| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7c60904d097cde276e4e5632cef1b9f1 4f805026462589345d85e8df2d18eafba6237504 12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7801
Expires: Fri, 25 Nov 2022 14:54:52 GMT
Date: Fri, 25 Nov 2022 12:44:51 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash260e9998c20d831b66f1029c8f47aac9 716d630f647c54dc69a7f9c63a6cac294b3df7f7 c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10213
Expires: Fri, 25 Nov 2022 15:35:04 GMT
Date: Fri, 25 Nov 2022 12:44:51 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash10730f388c028d64e19b8a48d414768f e43b104e57e5ea7ff8568835776858cf2ede6f00 f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3056
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:51 GMT
Last-Modified: Fri, 25 Nov 2022 11:53:55 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NOqHcoJ9IvCEDSKQoGLIchfAy0UpDv5Fnt2SrEISNKQSazaHtK8MPa2Z5BChhvYFGmxpFH4L5EQ=
x-amz-request-id: 7HC23VBZMKQ9E80K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 12:40:48 GMT
age: 243
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash4d7e4eed097b9c4e5d509419f1cfc85a 290bb3d428a7c6330e2e3d73a952b16f820896c8 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 12:17:26 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1645
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/optin1661179021022 | 104.16.14.194 | 301 Moved Permanently | 494 B |
URL HTTP/1.1cf.securepagenow.com/optin1661179021022 IP104.16.14.194:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (479) Hash14ddb0cc97000aa4fde3fc8f26ed4d50 9cf1d03033a93b1c0bc89f4e3dff99a3c888a823 079cd0aa6cc71e3a93f4404e611c71764a22732ee0c726a2d8b1a152146dbf2b
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /optin1661179021022 HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 25 Nov 2022 12:44:51 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://cf.securepagenow.com/optin1661179021022
CF-Ray: 76fa7a637ccffab8-OSL
Access-Control-Allow-Origin: *
Cache-Control: max-age=60, public, s-maxage=600, r-maxage=10
Last-Modified: Wed, 07 Sep 2022 09:15:38 GMT
Vary: Accept-Encoding
CF-Cache-Status: MISS
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
Status: 301 Moved Permanently
X-Content-Digest: 74b04095f9bc3ece45e3f35a319f00b359f079eb
X-Frame-Options: ALLOWALL
X-Powered-By: Phusion Passenger Enterprise 6.0.7
X-Rack-Cache: miss, store
X-Request-Id: ac95bbb5115c9782da835d84baff7ee6
X-Runtime: 0.075198
Set-Cookie: __cf_bm=q9fbfTOOCqWVKW9qLakpCiLJ_9bGOwxeSqTX3wnqRrQ-1669380291-0-Aed6AjuUsTkcPkKtPz5OSlZ0AhGBPd7iqugyLhwVWiCOkP4zw/18kDPXdrJUPadOqPmzAm71b8ZkI2C11QoozFowDkDQUmLH3tk7GVtY7UX3; path=/; expires=Fri, 25-Nov-22 13:14:51 GMT; domain=.cf.securepagenow.com; HttpOnly; SameSite=None
Report-To: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=Q3QbYr3QfWauhVWFas0tFdshx2elmjmEZGZPz4TuGM8-1669380291-0-ASutqg9qV0qt8qlwbDCA6XTEReyhIpGhcaCJM-Xy8GchQZ-FZv-ulLPEm5EFgPl5Mk-S3i61gJ8zUhg_fnAJoFcM4kYHaepbkMcmfZBN63L-"}],"group":"cf-csp-endpoint","max_age":86400}
Content-Security-Policy-Report-Only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=Q3QbYr3QfWauhVWFas0tFdshx2elmjmEZGZPz4TuGM8-1669380291-0-ASutqg9qV0qt8qlwbDCA6XTEReyhIpGhcaCJM-Xy8GchQZ-FZv-ulLPEm5EFgPl5Mk-S3i61gJ8zUhg_fnAJoFcM4kYHaepbkMcmfZBN63L-; report-to cf-csp-endpoint
Server: cloudflare
alt-svc: h2=":443"; ma=60
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 12:44:51 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash69a9ecaddd9758857583f3a3cf4a66a0 57f27989064a5e6b5faaef2b1865996a2b30c7fd a475c1f979c76fb6a89444f186e5b264811eaa065dc6faf472d017fe7fd232a3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=147121
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:51 GMT
Etag: "63805474-117"
Expires: Sun, 27 Nov 2022 05:36:52 GMT
Last-Modified: Fri, 25 Nov 2022 05:36:52 GMT
Server: nginx
Content-Length: 279
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 12:11:11 GMT
cache-control: public,max-age=3600
age: 2020
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashdf06e70fc8a35facf1d8db463d18e231 fa8a2975566cc792898f870e48ae7518d3657326 4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2944
Cache-Control: max-age=162664
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:51 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 09:55:55 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hasha130aed83a382264ec43322177a9c014 3a9e6f3d1042d4d7f9a4ef820d87771fed73d0a9 2ccdd60ee29576aebe6879a34b8245ecebf6825ffc87a85f6f6dfdc9893c7522
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6341
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Last-Modified: Fri, 25 Nov 2022 10:59:11 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash7d77ac1ccb2d74d694a83f20d746a4aa 45e39e0a3f94a7074063fc7ef1c05f81d219b4ef 055cf4be692f4f61fc8b0a691d365eb755b2020e89357895f2e03e590aad24e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4019
Cache-Control: max-age=169844
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "63809d85-116"
Expires: Sun, 27 Nov 2022 11:55:36 GMT
Last-Modified: Fri, 25 Nov 2022 10:48:37 GMT
Server: ECS (amb/6B88)
X-Cache: HIT
Content-Length: 278
|
|
| cf.securepagenow.com/assets/lander.css | 104.16.12.194 | 200 OK | 72 kB |
URL HTTP/2cf.securepagenow.com/assets/lander.css IP104.16.12.194:0
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (53232) Hashc663ad42f23e600a26b1add5bec6cb1c 821e0dc1acc5129c6f8c054d737c989cc7eea645 12f32b747c4ecb6039e6dc27ee66d76142dca746a74281c12cd18cd463bb0909
GET /assets/lander.css HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=tG6IcKVk3zt2z7Uxgp7eAxRllEflEanfa32ubrNOjac-1669380291-0-AUbQ8A2NOS2le81qIAfDtZBRuDxQlwrxSdS+J9o8BVboZI1ew0+s8M26Eml+h2Qky5HPxUcauhrENSe0hvUWelK3xLTCCtXEJa1ju/0fZmaI
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/css
cf-ray: 76fa7a68dd300afe-OSL
access-control-allow-origin: *
age: 136
cache-control: public, max-age=1200
etag: W/"637bf173-6a514"
expires: Fri, 25 Nov 2022 13:04:52 GMT
last-modified: Mon, 21 Nov 2022 21:45:23 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hashf2d8c84168fac835cfedc4e3f49dd87e 8850fca6914fe68a79ba16dbf5d8aa120ba9eed6 02366941cc203e7fb16325c12b9c3e59952473eab7a943b3a9faeef2eaeb5218
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6561
Cache-Control: max-age=90678
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "637f5e59-118"
Expires: Sat, 26 Nov 2022 13:56:10 GMT
Last-Modified: Thu, 24 Nov 2022 12:06:49 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashb44543de9922ec7d97f2e0be1865553e caef856450efd75de0cfae9402903b1f4bd6de4c d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashb44543de9922ec7d97f2e0be1865553e caef856450efd75de0cfae9402903b1f4bd6de4c d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hashf2d8c84168fac835cfedc4e3f49dd87e 8850fca6914fe68a79ba16dbf5d8aa120ba9eed6 02366941cc203e7fb16325c12b9c3e59952473eab7a943b3a9faeef2eaeb5218
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4945
Cache-Control: max-age=89062
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "637f5e59-118"
Expires: Sat, 26 Nov 2022 13:29:14 GMT
Last-Modified: Thu, 24 Nov 2022 12:06:49 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
|
|
| push.services.mozilla.com/ | 52.35.190.173 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.35.190.173:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rpfpU7Sg0jCIwLIHY8NW9A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iTfv+YuC+cgWcrjz8zHyDRJ9DTM=
|
|
| cf.securepagenow.com/images/email2.png | 104.16.12.194 | 200 OK | 3.2 kB |
URL HTTP/2cf.securepagenow.com/images/email2.png IP104.16.12.194:0
File typePNG image data, 24 x 16, 8-bit/color RGBA, non-interlaced\012- data Hash62d4d603e34f11a8d564774990174291 18a9d47c63f2adce11ad6b6aa17511cec64bafad d3406f6cc630164b707537cf074683c31484bec5fe17cb45de959bae16695b89
GET /images/email2.png HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/assets/lander.css
Cookie: __cf_bm=tG6IcKVk3zt2z7Uxgp7eAxRllEflEanfa32ubrNOjac-1669380291-0-AUbQ8A2NOS2le81qIAfDtZBRuDxQlwrxSdS+J9o8BVboZI1ew0+s8M26Eml+h2Qky5HPxUcauhrENSe0hvUWelK3xLTCCtXEJa1ju/0fZmaI
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: image/png
content-length: 3200
cf-ray: 76fa7a6a3ec40afe-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "637bf173-c80"
expires: Mon, 26 Dec 2022 12:44:52 GMT
last-modified: Mon, 21 Nov 2022 21:45:23 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/images/name2.png | 104.16.12.194 | 200 OK | 3.1 kB |
URL HTTP/2cf.securepagenow.com/images/name2.png IP104.16.12.194:0
File typePNG image data, 24 x 21, 8-bit/color RGBA, non-interlaced\012- data Hash5188a0e7312ff8a84178f4b429c38f4d 30a613c369351db0290400bebc388b47debfe343 0a09b81cb4895ab6fb00240f7d6b6061bd62ee55b41558591543ebe50809306b
GET /images/name2.png HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/assets/lander.css
Cookie: __cf_bm=tG6IcKVk3zt2z7Uxgp7eAxRllEflEanfa32ubrNOjac-1669380291-0-AUbQ8A2NOS2le81qIAfDtZBRuDxQlwrxSdS+J9o8BVboZI1ew0+s8M26Eml+h2Qky5HPxUcauhrENSe0hvUWelK3xLTCCtXEJa1ju/0fZmaI
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: image/png
content-length: 3142
cf-ray: 76fa7a6a3ec20afe-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "637bf173-c46"
expires: Mon, 26 Dec 2022 12:44:52 GMT
last-modified: Mon, 21 Nov 2022 21:45:23 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash97dc61e35061be309c5ac6a3dd52bff7 bb12b69c46b91492a7da8699fd975c3e9caa41ab ee23b3ef4be7bddea2caa05d34214ca5c1a5c22f16b10e17e5755d9035428df1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4714
Cache-Control: max-age=149342
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "63804ab8-116"
Expires: Sun, 27 Nov 2022 06:13:54 GMT
Last-Modified: Fri, 25 Nov 2022 04:55:20 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hashdee7776e25be18cf4ec77107b18b33a6 3669d29f23ebf5f645b922850d96daf9051e5fab 778b1b717ad09a12d9b6b3caf19bebaf7f832d5638e6ee93ec878f44fd1fe5d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6211
Cache-Control: max-age=122036
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "637fda35-118"
Expires: Sat, 26 Nov 2022 22:38:48 GMT
Last-Modified: Thu, 24 Nov 2022 20:55:17 GMT
Server: ECS (amb/6BA8)
X-Cache: HIT
Content-Length: 280
|
|
| cf.securepagenow.com/cdn-cgi/rum? | 104.16.12.194 | 204 No Content | 0 B |
URL HTTP/2cf.securepagenow.com/cdn-cgi/rum? IP104.16.12.194:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 4724
Origin: https://cf.securepagenow.com
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=tG6IcKVk3zt2z7Uxgp7eAxRllEflEanfa32ubrNOjac-1669380291-0-AUbQ8A2NOS2le81qIAfDtZBRuDxQlwrxSdS+J9o8BVboZI1ew0+s8M26Eml+h2Qky5HPxUcauhrENSe0hvUWelK3xLTCCtXEJa1ju/0fZmaI; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTU5NjUzODI=:visited=true; cf:visitor_id=07157873-6fbe-459c-8e72-1eb545e5c94a; addevent_track_cookie=541b6221-d808-4a24-1868-fad4bae97f9c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 25 Nov 2022 12:44:52 GMT
access-control-allow-origin: https://cf.securepagenow.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 76fa7a6e8c820afe-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| www.clickfunnels.com/images/closemodal.png | 172.64.148.75 | 301 Moved Permanently | 672 B |
URL HTTP/2www.clickfunnels.com/images/closemodal.png IP172.64.148.75:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash19754ed4d508cf576c80cf36e0db8c50 f459beac714e5be68aa75349fa806a5642af456a 5216f197f782f4bb872e02a677986af90a488015910f8d3864b796ad68dbd389
GET /images/closemodal.png HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Cookie: __cf_bm=OwPsB4NHrijKmoFREWdLZsDsAC9.O_HjUMuk1qS1R8s-1669380292-0-AfR/M7vBSghbHu/7l+hZ6pW8vYv+RiyJSdz2cEnH72YSu5ZxeIlCtv1TSPpUn6rgDV50MD2/pWnbD49CMZKvnzcdHRdP22t3w/sdY0W29YKf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Fri, 25 Nov 2022 12:44:52 GMT
location: https://classic.clickfunnels.com/images/closemodal.png
cache-control: max-age=3600
expires: Fri, 25 Nov 2022 13:44:52 GMT
set-cookie: __cf_bm=EP1Gl_v0ffzE._3yFFS54PhS_3SXZznLrkdPObz8Tt4-1669380292-0-AYHvw2BDZKT7hoca0fC7u/fXx3L0aqETiuJyF52u5Y0J6xI59MQ1597rvvLp4aXzp/1g+TlutFZVj5L16WngEbQ=; path=/; expires=Fri, 25-Nov-22 13:14:52 GMT; domain=.www.clickfunnels.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fa7a6df938fac4-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hashdee7776e25be18cf4ec77107b18b33a6 3669d29f23ebf5f645b922850d96daf9051e5fab 778b1b717ad09a12d9b6b3caf19bebaf7f832d5638e6ee93ec878f44fd1fe5d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5911
Cache-Control: max-age=121735
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:53 GMT
Etag: "637fda35-118"
Expires: Sat, 26 Nov 2022 22:33:48 GMT
Last-Modified: Thu, 24 Nov 2022 20:55:17 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
|
|
| pixabay.com/get/g99d683ef756e2962c9c857667df9e5c750f72b01e41dab7e8b677a944d080bc64b5f016196034b0281ceb3170344ec40_640.png | 172.64.150.12 | 400 Bad Request | 14 kB |
URL HTTP/2pixabay.com/get/g99d683ef756e2962c9c857667df9e5c750f72b01e41dab7e8b677a944d080bc64b5f016196034b0281ceb3170344ec40_640.png IP172.64.150.12:0
Hasha237cf3f2a02b49132e4b37502cb23b5 8e1e264ef98bc2f2146cb818bdd2b9afbb7f7aef ef10b34f0b38a4a5bcac058d822ec070222ec8ef0d5f123f2fb4025e0e3d5e21
GET /get/g99d683ef756e2962c9c857667df9e5c750f72b01e41dab7e8b677a944d080bc64b5f016196034b0281ceb3170344ec40_640.png HTTP/1.1
Host: pixabay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Fri, 25 Nov 2022 12:44:53 GMT
content-type: text/html; charset=utf-8
cf-ray: 76fa7a6e2ed3b518-OSL
access-control-allow-origin: *
cache-control: s-max-age=3600
content-language: en
vary: Cookie, Accept-Language, Accept-Encoding
cf-cache-status: MISS
access-control-allow-methods: GET, POST, HEAD
content-security-policy: frame-ancestors none
x-frame-options: DENY
set-cookie: __cf_bm=2f.PMETHUcOCzjYdkQx2tlwO0gVQlGnfne0ynA_YPvk-1669380293-0-AbW3XAuNtnbrYn3I+2pn74tAUiaS71mrTeQPEjOK4zMmfnk3ZJZBsVW+8Ftta3Kpvtvv4VEMLhJ31gAvLplGYSg=; path=/; expires=Fri, 25-Nov-22 13:14:53 GMT; domain=.pixabay.com; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/hosted/images/c7/fdc9b2e3df4921bb4387bd33b61b52/National_Football_League_logo.svg.png | 104.16.12.194 | 200 OK | 34 kB |
URL HTTP/2cf.securepagenow.com/hosted/images/c7/fdc9b2e3df4921bb4387bd33b61b52/National_Football_League_logo.svg.png IP104.16.12.194:0
File typePNG image data, 1200 x 1649, 8-bit colormap, non-interlaced\012- data Hashf3dbc9baab6462d5d0942d97f86eed6c 9b00474da25e57a5f6873940fefb41ec5d89e959 0f045c39edbcfca0ba9231cd9078f29ca3b647771b80f4dc86f41cc07c7568ce
GET /hosted/images/c7/fdc9b2e3df4921bb4387bd33b61b52/National_Football_League_logo.svg.png HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=tG6IcKVk3zt2z7Uxgp7eAxRllEflEanfa32ubrNOjac-1669380291-0-AUbQ8A2NOS2le81qIAfDtZBRuDxQlwrxSdS+J9o8BVboZI1ew0+s8M26Eml+h2Qky5HPxUcauhrENSe0hvUWelK3xLTCCtXEJa1ju/0fZmaI; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTU5NjUzODI=:visited=true; cf:visitor_id=07157873-6fbe-459c-8e72-1eb545e5c94a; addevent_track_cookie=541b6221-d808-4a24-1868-fad4bae97f9c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
content-type: image/png
content-length: 34274
cf-ray: 76fa7a6dcb9f0afe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "f3dbc9baab6462d5d0942d97f86eed6c"
last-modified: Wed, 07 Sep 2022 09:15:33 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
|
|
| d2saw6je89goi1.cloudfront.net/uploads/digital_asset/file/1052404/nfl-icon-22.png | 143.204.42.23 | 200 OK | 6.2 kB |
URL HTTP/2d2saw6je89goi1.cloudfront.net/uploads/digital_asset/file/1052404/nfl-icon-22.png IP143.204.42.23:0
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash9a7a8591960a761cdfd0ef8d3daefe76 9cdd5399c7f9ffd837786cfec925889ff139abe2 11bceac90a7efc89ec17e237df13f2a8c8140feaf8ce7166e247f7dfb9c583e8
GET /uploads/digital_asset/file/1052404/nfl-icon-22.png HTTP/1.1
Host: d2saw6je89goi1.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 6179
date: Fri, 25 Nov 2022 12:44:54 GMT
last-modified: Thu, 25 Aug 2022 09:45:54 GMT
etag: "9a7a8591960a761cdfd0ef8d3daefe76"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: O1UGE6uQKQmKa6ZosuS0Acdqh12Xrk2Hvkqzrk-CxXy-7BtSZS48FQ==
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7627
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 12:44:53 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7627
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 12:44:53 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7627
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 12:44:53 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg | 34.120.237.76 | 200 OK | 4.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4006a9037ab5f28dca62b0aa7a704c41 74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b 556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 02:07:28 GMT
age: 38245
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg | 34.120.237.76 | 200 OK | 8.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash92c78302bcce1568eb6a5563100b932c 43d1dec7fc06879988c9c3cadd800cc8145df988 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:47:08 GMT
age: 53865
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg | 34.120.237.76 | 200 OK | 8.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8b6ee13d43732f7c764a49500d092865 5d15fd672e968d59b541e4d5d0d01cd5e69f4075 fc3623d527147e1c6aab399251ed8d527e6eefdee6ad7183f00df2613498bfe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8006
x-amzn-requestid: 78aab013-df11-464b-a1c7-ee41b7e77b40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-AHSrIAMFvKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38c-4d795f410a57fc2c21d7075d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: q53jN1uOtSdeThbk2_0UF6Rl3g4_-_TW7uK1_6Z5oDwSTSRk8XRjyQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:08 GMT
etag: "5d15fd672e968d59b541e4d5d0d01cd5e69f4075"
content-type: image/jpeg
age: 54585
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash481c033b9ffd030ff0de6e35cf788b47 85d3baad9217af2b5d75c019d2ef95dbb919a788 02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 8f679d7f-2ea5-4e47-b78d-79af59435a62
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFPHYHkAIAMFpBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637ec562-26108a785e910dc3355d58f1;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 01:14:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NKwpIdw2RZNZNh69AF5GNvunA_QfRGClvzcRP3zYwn7c8BLBlt097g==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 08:37:15 GMT
age: 14858
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasheb94ecb5881a7e49d964e4287d11e7a4 4b131a189db1b615e2519a28cad83d78297ab67f f3693e29eb7b72361093434142e3f18969c1a0b02350fab430fa29c7c127bd1a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11401
x-amzn-requestid: 3bc374eb-7d70-4b95-94a7-2ad06cae4726
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtHcmoAMFxgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-333793987245ff9e741b9aed;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K4A6bdVv0gauO3YWTEPWMS6fhuB9CZ6o5dUL-O6G5-NzqOGQRzQLUw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:30:31 GMT
age: 51262
etag: "4b131a189db1b615e2519a28cad83d78297ab67f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8784bb7a8b88736a6016f712e3183bf3 b0ddc1555d2506177adcdcea77864d75f1245d07 8e331713b0ad0b5670dd33dfdadde665e076a40ddb80905d4df89876d49803d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11743
x-amzn-requestid: 9ab0aba7-5cd1-4f6c-8984-dc221e1cbf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICD-F7joAMFqmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3b2-152ba5f1495a44447356cdab;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oWSNdsrz59sJC2znLnFqa_Zm3T14_d6j-rjzDQe4yV22Dy2Qc4Swaw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:45 GMT
age: 53408
etag: "b0ddc1555d2506177adcdcea77864d75f1245d07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2303&ck=1&ref=https://cf.securepagenow.com/optin1661179021022&ap=280&be=786&fe=1723&dc=1545&perf=%7B%22timing%22:%7B%22of%22:1669380290444,%22n%22:0,%22f%22:356,%22dn%22:361,%22dne%22:365,%22c%22:365,%22s%22:372,%22ce%22:586,%22rq%22:586,%22rp%22:742,%22rpe%22:743,%22dl%22:767,%22di%22:1513,%22ds%22:1544,%22de%22:1650,%22dc%22:1722,%22l%22:1722,%22le%22:1838%7D,%22navigation%22:%7B%7D%7D&fcp=1204&jsonp=NREUM.setToken | 162.247.241.14 | 200 OK | 72 B |
URL HTTP/1.1bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2303&ck=1&ref=https://cf.securepagenow.com/optin1661179021022&ap=280&be=786&fe=1723&dc=1545&perf=%7B%22timing%22:%7B%22of%22:1669380290444,%22n%22:0,%22f%22:356,%22dn%22:361,%22dne%22:365,%22c%22:365,%22s%22:372,%22ce%22:586,%22rq%22:586,%22rp%22:742,%22rpe%22:743,%22dl%22:767,%22di%22:1513,%22ds%22:1544,%22de%22:1650,%22dc%22:1722,%22l%22:1722,%22le%22:1838%7D,%22navigation%22:%7B%7D%7D&fcp=1204&jsonp=NREUM.setToken IP162.247.241.14:0
File typeASCII text, with no line terminators Hash107d93e382e2c9b00fbf9fb0edc65d86 77e750e3ebf9706f4f6dd253785602d70be17c6c a1ee50b689ea433a0acdccbf4ee4629e9ea3f9c4bcdd21effb334359a2f9e937
GET /1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2303&ck=1&ref=https://cf.securepagenow.com/optin1661179021022&ap=280&be=786&fe=1723&dc=1545&perf=%7B%22timing%22:%7B%22of%22:1669380290444,%22n%22:0,%22f%22:356,%22dn%22:361,%22dne%22:365,%22c%22:365,%22s%22:372,%22ce%22:586,%22rq%22:586,%22rp%22:742,%22rpe%22:743,%22dl%22:767,%22di%22:1513,%22ds%22:1544,%22de%22:1650,%22dc%22:1722,%22l%22:1722,%22le%22:1838%7D,%22navigation%22:%7B%7D%7D&fcp=1204&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 12:44:53 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 76fa7a71fd00b511-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=17a47c5f9b2bb440; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
|
|
| use.fontawesome.com/releases/v5.9.0/css/v4-shims.css | 172.64.132.15 | 200 OK | 0 B |
URL HTTP/2use.fontawesome.com/releases/v5.9.0/css/v4-shims.css IP172.64.132.15:0
GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/css
x-amz-id-2: lj0FvMnfC9mptRM/Gd0lw9lT7Zj4wo+oaxaEYLcDnZaRJXq3Oc/kbTmcEwen2MxXaG9FhyIrGnI=
x-amz-request-id: 9D38DJ2PTJVFVSCR
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2561621
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c9XziDz4e85FJ%2FCL1GpK258Tmfxz%2Fapr6LSI5TvHwL9nebHzva1p6JifW0pyHSa%2Bf3BXF68ZmbDnj8msrPVG2mPo%2FEeJ426SpZXhZr%2FvbvBvsYU4UN8%2Bp%2Fx8GH5mmHU7AXcx0clm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fa7a69893b88a3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| app.clickfunnels.com/userevents/?funnel_id=b2VEYmQ4Z05lZmZuSVUyU1dhUWRQdz09LS0rV0xLTXJibnB4QUF0bEs5QkxJRHFRPT0%3D--2fd152a9e11cf9d286f3335607c21c5478d74fa1&page_id=ZklRbjhqYytuaDdPQjZKUnIyMUFzUT09LS1GYkI4Znowd1N5dS9HY0ZmNVgydUZRPT0%3D--9f77bf566a5c3df7e35b2a91a97646dd811a8cfd&funnel_step_id=OVRvTldDWm5QTVFxL0lwU0Q5bjhvZz09LS1wTDJJN0NSZ3NvaVd2Vm11T1ZHOWR3PT0%3D--aecc3ef233d96754b4684a0494514a71bfbecf47&user_id=K3U3T1ZUOW1zdlZFY3BvQ0VaYXNzQT09LS02ZER3VWFMWkkrbDl5V2JxN3JPNzBBPT0%3D--f4542d25b3f3f4d3861c6ef98c4e4a6d7a377063&account_id=MHFjajhYMCtSM2dTbjNGcWUzT1hCdz09LS1CMVowY1NLajB6TlAxVlFnRlRWS1JBPT0%3D--a88fad27df390c05dacf7fa5dcfecb3ba8d09637&page_code=NTU5NjUzODI%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniqueVisitorsCreatedSummary&nonce=7410c6d9-61a2-4280-b873-a0a99c871e34&url=https%3A%2F%2Fcf.securepagenow.com%2Foptin1661179021022 | 104.16.15.194 | 202 Accepted | 0 B |
URL HTTP/2app.clickfunnels.com/userevents/?funnel_id=b2VEYmQ4Z05lZmZuSVUyU1dhUWRQdz09LS0rV0xLTXJibnB4QUF0bEs5QkxJRHFRPT0%3D--2fd152a9e11cf9d286f3335607c21c5478d74fa1&page_id=ZklRbjhqYytuaDdPQjZKUnIyMUFzUT09LS1GYkI4Znowd1N5dS9HY0ZmNVgydUZRPT0%3D--9f77bf566a5c3df7e35b2a91a97646dd811a8cfd&funnel_step_id=OVRvTldDWm5QTVFxL0lwU0Q5bjhvZz09LS1wTDJJN0NSZ3NvaVd2Vm11T1ZHOWR3PT0%3D--aecc3ef233d96754b4684a0494514a71bfbecf47&user_id=K3U3T1ZUOW1zdlZFY3BvQ0VaYXNzQT09LS02ZER3VWFMWkkrbDl5V2JxN3JPNzBBPT0%3D--f4542d25b3f3f4d3861c6ef98c4e4a6d7a377063&account_id=MHFjajhYMCtSM2dTbjNGcWUzT1hCdz09LS1CMVowY1NLajB6TlAxVlFnRlRWS1JBPT0%3D--a88fad27df390c05dacf7fa5dcfecb3ba8d09637&page_code=NTU5NjUzODI%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniqueVisitorsCreatedSummary&nonce=7410c6d9-61a2-4280-b873-a0a99c871e34&url=https%3A%2F%2Fcf.securepagenow.com%2Foptin1661179021022 IP104.16.15.194:0
GET /userevents/?funnel_id=b2VEYmQ4Z05lZmZuSVUyU1dhUWRQdz09LS0rV0xLTXJibnB4QUF0bEs5QkxJRHFRPT0%3D--2fd152a9e11cf9d286f3335607c21c5478d74fa1&page_id=ZklRbjhqYytuaDdPQjZKUnIyMUFzUT09LS1GYkI4Znowd1N5dS9HY0ZmNVgydUZRPT0%3D--9f77bf566a5c3df7e35b2a91a97646dd811a8cfd&funnel_step_id=OVRvTldDWm5QTVFxL0lwU0Q5bjhvZz09LS1wTDJJN0NSZ3NvaVd2Vm11T1ZHOWR3PT0%3D--aecc3ef233d96754b4684a0494514a71bfbecf47&user_id=K3U3T1ZUOW1zdlZFY3BvQ0VaYXNzQT09LS02ZER3VWFMWkkrbDl5V2JxN3JPNzBBPT0%3D--f4542d25b3f3f4d3861c6ef98c4e4a6d7a377063&account_id=MHFjajhYMCtSM2dTbjNGcWUzT1hCdz09LS1CMVowY1NLajB6TlAxVlFnRlRWS1JBPT0%3D--a88fad27df390c05dacf7fa5dcfecb3ba8d09637&page_code=NTU5NjUzODI%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniqueVisitorsCreatedSummary&nonce=7410c6d9-61a2-4280-b873-a0a99c871e34&url=https%3A%2F%2Fcf.securepagenow.com%2Foptin1661179021022 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cf.securepagenow.com
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/html
cf-ray: 76fa7a6cd91c0b31-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 99d26fbdb762474db2d4bbe9cefd2b02
x-runtime: 0.029897
set-cookie: __cf_bm=3nRVfh9SXWnqdiCo2IrAmOC.3tQOuCfSxYmCIo4iR1E-1669380292-0-AdapT03E98XgqdDVuOKcmLcTCLwxW9qlz25pYSxUyTJjg9YNUIvsltpK2PTxjJYxvG/8rT40/eeqbAXGEBtgpUVbeNJJuZ6u6rNzKUQ0IdkG; path=/; expires=Fri, 25-Nov-22 13:14:52 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
|
|
| app.clickfunnels.com/userevents/?funnel_id=b2VEYmQ4Z05lZmZuSVUyU1dhUWRQdz09LS0rV0xLTXJibnB4QUF0bEs5QkxJRHFRPT0%3D--2fd152a9e11cf9d286f3335607c21c5478d74fa1&page_id=ZklRbjhqYytuaDdPQjZKUnIyMUFzUT09LS1GYkI4Znowd1N5dS9HY0ZmNVgydUZRPT0%3D--9f77bf566a5c3df7e35b2a91a97646dd811a8cfd&funnel_step_id=OVRvTldDWm5QTVFxL0lwU0Q5bjhvZz09LS1wTDJJN0NSZ3NvaVd2Vm11T1ZHOWR3PT0%3D--aecc3ef233d96754b4684a0494514a71bfbecf47&user_id=K3U3T1ZUOW1zdlZFY3BvQ0VaYXNzQT09LS02ZER3VWFMWkkrbDl5V2JxN3JPNzBBPT0%3D--f4542d25b3f3f4d3861c6ef98c4e4a6d7a377063&account_id=MHFjajhYMCtSM2dTbjNGcWUzT1hCdz09LS1CMVowY1NLajB6TlAxVlFnRlRWS1JBPT0%3D--a88fad27df390c05dacf7fa5dcfecb3ba8d09637&page_code=NTU5NjUzODI%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniquePageviewsCreatedSummary&nonce=6d1f7391-e866-44f2-bdd8-086ee1310faf&url=https%3A%2F%2Fcf.securepagenow.com%2Foptin1661179021022 | 104.16.15.194 | 202 Accepted | 0 B |
URL HTTP/2app.clickfunnels.com/userevents/?funnel_id=b2VEYmQ4Z05lZmZuSVUyU1dhUWRQdz09LS0rV0xLTXJibnB4QUF0bEs5QkxJRHFRPT0%3D--2fd152a9e11cf9d286f3335607c21c5478d74fa1&page_id=ZklRbjhqYytuaDdPQjZKUnIyMUFzUT09LS1GYkI4Znowd1N5dS9HY0ZmNVgydUZRPT0%3D--9f77bf566a5c3df7e35b2a91a97646dd811a8cfd&funnel_step_id=OVRvTldDWm5QTVFxL0lwU0Q5bjhvZz09LS1wTDJJN0NSZ3NvaVd2Vm11T1ZHOWR3PT0%3D--aecc3ef233d96754b4684a0494514a71bfbecf47&user_id=K3U3T1ZUOW1zdlZFY3BvQ0VaYXNzQT09LS02ZER3VWFMWkkrbDl5V2JxN3JPNzBBPT0%3D--f4542d25b3f3f4d3861c6ef98c4e4a6d7a377063&account_id=MHFjajhYMCtSM2dTbjNGcWUzT1hCdz09LS1CMVowY1NLajB6TlAxVlFnRlRWS1JBPT0%3D--a88fad27df390c05dacf7fa5dcfecb3ba8d09637&page_code=NTU5NjUzODI%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniquePageviewsCreatedSummary&nonce=6d1f7391-e866-44f2-bdd8-086ee1310faf&url=https%3A%2F%2Fcf.securepagenow.com%2Foptin1661179021022 IP104.16.15.194:0
GET /userevents/?funnel_id=b2VEYmQ4Z05lZmZuSVUyU1dhUWRQdz09LS0rV0xLTXJibnB4QUF0bEs5QkxJRHFRPT0%3D--2fd152a9e11cf9d286f3335607c21c5478d74fa1&page_id=ZklRbjhqYytuaDdPQjZKUnIyMUFzUT09LS1GYkI4Znowd1N5dS9HY0ZmNVgydUZRPT0%3D--9f77bf566a5c3df7e35b2a91a97646dd811a8cfd&funnel_step_id=OVRvTldDWm5QTVFxL0lwU0Q5bjhvZz09LS1wTDJJN0NSZ3NvaVd2Vm11T1ZHOWR3PT0%3D--aecc3ef233d96754b4684a0494514a71bfbecf47&user_id=K3U3T1ZUOW1zdlZFY3BvQ0VaYXNzQT09LS02ZER3VWFMWkkrbDl5V2JxN3JPNzBBPT0%3D--f4542d25b3f3f4d3861c6ef98c4e4a6d7a377063&account_id=MHFjajhYMCtSM2dTbjNGcWUzT1hCdz09LS1CMVowY1NLajB6TlAxVlFnRlRWS1JBPT0%3D--a88fad27df390c05dacf7fa5dcfecb3ba8d09637&page_code=NTU5NjUzODI%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniquePageviewsCreatedSummary&nonce=6d1f7391-e866-44f2-bdd8-086ee1310faf&url=https%3A%2F%2Fcf.securepagenow.com%2Foptin1661179021022 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cf.securepagenow.com
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/html
cf-ray: 76fa7a6cd91d0b31-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 899fab3b993a43390e521018f17ee0aa
x-runtime: 0.040680
set-cookie: __cf_bm=jSEJltonpOkb3ynNfkdPyq9F1.hZWoNGwmOOgewTadA-1669380292-0-ATP5rUkBL0sLxjYPdEhNo7BIUrQHzPtQrenuNVAQStNAeOie1DAA3L6gEjowXWXjAwnf6SHsMlfqCuTfNtHSEt4ReK38a/1ujMyBiG+/w5VF; path=/; expires=Fri, 25-Nov-22 13:14:52 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/assets/userevents/application.js | 104.16.12.194 | 200 OK | 0 B |
URL HTTP/2cf.securepagenow.com/assets/userevents/application.js IP104.16.12.194:0
GET /assets/userevents/application.js HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=tG6IcKVk3zt2z7Uxgp7eAxRllEflEanfa32ubrNOjac-1669380291-0-AUbQ8A2NOS2le81qIAfDtZBRuDxQlwrxSdS+J9o8BVboZI1ew0+s8M26Eml+h2Qky5HPxUcauhrENSe0hvUWelK3xLTCCtXEJa1ju/0fZmaI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: application/x-javascript
cf-ray: 76fa7a68ed4f0afe-OSL
access-control-allow-origin: *
age: 901
cache-control: public, max-age=1200
etag: W/"637bf173-147c"
expires: Fri, 25 Nov 2022 13:04:52 GMT
last-modified: Mon, 21 Nov 2022 21:45:23 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| app.clickfunnels.com/userevents/?funnel_id=b2VEYmQ4Z05lZmZuSVUyU1dhUWRQdz09LS0rV0xLTXJibnB4QUF0bEs5QkxJRHFRPT0%3D--2fd152a9e11cf9d286f3335607c21c5478d74fa1&page_id=ZklRbjhqYytuaDdPQjZKUnIyMUFzUT09LS1GYkI4Znowd1N5dS9HY0ZmNVgydUZRPT0%3D--9f77bf566a5c3df7e35b2a91a97646dd811a8cfd&funnel_step_id=OVRvTldDWm5QTVFxL0lwU0Q5bjhvZz09LS1wTDJJN0NSZ3NvaVd2Vm11T1ZHOWR3PT0%3D--aecc3ef233d96754b4684a0494514a71bfbecf47&user_id=K3U3T1ZUOW1zdlZFY3BvQ0VaYXNzQT09LS02ZER3VWFMWkkrbDl5V2JxN3JPNzBBPT0%3D--f4542d25b3f3f4d3861c6ef98c4e4a6d7a377063&account_id=MHFjajhYMCtSM2dTbjNGcWUzT1hCdz09LS1CMVowY1NLajB6TlAxVlFnRlRWS1JBPT0%3D--a88fad27df390c05dacf7fa5dcfecb3ba8d09637&page_code=NTU5NjUzODI%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::PageviewsCreatedSummary&nonce=aea432e0-35c9-4f48-9575-a765dda0d4af&url=https%3A%2F%2Fcf.securepagenow.com%2Foptin1661179021022 | 104.16.15.194 | 202 Accepted | 0 B |
URL HTTP/2app.clickfunnels.com/userevents/?funnel_id=b2VEYmQ4Z05lZmZuSVUyU1dhUWRQdz09LS0rV0xLTXJibnB4QUF0bEs5QkxJRHFRPT0%3D--2fd152a9e11cf9d286f3335607c21c5478d74fa1&page_id=ZklRbjhqYytuaDdPQjZKUnIyMUFzUT09LS1GYkI4Znowd1N5dS9HY0ZmNVgydUZRPT0%3D--9f77bf566a5c3df7e35b2a91a97646dd811a8cfd&funnel_step_id=OVRvTldDWm5QTVFxL0lwU0Q5bjhvZz09LS1wTDJJN0NSZ3NvaVd2Vm11T1ZHOWR3PT0%3D--aecc3ef233d96754b4684a0494514a71bfbecf47&user_id=K3U3T1ZUOW1zdlZFY3BvQ0VaYXNzQT09LS02ZER3VWFMWkkrbDl5V2JxN3JPNzBBPT0%3D--f4542d25b3f3f4d3861c6ef98c4e4a6d7a377063&account_id=MHFjajhYMCtSM2dTbjNGcWUzT1hCdz09LS1CMVowY1NLajB6TlAxVlFnRlRWS1JBPT0%3D--a88fad27df390c05dacf7fa5dcfecb3ba8d09637&page_code=NTU5NjUzODI%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::PageviewsCreatedSummary&nonce=aea432e0-35c9-4f48-9575-a765dda0d4af&url=https%3A%2F%2Fcf.securepagenow.com%2Foptin1661179021022 IP104.16.15.194:0
GET /userevents/?funnel_id=b2VEYmQ4Z05lZmZuSVUyU1dhUWRQdz09LS0rV0xLTXJibnB4QUF0bEs5QkxJRHFRPT0%3D--2fd152a9e11cf9d286f3335607c21c5478d74fa1&page_id=ZklRbjhqYytuaDdPQjZKUnIyMUFzUT09LS1GYkI4Znowd1N5dS9HY0ZmNVgydUZRPT0%3D--9f77bf566a5c3df7e35b2a91a97646dd811a8cfd&funnel_step_id=OVRvTldDWm5QTVFxL0lwU0Q5bjhvZz09LS1wTDJJN0NSZ3NvaVd2Vm11T1ZHOWR3PT0%3D--aecc3ef233d96754b4684a0494514a71bfbecf47&user_id=K3U3T1ZUOW1zdlZFY3BvQ0VaYXNzQT09LS02ZER3VWFMWkkrbDl5V2JxN3JPNzBBPT0%3D--f4542d25b3f3f4d3861c6ef98c4e4a6d7a377063&account_id=MHFjajhYMCtSM2dTbjNGcWUzT1hCdz09LS1CMVowY1NLajB6TlAxVlFnRlRWS1JBPT0%3D--a88fad27df390c05dacf7fa5dcfecb3ba8d09637&page_code=NTU5NjUzODI%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::PageviewsCreatedSummary&nonce=aea432e0-35c9-4f48-9575-a765dda0d4af&url=https%3A%2F%2Fcf.securepagenow.com%2Foptin1661179021022 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cf.securepagenow.com
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/html
cf-ray: 76fa7a6cd9190b31-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: ee67e8fd82958b626a77eea9c108db84
x-runtime: 0.030691
set-cookie: __cf_bm=bkD4hx6oORU_k13s5SFZ2wmPKZo359UynVMB9eF1poE-1669380292-0-AQccGk2qSoHFjfmSGyXMcV0yPhPs41DJNjTB3FRYiVqr5xMPosfnyT7rT8YNvcBWRsh1TkdDdDAZ2rNXW/naFYEbRY5ukXuVT6UaimHwKW+o; path=/; expires=Fri, 25-Nov-22 13:14:52 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/images/background.png?_unique=0.3739380635952865&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//cf.securepagenow.com/optin1661179021022&_title=LiveSports&_key=6ohuq6tr&_page_key=pxgyo07ep10mh65u&_fid=12367850&_fspos=1&_fvrs=1&_funnel_stat=1&_location=https://cf.securepagenow.com/optin1661179021022&_referrer= | 104.16.12.194 | 200 OK | 0 B |
URL HTTP/2cf.securepagenow.com/images/background.png?_unique=0.3739380635952865&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//cf.securepagenow.com/optin1661179021022&_title=LiveSports&_key=6ohuq6tr&_page_key=pxgyo07ep10mh65u&_fid=12367850&_fspos=1&_fvrs=1&_funnel_stat=1&_location=https://cf.securepagenow.com/optin1661179021022&_referrer= IP104.16.12.194:0
GET /images/background.png?_unique=0.3739380635952865&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//cf.securepagenow.com/optin1661179021022&_title=LiveSports&_key=6ohuq6tr&_page_key=pxgyo07ep10mh65u&_fid=12367850&_fspos=1&_fvrs=1&_funnel_stat=1&_location=https://cf.securepagenow.com/optin1661179021022&_referrer= HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=tG6IcKVk3zt2z7Uxgp7eAxRllEflEanfa32ubrNOjac-1669380291-0-AUbQ8A2NOS2le81qIAfDtZBRuDxQlwrxSdS+J9o8BVboZI1ew0+s8M26Eml+h2Qky5HPxUcauhrENSe0hvUWelK3xLTCCtXEJa1ju/0fZmaI; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTU5NjUzODI=:visited=true; cf:visitor_id=07157873-6fbe-459c-8e72-1eb545e5c94a; addevent_track_cookie=541b6221-d808-4a24-1868-fad4bae97f9c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 76fa7a6ddbb30afe-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store, private
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
status: 200 OK
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: a180a7b271909717bdf15b895b53261f
x-runtime: 0.018545
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/assets/pushcrew.js | 104.16.12.194 | 200 OK | 0 B |
URL HTTP/2cf.securepagenow.com/assets/pushcrew.js IP104.16.12.194:0
GET /assets/pushcrew.js HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=tG6IcKVk3zt2z7Uxgp7eAxRllEflEanfa32ubrNOjac-1669380291-0-AUbQ8A2NOS2le81qIAfDtZBRuDxQlwrxSdS+J9o8BVboZI1ew0+s8M26Eml+h2Qky5HPxUcauhrENSe0hvUWelK3xLTCCtXEJa1ju/0fZmaI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: application/x-javascript
cf-ray: 76fa7a68ed550afe-OSL
access-control-allow-origin: *
age: 32
cache-control: public, max-age=1200
etag: W/"637bf172-27d"
expires: Fri, 25 Nov 2022 13:04:52 GMT
last-modified: Mon, 21 Nov 2022 21:45:22 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 | 104.16.56.101 | 200 OK | 0 B |
URL HTTP/2static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP104.16.56.101:0
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cf.securepagenow.com
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fa7a6939650b65-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 IP142.250.74.10:0
GET /css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 12:44:52 GMT
date: Fri, 25 Nov 2022 12:44:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.9.0/css/all.css | 172.64.132.15 | 200 OK | 0 B |
URL HTTP/2use.fontawesome.com/releases/v5.9.0/css/all.css IP172.64.132.15:0
GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/css
x-amz-id-2: aTwuyWgaPvMb6JWlB6xk6ko4jaJeYcep7GkUNwiiQ54PacIiib0YpvXLB8kuH9wuaqemxGQSQA4=
x-amz-request-id: PSJN9FGRVEEQCVY1
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2144174
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nxZ5ecoL3vSlD8xHjyQYVN8nAboiWpbrCt6QYJ7HT%2BAB5pf3xuA%2BLH5BijLBzPt5QJUURPrHOu%2B9p1p08rCchXPOsdm%2BcVaFexXn8yRYTNtj%2B4PofHH7H%2B1QdtJZXc4trIMG6jzy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fa7a69894388a3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/optin1661179021022 | 104.16.12.194 | 200 OK | 0 B |
URL HTTP/2cf.securepagenow.com/optin1661179021022 IP104.16.12.194:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /optin1661179021022 HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:51 GMT
content-type: text/html; charset=utf-8
cf-ray: 76fa7a669ab10afe-OSL
access-control-allow-origin: *
cache-control: max-age=60, public, s-maxage=600, r-maxage=10
last-modified: Wed, 07 Sep 2022 09:15:38 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: eacc0eb2fc971551d6cfddde29331c381220ec39
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: fresh
x-request-id: 21d5c643fe4271c3cb83b5136178a512
x-runtime: 0.274348
set-cookie: __cf_bm=tG6IcKVk3zt2z7Uxgp7eAxRllEflEanfa32ubrNOjac-1669380291-0-AUbQ8A2NOS2le81qIAfDtZBRuDxQlwrxSdS+J9o8BVboZI1ew0+s8M26Eml+h2Qky5HPxUcauhrENSe0hvUWelK3xLTCCtXEJa1ju/0fZmaI; path=/; expires=Fri, 25-Nov-22 13:14:51 GMT; domain=.cf.securepagenow.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/assets/lander.js | 104.16.12.194 | 200 OK | 0 B |
URL HTTP/2cf.securepagenow.com/assets/lander.js IP104.16.12.194:0
GET /assets/lander.js HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=tG6IcKVk3zt2z7Uxgp7eAxRllEflEanfa32ubrNOjac-1669380291-0-AUbQ8A2NOS2le81qIAfDtZBRuDxQlwrxSdS+J9o8BVboZI1ew0+s8M26Eml+h2Qky5HPxUcauhrENSe0hvUWelK3xLTCCtXEJa1ju/0fZmaI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: application/x-javascript
cf-ray: 76fa7a68ed520afe-OSL
access-control-allow-origin: *
age: 369
cache-control: public, max-age=1200
etag: W/"637bf1b5-2391a3"
expires: Fri, 25 Nov 2022 13:04:52 GMT
last-modified: Mon, 21 Nov 2022 21:46:29 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| app.clickfunnels.com/mailcheck.min.js | 104.16.15.194 | 200 OK | 0 B |
URL HTTP/2app.clickfunnels.com/mailcheck.min.js IP104.16.15.194:0
GET /mailcheck.min.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: application/x-javascript
cf-ray: 76fa7a696920b4eb-OSL
access-control-allow-origin: *
age: 460
etag: W/"637bf173-a8d"
last-modified: Mon, 21 Nov 2022 21:45:23 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=OwPsB4NHrijKmoFREWdLZsDsAC9.O_HjUMuk1qS1R8s-1669380292-0-AfR/M7vBSghbHu/7l+hZ6pW8vYv+RiyJSdz2cEnH72YSu5ZxeIlCtv1TSPpUn6rgDV50MD2/pWnbD49CMZKvnzcdHRdP22t3w/sdY0W29YKf; path=/; expires=Fri, 25-Nov-22 13:14:52 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/vendor.js | 104.16.12.194 | 200 OK | 0 B |
URL HTTP/2cf.securepagenow.com/vendor.js IP104.16.12.194:0
GET /vendor.js HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=tG6IcKVk3zt2z7Uxgp7eAxRllEflEanfa32ubrNOjac-1669380291-0-AUbQ8A2NOS2le81qIAfDtZBRuDxQlwrxSdS+J9o8BVboZI1ew0+s8M26Eml+h2Qky5HPxUcauhrENSe0hvUWelK3xLTCCtXEJa1ju/0fZmaI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: application/javascript
cf-ray: 76fa7a6c69930afe-OSL
access-control-allow-origin: *
cache-control: max-age=900, public
etag: W/"7422e50efbaea439fda7ef3b0eb54ee1"
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: 581e49c9b7bdd06dab54c00931f4256b223e620e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: fresh
x-request-id: 851302a7010c4321972de94e9b510635
x-runtime: 0.017497
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|