Report - bakerlisalee.clickfunnels.com/optingmj9hif

Report Overview

Submitted URL
bakerlisalee.clickfunnels.com/optingmj9hif
IP
104.16.13.194
ASN
#13335 CLOUDFLARENET
Submitted
2022-11-09 14:49:04
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	52.89.255.30
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	56 kB	34.120.237.76
static.cloudflareinsights.com	1294	2019-09-24T16:34:56Z	2023-03-10T13:32:49Z	483 B	393 B	104.16.57.101
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	409 B	746 B	142.250.74.10
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	1.4 kB	3.0 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	1.4 kB	2.8 kB	142.250.74.35
bakerlisalee.clickfunnels.com	unknown			2.5 kB	7.8 kB	104.16.12.194
assets.clickfunnels.com	64830	2014-10-08T22:00:20Z	2023-03-10T14:23:44Z	629 B	1.3 kB	104.16.12.194
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	1.7 kB	4.4 kB	23.36.77.32
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
images.clickfunnels.com	95357	2014-10-08T22:00:42Z	2023-03-10T14:23:44Z	640 B	3.9 kB	104.16.12.194
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	990 B	66 kB	216.58.207.195

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	17 kB	2023-03-08	2024-02-28
Pretty URL static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.57.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:00 Last Seen2024-02-28 12:44:37 Times Seen1362 Hash 33100f2355611b2375f05486299abf05 0b2d1b75f6695e67b884bee2eb72165d6e881a26 0f48c5678ce459a596423b0e55344e7ad8eb3d3b1b27c54cd76a9d4cee7dd6c3 Loading...

HTTP Transactions (32)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash aabe410b4bbe4d8beb0e4561d3aa158e e1788632902ddea62cdd9e7ad6009a75ffb69788 ad535e27b201e92670770b2b868c58f7c05633ec66490a41ef4592f062834c1f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F" Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8749 Expires: Wed, 09 Nov 2022 17:14:42 GMT Date: Wed, 09 Nov 2022 14:48:53 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 4c6e4047ec266b87485610e26a85bb6f cd543757597609d7309d02652318359078a965c2 d8aff7a24f3274782b4f41d6dbd181ba817f5a562d992a3a82966481c91f8a90 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4469 Cache-Control: max-age=161800 Content-Type: application/ocsp-response Date: Wed, 09 Nov 2022 14:48:53 GMT Etag: "636b8168-1d7" Expires: Fri, 11 Nov 2022 11:45:33 GMT Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 4c6e4047ec266b87485610e26a85bb6f cd543757597609d7309d02652318359078a965c2 d8aff7a24f3274782b4f41d6dbd181ba817f5a562d992a3a82966481c91f8a90 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4328 Cache-Control: max-age=161659 Content-Type: application/ocsp-response Date: Wed, 09 Nov 2022 14:48:53 GMT Etag: "636b8168-1d7" Expires: Fri, 11 Nov 2022 11:43:12 GMT Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT Server: ECS (ska/F711) X-Cache: HIT Content-Length: 471`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2b57492bf85f4ae6abbd1641b17dc9ab 008e71ec05d47bf025ca64e17da2ea1bd8e71111 17894427c471f7fa02ca274795dc55df1bfc99d7bd83f9ee36249394035110fd HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "17894427C471F7FA02CA274795DC55DF1BFC99D7BD83F9EE36249394035110FD" Last-Modified: Wed, 09 Nov 2022 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12981 Expires: Wed, 09 Nov 2022 18:25:14 GMT Date: Wed, 09 Nov 2022 14:48:53 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: tbaPo9PuzaLbroNvPLIiz8UMOnqPZTL0uhnTu0mKRv4NRjUmVhXYwvGQPlF2H4fOuP5+0pNA/Xo= x-amz-request-id: 1T1ABSCJRTZE6Q2P content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 09 Nov 2022 13:49:00 GMT age: 3593 last-modified: Fri, 30 Sep 2022 18:50:55 GMT etag: "67d5a988edcda47bc3b3b3f65d32b4b6" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 09 Nov 2022 14:48:53 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 572fb467c24923ecfd2b686c90683b30 b3daeb270365baecf6c4bc08d67c303d888b0286 e714756ffa4b63b7c7ff18be9f2bfac176def58e37dad12abcb298bbc24ddc0d HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4408 Cache-Control: max-age=148033 Content-Type: application/ocsp-response Date: Wed, 09 Nov 2022 14:48:53 GMT Etag: "636b4bde-117" Expires: Fri, 11 Nov 2022 07:56:06 GMT Last-Modified: Wed, 09 Nov 2022 06:42:38 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 279`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 2cc2a9c89cbd9d2da1fd4a79a7d8b1d8 b2a4971855e26ff842f71d5dd4fff2596a83bd59 3bdf6aea6d003d0b087c13a74034f422cb09a59fd5c97b2b48ce590dfca6109a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 09 Nov 2022 14:48:53 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	bakerlisalee.clickfunnels.com/images/logo-cf-large.png	104.16.12.194	200 OK	5.3 kB
URL HTTP/2 bakerlisalee.clickfunnels.com/images/logo-cf-large.png IP 104.16.12.194:0 ASN #13335 CLOUDFLARENET File type PNG image data, 379 x 82, 8-bit/color RGBA, non-interlaced\012- data Size 5.3 kB (5273 bytes) Hash 4b4cc2fd3deda8544a9ad9ec345d1aeb 73e178dfd348105554e9bf8028a7c94985bdfdb7 e9cceabb5017f2827b04feade3513692b106e9058f8867cef815297551495cbf HTTP Headers GET /images/logo-cf-large.png HTTP/1.1 Host: bakerlisalee.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bakerlisalee.clickfunnels.com/optingmj9hif Cookie: __cf_bm=x3DZWnZdWz_XYVQVrKIdeQ4TI6DZWQpbHOfc4ZKrkP8-1668005333-0-AYor66X4HVvIR4KKrSIOyzKpV/6dnVGlmH2JVGVtZVCp+1hYUeREqshmH2akZWJilH9ylCSHCZVs10rxmBu8wLKuKnHwP4UD/dgxyZ+9it7v Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Wed, 09 Nov 2022 14:48:53 GMT content-type: image/png content-length: 5273 cf-ray: 76775a184b78b509-OSL accept-ranges: bytes access-control-allow-origin: * cache-control: public, max-age=2678400 etag: "6359dae3-1499" expires: Sat, 10 Dec 2022 14:48:53 GMT last-modified: Thu, 27 Oct 2022 01:12:03 GMT strict-transport-security: max-age=0 vary: Accept-Encoding cf-cache-status: MISS access-control-allow-credentials: true access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS server: cloudflare X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 2cc2a9c89cbd9d2da1fd4a79a7d8b1d8 b2a4971855e26ff842f71d5dd4fff2596a83bd59 3bdf6aea6d003d0b087c13a74034f422cb09a59fd5c97b2b48ce590dfca6109a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 09 Nov 2022 14:48:53 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	images.clickfunnels.com/old-public-templates/master-cf-template/css/master-cf.css	104.16.12.194	200 OK	3.4 kB
URL HTTP/2 images.clickfunnels.com/old-public-templates/master-cf-template/css/master-cf.css IP 104.16.12.194:0 ASN #13335 CLOUDFLARENET File type ASCII text Size 3.4 kB (3422 bytes) Hash b03de6002e3b6686c68f510ecd4edfc2 cfc8c4ad789fedeaf408c6412a126fe0514fcd26 8e9f5a6b44e66134b00b6d6b626d08bf1006d2329814b6dacbf104d6dad48eda HTTP Headers GET /old-public-templates/master-cf-template/css/master-cf.css HTTP/1.1 Host: images.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://bakerlisalee.clickfunnels.com/ Connection: keep-alive Cookie: __cf_bm=x3DZWnZdWz_XYVQVrKIdeQ4TI6DZWQpbHOfc4ZKrkP8-1668005333-0-AYor66X4HVvIR4KKrSIOyzKpV/6dnVGlmH2JVGVtZVCp+1hYUeREqshmH2akZWJilH9ylCSHCZVs10rxmBu8wLKuKnHwP4UD/dgxyZ+9it7v Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Wed, 09 Nov 2022 14:48:54 GMT content-type: text/css x-amz-id-2: 2LVdswpp+iVXSOraa5R0wRWI0TC5vgR676MGOXckAKIzXFp+NvNADCyOpD626Eo5fduLeasgw0E= x-amz-request-id: B26KQYB8N0XFN80C last-modified: Fri, 14 Aug 2015 19:43:06 GMT etag: W/"3e7114e9a37d5aad422dafab4abb7dae" cf-cache-status: REVALIDATED expires: Sat, 03 Dec 2022 14:48:54 GMT cache-control: public, max-age=2073600 vary: Accept-Encoding server: cloudflare cf-ray: 76775a192ca4b509-OSL content-encoding: br X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 61a9432317cba5908c0a73266e8b8a62 c8bc872f016956cbb5569d7727bdfd46d64146c6 fafa5e76a4ed086616cce2f8e5af613630b11221ec9001d30cac72f6c1f350de HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 09 Nov 2022 14:48:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2	216.58.207.195	200 OK	30 kB
URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 29752, version 1.0\012- data Size 30 kB (29752 bytes) Hash ab1fc8621287e4ea9319a3136812cf80 fb4ed2e52e2a8d7ac50a7618a0c2ea5507a24ef3 7c00752ce82d6abaed0b9766d35b906b16675facdbe24115b410d1fab975effa HTTP Headers `GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://bakerlisalee.clickfunnels.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 29752 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 03 Nov 2022 07:00:19 GMT expires: Fri, 03 Nov 2023 07:00:19 GMT cache-control: public, max-age=31536000 age: 546515 last-modified: Wed, 27 Apr 2022 17:05:11 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2	216.58.207.195	200 OK	35 kB
URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0\012- data Size 35 kB (34852 bytes) Hash 0e8eefb4549a2edf26c560cb9845952e 8d0b1718aacad934fd0043c87cbc54aa091396bf 7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a HTTP Headers `GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://bakerlisalee.clickfunnels.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 34852 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 09 Nov 2022 08:17:47 GMT expires: Thu, 09 Nov 2023 08:17:47 GMT cache-control: public, max-age=31536000 last-modified: Wed, 27 Apr 2022 16:31:23 GMT content-type: font/woff2 age: 23467 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 4dc4a177d25f666a9ba1cf6225354467 8975f2e5cc9cadc4a1e369da45471eb1f0830c5e 6c9e54a13abc265cac7bdee51c6fa49e5e7590fec7a1cc99096c384dabef31be HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 09 Nov 2022 14:48:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	bakerlisalee.clickfunnels.com/cdn-cgi/rum?	104.16.12.194	204 No Content	0 B
URL HTTP/2 bakerlisalee.clickfunnels.com/cdn-cgi/rum? IP 104.16.12.194:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: bakerlisalee.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 2787 Origin: https://bakerlisalee.clickfunnels.com Connection: keep-alive Referer: https://bakerlisalee.clickfunnels.com/optingmj9hif Cookie: __cf_bm=x3DZWnZdWz_XYVQVrKIdeQ4TI6DZWQpbHOfc4ZKrkP8-1668005333-0-AYor66X4HVvIR4KKrSIOyzKpV/6dnVGlmH2JVGVtZVCp+1hYUeREqshmH2akZWJilH9ylCSHCZVs10rxmBu8wLKuKnHwP4UD/dgxyZ+9it7v Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 204 No Content date: Wed, 09 Nov 2022 14:48:54 GMT access-control-allow-origin: https://bakerlisalee.clickfunnels.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 76775a1b6fcdb509-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash c59d06092401e375df491b06ee8e6dbc 2e27b8ff7c08a5349e27969bc2a08e5e19d0c1da 23ee4ab633fcf67dc5d4d1931450e365cec8d436ef1f9ba5f46b6bab974724c4 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1552 Cache-Control: max-age=153827 Content-Type: application/ocsp-response Date: Wed, 09 Nov 2022 14:48:54 GMT Etag: "636b6da9-1d7" Expires: Fri, 11 Nov 2022 09:32:41 GMT Last-Modified: Wed, 09 Nov 2022 09:06:49 GMT Server: ECS (ska/F711) X-Cache: HIT Content-Length: 471`

	push.services.mozilla.com/	52.89.255.30	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.89.255.30:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: coLZA+WLqMPQRyyDCe4AOg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: DY62obmvsze7B9Tk+Vwa5Yuy0DU=`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b6e55fb9c16b8ec503ca6fb935f650f 1e392159765235158a218248677dc21c46bc4f42 89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B" Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13735 Expires: Wed, 09 Nov 2022 18:37:50 GMT Date: Wed, 09 Nov 2022 14:48:55 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b6e55fb9c16b8ec503ca6fb935f650f 1e392159765235158a218248677dc21c46bc4f42 89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B" Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13735 Expires: Wed, 09 Nov 2022 18:37:50 GMT Date: Wed, 09 Nov 2022 14:48:55 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b6e55fb9c16b8ec503ca6fb935f650f 1e392159765235158a218248677dc21c46bc4f42 89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B" Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13735 Expires: Wed, 09 Nov 2022 18:37:50 GMT Date: Wed, 09 Nov 2022 14:48:55 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8786d2a2-d21a-4bb6-916d-7fce27ea08f2.jpeg	34.120.237.76	200 OK	4.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8786d2a2-d21a-4bb6-916d-7fce27ea08f2.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.7 kB (4737 bytes) Hash 39446652ee66d20bd73df20f1a29589c 349ea78f3ad0f2f7376ba22e417226b2e06806d7 655a00944a319ba167e99b43055044cb18bc48d53605ff0d1b6c8b1ba8ee8237 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8786d2a2-d21a-4bb6-916d-7fce27ea08f2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4737 x-amzn-requestid: ad230e08-9f4e-46cf-9a86-f8e013a1c498 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bQBFkEhLIAMFq_g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63697bbd-7e8b686a23a84c5d473c9ef5;Sampled=0 x-amzn-remapped-date: Mon, 07 Nov 2022 21:42:21 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: FoOPmZEjC6nhw801dgqENVL-9-aC0pyFAF-fMS57XzQyfxck2GGUvA== via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google date: Tue, 08 Nov 2022 21:49:16 GMT age: 61179 etag: "349ea78f3ad0f2f7376ba22e417226b2e06806d7" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b197dc2-1415-4c19-8d36-1fa334168ba5.jpeg	34.120.237.76	200 OK	9.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b197dc2-1415-4c19-8d36-1fa334168ba5.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.3 kB (9313 bytes) Hash 29429581f8dc762c69c5916009f70080 9265cae98aa663a5498925b70079abdd8e7031fd c3deee74c80905a1e92b84868b9987cb30ad7a210dca066b97c325cc2c83872e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b197dc2-1415-4c19-8d36-1fa334168ba5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9313 x-amzn-requestid: be3f6b0f-cf61-4bec-ad1a-87abdbc45d73 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bTTTwF5AoAMFZAw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636acc17-5ca45b5b1065a4ea492f2ac6;Sampled=0 x-amzn-remapped-date: Tue, 08 Nov 2022 21:37:27 GMT x-amz-cf-pop: SEA19-C3, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: 9lVY7YgQQ0FAP3ItgCSWePY0Msd4RIyBz4eNPc-K51BtnWUjOObv6g== via: 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google date: Tue, 08 Nov 2022 21:43:31 GMT etag: "9265cae98aa663a5498925b70079abdd8e7031fd" content-type: image/jpeg age: 61524 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10462 bytes) Hash 4e2853cc6ec6223160471401e6871f4b f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10462 x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aMF6oEz_oAMF8Hg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0 x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: C7GYpM3mXSf0hVyGO9Zzlxa3IHXHdyPlXsvr3i0GoQnaPZF6lO-OwA== via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google date: Wed, 09 Nov 2022 06:24:20 GMT age: 30275 etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84109408-bbc7-4166-8974-df4b4fbbf1c1.jpeg	34.120.237.76	200 OK	6.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84109408-bbc7-4166-8974-df4b4fbbf1c1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.3 kB (6272 bytes) Hash 11ef1d34ac2d42662fe53fc58c882fdf 16f1e048895ed1ee0c0c071e3939e741113e4969 61c42bae12654cf9bd1e7ca0f616164ff4139dc470fb6c1033176374444d6bda HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84109408-bbc7-4166-8974-df4b4fbbf1c1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6272 x-amzn-requestid: 7287a2fe-853d-497f-a63e-1d521dd5326e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bG3dSGEIIAMF7Kg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6365d2bb-4c6803ad2d4ea46e68abd386;Sampled=0 x-amzn-remapped-date: Sat, 05 Nov 2022 03:04:27 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: HorGiakcVRB2pttVHMwYarPgVp3mK2Fk1uf5dagcCPOWw184ZD4A8A== via: 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google date: Wed, 09 Nov 2022 09:37:53 GMT age: 18662 etag: "16f1e048895ed1ee0c0c071e3939e741113e4969" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff66bafec-6420-4aea-8b22-96b8fe0d292b.jpeg	34.120.237.76	200 OK	8.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff66bafec-6420-4aea-8b22-96b8fe0d292b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.2 kB (8154 bytes) Hash c69b19d2273c3ade32fd0797921c0459 8cafda5659f5b36c855a2bbcaeb03aa715ddeebd d78b92e1175207b1179c85f9490f937e1647aeae3fe95cf8b3dc336db232945e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff66bafec-6420-4aea-8b22-96b8fe0d292b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8154 x-amzn-requestid: 1d9d6e13-69a4-473d-af4b-ef3d4382f3ca x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bTTU2EyZoAMF94w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636acc1e-0dec203434f42df01d9a1182;Sampled=0 x-amzn-remapped-date: Tue, 08 Nov 2022 21:37:34 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 5sq7XRYInS334VVDEtCJNlf_O9FTHn2G4u-WAIygFZ-SALN0flMwew== via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google date: Tue, 08 Nov 2022 22:02:14 GMT age: 60401 etag: "8cafda5659f5b36c855a2bbcaeb03aa715ddeebd" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F609c6c88-4535-488a-8bf4-de0e93b9ae31.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F609c6c88-4535-488a-8bf4-de0e93b9ae31.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10822 bytes) Hash 86ec3f22045de1a100eccf27d91593ae e26769d82108f89057b05096061f1276d34e223a b863d19ab12945922b4d014c517f5ffe349cefe2bbe1c2f16661371f22378cbd HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F609c6c88-4535-488a-8bf4-de0e93b9ae31.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10822 x-amzn-requestid: 730ec36d-2d1d-4a0f-90c8-dd819811bdd1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bM39VEZkIAMF7lg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636839ee-6e75e34c64d489ca25765e67;Sampled=0 x-amzn-remapped-date: Sun, 06 Nov 2022 22:49:18 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: R2JUiJdMAsIbCHDmMMHyN0sKaVBZMDRh2WOfBPUWZpnMBVOcI40Y3w== via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google date: Wed, 09 Nov 2022 11:14:53 GMT age: 12842 etag: "e26769d82108f89057b05096061f1276d34e223a" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	bakerlisalee.clickfunnels.com/cdn-cgi/rum?	104.16.12.194	204 No Content	0 B
URL HTTP/2 bakerlisalee.clickfunnels.com/cdn-cgi/rum? IP 104.16.12.194:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: bakerlisalee.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 619 Origin: https://bakerlisalee.clickfunnels.com Connection: keep-alive Referer: https://bakerlisalee.clickfunnels.com/optingmj9hif Cookie: __cf_bm=x3DZWnZdWz_XYVQVrKIdeQ4TI6DZWQpbHOfc4ZKrkP8-1668005333-0-AYor66X4HVvIR4KKrSIOyzKpV/6dnVGlmH2JVGVtZVCp+1hYUeREqshmH2akZWJilH9ylCSHCZVs10rxmBu8wLKuKnHwP4UD/dgxyZ+9it7v Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 204 No Content date: Wed, 09 Nov 2022 14:49:02 GMT access-control-allow-origin: https://bakerlisalee.clickfunnels.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 76775a4f5d71b509-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	bakerlisalee.clickfunnels.com/optingmj9hif	104.16.12.194	404 Not Found	0 B
URL HTTP/2 bakerlisalee.clickfunnels.com/optingmj9hif IP 104.16.12.194:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /optingmj9hif HTTP/1.1 Host: bakerlisalee.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 404 Not Found date: Wed, 09 Nov 2022 14:48:53 GMT content-type: text/html; charset=utf-8 cf-ray: 76775a15e82bb509-OSL access-control-allow-origin: * cache-control: no-cache strict-transport-security: max-age=0 vary: Accept-Encoding cf-cache-status: MISS access-control-allow-credentials: true access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS status: 404 Not Found x-frame-options: ALLOWALL x-powered-by: Phusion Passenger Enterprise 6.0.7 x-rack-cache: miss x-request-id: e69851014d7ab758440c247265ae324e x-runtime: 0.050634 set-cookie: __cf_bm=x3DZWnZdWz_XYVQVrKIdeQ4TI6DZWQpbHOfc4ZKrkP8-1668005333-0-AYor66X4HVvIR4KKrSIOyzKpV/6dnVGlmH2JVGVtZVCp+1hYUeREqshmH2akZWJilH9ylCSHCZVs10rxmBu8wLKuKnHwP4UD/dgxyZ+9it7v; path=/; expires=Wed, 09-Nov-22 15:18:53 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None server: cloudflare content-encoding: br X-Firefox-Spdy: h2

	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	104.16.57.101	200 OK	0 B
URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.57.101:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://bakerlisalee.clickfunnels.com Connection: keep-alive Referer: https://bakerlisalee.clickfunnels.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Wed, 09 Nov 2022 14:48:53 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/2022.10.1 last-modified: Fri, 21 Oct 2022 01:56:09 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 76775a1898c70b59-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.googleapis.com/css?family=Ubuntu:400,700	142.250.74.10	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Ubuntu:400,700 IP 142.250.74.10:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Ubuntu:400,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bakerlisalee.clickfunnels.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 09 Nov 2022 14:48:53 GMT date: Wed, 09 Nov 2022 14:48:53 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	assets.clickfunnels.com/templates/master-cf-template/css/master-cf.css	104.16.12.194	301 Moved Permanently	0 B
URL HTTP/2 assets.clickfunnels.com/templates/master-cf-template/css/master-cf.css IP 104.16.12.194:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /templates/master-cf-template/css/master-cf.css HTTP/1.1 Host: assets.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://bakerlisalee.clickfunnels.com/ Cookie: __cf_bm=x3DZWnZdWz_XYVQVrKIdeQ4TI6DZWQpbHOfc4ZKrkP8-1668005333-0-AYor66X4HVvIR4KKrSIOyzKpV/6dnVGlmH2JVGVtZVCp+1hYUeREqshmH2akZWJilH9ylCSHCZVs10rxmBu8wLKuKnHwP4UD/dgxyZ+9it7v Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 301 Moved Permanently date: Wed, 09 Nov 2022 14:48:53 GMT content-type: text/html location: https://images.clickfunnels.com/old-public-templates/master-cf-template/css/master-cf.css cf-ray: 76775a185b80b509-OSL access-control-allow-origin: * strict-transport-security: max-age=0 vary: Accept-Encoding cf-cache-status: EXPIRED access-control-allow-credentials: true access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=uoaLG7gwqdcmgMfg.vKmpmrVvQQKnyjSiCcl571UwD4-1668005333-0-AfsX8rn43uliSHH0b24XUvHhLIEH19kPgIuk7bdcUbFOCCOW9hNHGxexq75gqQJwAdKlkUCnBPnFrumnJ6NHPX2OnsHBgp78EsA9sZ6AtPkG"}],"group":"cf-csp-endpoint","max_age":86400} content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=uoaLG7gwqdcmgMfg.vKmpmrVvQQKnyjSiCcl571UwD4-1668005333-0-AfsX8rn43uliSHH0b24XUvHhLIEH19kPgIuk7bdcUbFOCCOW9hNHGxexq75gqQJwAdKlkUCnBPnFrumnJ6NHPX2OnsHBgp78EsA9sZ6AtPkG; report-to cf-csp-endpoint server: cloudflare X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (32)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size