFqdTMvTkREQT09LS1tNnY3MW1WZ1dDeSt1QkVDeExWVTBnPT0%3D--8857bc5acfe774794b630d2292c2e6eed7c45e0c&account_id=bHowZmNIeXA3Q1VkQWtNYSsvZGxGUT09LS1rL3gwQjVqMk9BamRPL08yUmJ5WlpBPT0%3D--6dc9f7dfb76e653d390e70c957ed96a33b2f838d&page_code=NTcwMTIzMDU%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::PageviewsCreatedSummary&nonce=562924a1-3f21-4562-b769-6af5a1017413&url=https%3A%2F%2Fblackdiamondrun.com%2F
202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=YVZtZisrT3YremxiT0xpNExnSFYyUT09LS04eEpPeFh1bUhEMm1SZUlRY3RiSUN3PT0%3D--5f7de9526b8f7acadc57c6b11eb1e17de027a1bf&page_id=a2tVSmRLVnAzNERZM2IrUnZjZC9uZz09LS1qNGNxQUsvOTFjU0FOY1pxVEJPaThRPT0%3D--147c71f209448afa176f4ddb48d5be21fd1b9eb4&funnel_step_id=K1pEdFJyMTB0ejRuL0ZjSmZTWitUZz09LS1kdEhqQzZnczJGTW9UdHVsdHdvL1JRPT0%3D--c6a6917b6287e6095e315fa1eede2ca111e80f28&user_id=cCtVckpPT3FpckExQVFqdTMvTkREQT09LS1tNnY3MW1WZ1dDeSt1QkVDeExWVTBnPT0%3D--8857bc5acfe774794b630d2292c2e6eed7c45e0c&account_id=bHowZmNIeXA3Q1VkQWtNYSsvZGxGUT09LS1rL3gwQjVqMk9BamRPL08yUmJ5WlpBPT0%3D--6dc9f7dfb76e653d390e70c957ed96a33b2f838d&page_code=NTcwMTIzMDU%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::PageviewsCreatedSummary&nonce=562924a1-3f21-4562-b769-6af5a1017413&url=https%3A%2F%2Fblackdiamondrun.com%2F
IP
GET /userevents/?funnel_id=YVZtZisrT3YremxiT0xpNExnSFYyUT09LS04eEpPeFh1bUhEMm1SZUlRY3RiSUN3PT0%3D--5f7de9526b8f7acadc57c6b11eb1e17de027a1bf&page_id=a2tVSmRLVnAzNERZM2IrUnZjZC9uZz09LS1qNGNxQUsvOTFjU0FOY1pxVEJPaThRPT0%3D--147c71f209448afa176f4ddb48d5be21fd1b9eb4&funnel_step_id=K1pEdFJyMTB0ejRuL0ZjSmZTWitUZz09LS1kdEhqQzZnczJGTW9UdHVsdHdvL1JRPT0%3D--c6a6917b6287e6095e315fa1eede2ca111e80f28&user_id=cCtVckpPT3FpckExQVFqdTMvTkREQT09LS1tNnY3MW1WZ1dDeSt1QkVDeExWVTBnPT0%3D--8857bc5acfe774794b630d2292c2e6eed7c45e0c&account_id=bHowZmNIeXA3Q1VkQWtNYSsvZGxGUT09LS1rL3gwQjVqMk9BamRPL08yUmJ5WlpBPT0%3D--6dc9f7dfb76e653d390e70c957ed96a33b2f838d&page_code=NTcwMTIzMDU%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::PageviewsCreatedSummary&nonce=562924a1-3f21-4562-b769-6af5a1017413&url=https%3A%2F%2Fblackdiamondrun.com%2F HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blackdiamondrun.com
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sun, 22 Jan 2023 22:12:19 GMT
content-type: text/html
cf-ray: 78dba1634fac1c16-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: f9880347fd09a507c499a8701099a2e5
x-runtime: 0.072800
set-cookie: __cf_bm=lX54sbDAQ_KbNS5x0qX5goeCdAYYRY7hSuc0cx1V0uM-1674425539-0-AdMF8fS7QJaIaBye/lQGKRYebXsHcH1EpDkM7X2wHhCbO0eDCXxGBj+CBFgTNttBSY4MC1YxBKvZbnEkxFS6TzNBibFVqtFMCDLE/7HMnHdC; path=/; expires=Sun, 22-Jan-23 22:42:19 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
classic.clickfunnels.com/cf.js
200 OK 0 B URL HTTP/2 classic.clickfunnels.com/cf.js
IP
GET /cf.js HTTP/1.1
Host: classic.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blackdiamondrun.com/
Connection: keep-alive
Cookie: __cf_bm=Nn4P7OA06CKInS5o2RRfgS_iQm7Eilx1Lt21YyN5i_8-1674425538-0-AYDXHGmgj19fhXWp1GUa2MvQudrlgDe3B+uzYvmcf9p2adm7MZQsV8qtyhdYcBHmN13JQhs0l5bAQid/+APm0pDDnO/N2Y2mROFtoRfn6v9k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:19 GMT
content-type: application/x-javascript
cf-ray: 78dba16468781c16-OSL
access-control-allow-origin: *
age: 3744
etag: W/"63c939da-476a"
last-modified: Thu, 19 Jan 2023 12:38:50 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=YVZtZisrT3YremxiT0xpNExnSFYyUT09LS04eEpPeFh1bUhEMm1SZUlRY3RiSUN3PT0%3D--5f7de9526b8f7acadc57c6b11eb1e17de027a1bf&page_id=a2tVSmRLVnAzNERZM2IrUnZjZC9uZz09LS1qNGNxQUsvOTFjU0FOY1pxVEJPaThRPT0%3D--147c71f209448afa176f4ddb48d5be21fd1b9eb4&funnel_step_id=K1pEdFJyMTB0ejRuL0ZjSmZTWitUZz09LS1kdEhqQzZnczJGTW9UdHVsdHdvL1JRPT0%3D--c6a6917b6287e6095e315fa1eede2ca111e80f28&user_id=cCtVckpPT3FpckExQVFqdTMvTkREQT09LS1tNnY3MW1WZ1dDeSt1QkVDeExWVTBnPT0%3D--8857bc5acfe774794b630d2292c2e6eed7c45e0c&account_id=bHowZmNIeXA3Q1VkQWtNYSsvZGxGUT09LS1rL3gwQjVqMk9BamRPL08yUmJ5WlpBPT0%3D--6dc9f7dfb76e653d390e70c957ed96a33b2f838d&page_code=NTcwMTIzMDU%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniqueVisitorsCreatedSummary&nonce=83bf6ea5-ddd9-4c88-8e61-f1e417fe1b8d&url=https%3A%2F%2Fblackdiamondrun.com%2F
202 Accepted 0 B URL HTTP/2 app.clickfunnels.com/userevents/?funnel_id=YVZtZisrT3YremxiT0xpNExnSFYyUT09LS04eEpPeFh1bUhEMm1SZUlRY3RiSUN3PT0%3D--5f7de9526b8f7acadc57c6b11eb1e17de027a1bf&page_id=a2tVSmRLVnAzNERZM2IrUnZjZC9uZz09LS1qNGNxQUsvOTFjU0FOY1pxVEJPaThRPT0%3D--147c71f209448afa176f4ddb48d5be21fd1b9eb4&funnel_step_id=K1pEdFJyMTB0ejRuL0ZjSmZTWitUZz09LS1kdEhqQzZnczJGTW9UdHVsdHdvL1JRPT0%3D--c6a6917b6287e6095e315fa1eede2ca111e80f28&user_id=cCtVckpPT3FpckExQVFqdTMvTkREQT09LS1tNnY3MW1WZ1dDeSt1QkVDeExWVTBnPT0%3D--8857bc5acfe774794b630d2292c2e6eed7c45e0c&account_id=bHowZmNIeXA3Q1VkQWtNYSsvZGxGUT09LS1rL3gwQjVqMk9BamRPL08yUmJ5WlpBPT0%3D--6dc9f7dfb76e653d390e70c957ed96a33b2f838d&page_code=NTcwMTIzMDU%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniqueVisitorsCreatedSummary&nonce=83bf6ea5-ddd9-4c88-8e61-f1e417fe1b8d&url=https%3A%2F%2Fblackdiamondrun.com%2F
IP
GET /userevents/?funnel_id=YVZtZisrT3YremxiT0xpNExnSFYyUT09LS04eEpPeFh1bUhEMm1SZUlRY3RiSUN3PT0%3D--5f7de9526b8f7acadc57c6b11eb1e17de027a1bf&page_id=a2tVSmRLVnAzNERZM2IrUnZjZC9uZz09LS1qNGNxQUsvOTFjU0FOY1pxVEJPaThRPT0%3D--147c71f209448afa176f4ddb48d5be21fd1b9eb4&funnel_step_id=K1pEdFJyMTB0ejRuL0ZjSmZTWitUZz09LS1kdEhqQzZnczJGTW9UdHVsdHdvL1JRPT0%3D--c6a6917b6287e6095e315fa1eede2ca111e80f28&user_id=cCtVckpPT3FpckExQVFqdTMvTkREQT09LS1tNnY3MW1WZ1dDeSt1QkVDeExWVTBnPT0%3D--8857bc5acfe774794b630d2292c2e6eed7c45e0c&account_id=bHowZmNIeXA3Q1VkQWtNYSsvZGxGUT09LS1rL3gwQjVqMk9BamRPL08yUmJ5WlpBPT0%3D--6dc9f7dfb76e653d390e70c957ed96a33b2f838d&page_code=NTcwMTIzMDU%3D&mode_id=1&time_zone=America%2FChicago&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniqueVisitorsCreatedSummary&nonce=83bf6ea5-ddd9-4c88-8e61-f1e417fe1b8d&url=https%3A%2F%2Fblackdiamondrun.com%2F HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blackdiamondrun.com
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sun, 22 Jan 2023 22:12:19 GMT
content-type: text/html
cf-ray: 78dba1634fb31c16-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 4ae4ee75e766b2acdf6d9fb6346ffc60
x-runtime: 0.045368
set-cookie: __cf_bm=QBn6TqyEzx.ITkzSHTkGsEj2vxMXNlhwlCcXiWRaIZU-1674425539-0-ASmLwvXp55BvZ1N2PEbCj249pvyqwYJs/M1DzjOg5hkvKxPUEUnWJe7zK0G9ZPqISBoVX882XQNy3eZg50AyViX+zNOnHjm4yI1Y8QVjethI; path=/; expires=Sun, 22-Jan-23 22:42:19 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
app.clickfunnels.com/assets/lander.css
200 OK 0 B URL HTTP/2 app.clickfunnels.com/assets/lander.css
IP
GET /assets/lander.css HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:18 GMT
content-type: text/css
cf-ray: 78dba15e8b351c16-OSL
access-control-allow-origin: *
age: 804
cache-control: public, max-age=1200
etag: W/"63c939da-6a514"
expires: Sun, 22 Jan 2023 22:32:18 GMT
last-modified: Thu, 19 Jan 2023 12:38:50 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=JjFxO_TuD53NSqtruv_cTBYGhtpD1Y8PQNBIrvzZPHA-1674425538-0-AehnXVU/agfKRpq8V+lF3RVzX457P8elyO6YO3/kVzI+wqfO905Diypjb3f/+n+z7QdPgXnWrpnuJkwk5BeOUJfiAZjOBT1qKj9GDCBCOGEX; path=/; expires=Sun, 22-Jan-23 22:42:18 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/mailcheck.min.js
200 OK 0 B URL HTTP/2 app.clickfunnels.com/mailcheck.min.js
IP
GET /mailcheck.min.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:18 GMT
content-type: application/x-javascript
cf-ray: 78dba15eab4e1c16-OSL
access-control-allow-origin: *
age: 4554
etag: W/"63c939da-a8d"
last-modified: Thu, 19 Jan 2023 12:38:50 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=xB2OkZiofvXvU_NG0v96GSc1C7GOMy714Q9OvZoM6qc-1674425538-0-AfdqUHA4DDb7wnVPhfLfq+1/McSB5mJD7mv/bzkASgt32WlaVb9Q+SWlocGvFVNligVJ4mazEoTo7Jl3afsz9gNfOH7jXIpKkWklHp7FsSTJ; path=/; expires=Sun, 22-Jan-23 22:42:18 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blackdiamondrun.com
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:18 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dba15eba53b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
app.clickfunnels.com/v1/track?_unique=0.8111954114560402&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//blackdiamondrun.com/&_title=ClickFunnels%20Landing%20Page&_key=d735okt6&_page_key=ada0i2qzmn6kfjqx&_fid=12572210&_fspos=1&_fvrs=1&_funnel_stat=1&_location=https://blackdiamondrun.com/&_referrer=
200 OK 0 B URL HTTP/2 app.clickfunnels.com/v1/track?_unique=0.8111954114560402&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//blackdiamondrun.com/&_title=ClickFunnels%20Landing%20Page&_key=d735okt6&_page_key=ada0i2qzmn6kfjqx&_fid=12572210&_fspos=1&_fvrs=1&_funnel_stat=1&_location=https://blackdiamondrun.com/&_referrer=
IP
GET /v1/track?_unique=0.8111954114560402&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//blackdiamondrun.com/&_title=ClickFunnels%20Landing%20Page&_key=d735okt6&_page_key=ada0i2qzmn6kfjqx&_fid=12572210&_fspos=1&_fvrs=1&_funnel_stat=1&_location=https://blackdiamondrun.com/&_referrer= HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blackdiamondrun.com
Connection: keep-alive
Referer: https://blackdiamondrun.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:12:19 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 78dba164b8d41c16-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
status: 200 OK
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: fe40feff91839a8fd6077f2dc7816a46
x-runtime: 0.019135
set-cookie: __cf_bm=eYQqrFVwwkZvXqjpt2vMeMCpxPFmwNeCWNnxNrQEzxA-1674425539-0-AYroQ9GZcuk2fEJgeqB0xdEtJNqIftRQ/slBJ3ycSWVU2rU+MyIOGcOb9A/1X3rx/KbLY8AhafXFUzQZqpzd6S2p1MtmsBUOoVTetYH+rRUH; path=/; expires=Sun, 22-Jan-23 22:42:19 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
66.235.200.147
104.16.15.194
23.36.76.226
93.184.220.29