Overview

URL w1.msssnv.com/prod/29d0f711-ba61-47b2-9e4e-724558c80b4b/eeb1999f-2d42-490c-8365-01e765af2d04
IP34.204.222.45
ASNAMAZON-AES
Location United States
Report completed2022-09-12 22:53:28 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-12 2 w1.msssnv.com/prod/29d0f711-ba61-47b2-9e4e-724558c80b4b/eeb1999f-2d42-490c- (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (46)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-12 05:49:45 UTC 216.239.32.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS js.hscollectedforms.net (1) 5697 2017-03-02 10:33:31 UTC 2022-09-12 08:39:44 UTC 104.17.131.171
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-09-12 04:51:47 UTC 23.33.119.27
mnemonic passive DNS use.fontawesome.com (2) 942 2017-01-30 04:43:25 UTC 2022-09-12 04:57:45 UTC 172.67.169.247
mnemonic passive DNS js-agent.newrelic.com (1) 378 2017-01-30 05:00:15 UTC 2022-09-12 05:15:47 UTC 151.101.86.137
mnemonic passive DNS js.hs-scripts.com (1) 2571 2016-08-09 10:18:36 UTC 2022-09-12 06:56:07 UTC 104.17.214.204
mnemonic passive DNS px.ads.linkedin.com (2) 522 2017-08-08 16:28:50 UTC 2022-09-12 13:43:22 UTC 13.107.42.14
mnemonic passive DNS js.hs-banner.com (1) 2426 2020-03-26 17:45:21 UTC 2022-09-12 06:56:08 UTC 172.64.154.85
mnemonic passive DNS img-getpocket.cdn.mozilla.net (5) 1631 2017-09-01 03:40:57 UTC 2022-09-12 12:46:20 UTC 34.120.237.76
mnemonic passive DNS www.10xiv.com (1) 0 2021-11-19 17:12:17 UTC 2022-08-29 22:58:30 UTC 104.16.16.194 Unknown ranking
mnemonic passive DNS forms.hsforms.com (2) 5160 2018-03-07 15:21:13 UTC 2022-09-12 08:39:45 UTC 104.16.86.5
mnemonic passive DNS ocsp.sca1b.amazontrust.com (5) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.118
mnemonic passive DNS app.clickfunnels.com (4) 34727 2015-03-12 08:40:23 UTC 2022-09-12 10:45:15 UTC 104.16.16.194
mnemonic passive DNS js.hsleadflows.net (1) 4609 2017-02-22 10:43:00 UTC 2022-09-12 06:56:08 UTC 104.17.233.204
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-12 05:38:13 UTC 143.204.55.35
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-12 04:53:23 UTC 34.117.237.239
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-12 06:04:57 UTC 35.155.157.101
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-12 04:51:48 UTC 142.251.1.155
mnemonic passive DNS api.hubapi.com (1) 4102 2013-06-05 22:03:49 UTC 2022-09-12 09:56:12 UTC 104.17.200.204
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-12 22:27:22 UTC 142.250.74.3
mnemonic passive DNS embedwistia-a.akamaihd.net (2) 8967 2015-09-29 16:24:07 UTC 2022-09-12 08:54:34 UTC 2.22.244.88
mnemonic passive DNS pipedream.wistia.com (6) 6958 2017-01-30 04:30:40 UTC 2022-09-12 05:58:30 UTC 52.44.213.33
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-12 17:57:11 UTC 143.204.55.36
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-12 04:57:45 UTC 142.250.74.72
mnemonic passive DNS www.upwvirtual.com (1) 0 2020-06-15 19:58:33 UTC 2022-07-23 11:16:20 UTC 104.16.14.194 Domain (upwvirtual.com) ranked at: 60129
mnemonic passive DNS fast.wistia.com (13) 5153 2012-07-04 00:34:57 UTC 2022-09-12 05:58:28 UTC 151.101.86.110
mnemonic passive DNS js.hsforms.net (1) 7264 2013-09-26 02:52:40 UTC 2022-09-12 06:53:40 UTC 104.17.183.73
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-09-12 04:51:32 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS embed-ssl.wistia.com (16) 22795 2017-01-29 17:01:09 UTC 2022-09-12 06:28:49 UTC 151.101.86.133
mnemonic passive DNS js.hs-analytics.net (1) 2411 2013-09-26 02:22:44 UTC 2022-09-12 06:56:08 UTC 104.17.71.176
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-09-12 14:32:52 UTC 172.217.21.162
mnemonic passive DNS www.linkedin.com (1) 608 2014-04-09 13:16:08 UTC 2022-09-12 05:45:06 UTC 13.107.42.14
mnemonic passive DNS forms.hubspot.com (1) 3593 2014-03-21 07:12:37 UTC 2022-09-12 08:39:45 UTC 104.19.155.83
mnemonic passive DNS fonts.googleapis.com (3) 8877 2014-07-21 13:19:55 UTC 2022-09-12 17:48:33 UTC 142.250.74.10
mnemonic passive DNS fast.wistia.net (38) 8009 2013-01-09 23:10:46 UTC 2022-09-12 06:17:58 UTC 151.101.86.110
mnemonic passive DNS static.cloudflareinsights.com (1) 1294 2019-09-24 14:34:56 UTC 2022-09-12 07:05:51 UTC 104.18.47.230
mnemonic passive DNS snap.licdn.com (1) 1044 2014-10-06 08:43:45 UTC 2022-09-12 04:56:38 UTC 2.22.244.73
mnemonic passive DNS js.hsadspixel.net (1) 3795 2017-07-25 13:13:14 UTC 2022-09-12 08:39:44 UTC 104.17.116.176
mnemonic passive DNS w1.msssnv.com (1) 0 2022-06-22 16:27:10 UTC 2022-09-12 13:18:41 UTC 34.204.222.45 Unknown ranking
mnemonic passive DNS 10x.cardoneventures.com (22) 0 2022-01-07 22:36:32 UTC 2022-08-30 12:20:15 UTC 104.16.12.194 Unknown ranking
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-12 12:16:03 UTC 142.250.74.164
mnemonic passive DNS bam.nr-data.net (1) 630 2015-02-10 00:06:27 UTC 2022-09-12 05:03:26 UTC 162.247.241.14
mnemonic passive DNS distillery.wistia.com (17) 6708 2012-09-30 02:46:15 UTC 2022-09-12 06:07:23 UTC 44.197.44.53
mnemonic passive DNS www.cardoneventures.com (1) 0 2019-06-05 19:04:31 UTC 2022-09-01 08:33:41 UTC 34.253.101.190 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2022-09-12 16:45:27 UTC 93.184.220.29
mnemonic passive DNS ocsp.pki.goog (12) 175 2017-06-14 07:23:31 UTC 2022-09-12 04:51:36 UTC 142.250.74.3


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 34.204.222.45

Date UQ / IDS / BL URL IP
2022-09-28 04:45:13 +0000
0 - 0 - 1 w1.mssprr.com/prod/689e3b8a-29b9-48a4-966f-10 (...) 34.204.222.45
2022-09-28 04:00:09 +0000
0 - 0 - 1 w1.mssprr.com/prod/open/0ccd2225-477b-4dce-8c (...) 34.204.222.45
2022-09-28 04:00:08 +0000
0 - 0 - 1 w1.mssprr.com/prod/unsubscribe-confirm/131100 (...) 34.204.222.45
2022-09-28 01:04:52 +0000
0 - 0 - 1 w1.mssxhb.com/prod/e56683ce-fb04-41d6-9018-19 (...) 34.204.222.45
2022-09-26 15:00:51 +0000
0 - 0 - 1 w1.msstmc.com/prod/unsubscribe-confirm/fc1cf8 (...) 34.204.222.45

Last 5 reports on ASN: AMAZON-AES

Date UQ / IDS / BL URL IP
2022-12-07 02:07:15 +0000
0 - 0 - 1 separated-tranquil-syzygy.glitch.me/flink.shtml 3.216.72.21
2022-12-07 02:06:20 +0000
0 - 0 - 1 new.trlxcvit01.com/t/clk 35.170.17.128
2022-12-07 02:02:18 +0000
0 - 0 - 1 new.trlxcves01.com/t/clk 35.170.17.128
2022-12-07 01:54:57 +0000
0 - 0 - 5 primerewardz.com/go/to/72d25f/key/ba0d1027c12 (...) 54.161.23.57
2022-12-07 01:49:11 +0000
0 - 0 - 8 fmmass.org/ta/index.php?QBOT.zip 52.206.242.122

Last 5 reports on domain: msssnv.com

Date UQ / IDS / BL URL IP
2022-11-22 04:59:24 +0000
0 - 0 - 1 w1.msssnv.com/prod/c497ff60-1500-4916-9b73-fd (...) 44.198.6.24
2022-11-22 01:58:17 +0000
0 - 0 - 1 w1.msssnv.com/prod/c497ff60-1500-4916-9b73-fd (...) 44.198.6.24
2022-09-27 21:07:16 +0000
0 - 0 - 1 w1.msssnv.com/prod/unsubscribe-confirm/0f2623 (...) 3.223.208.36
2022-09-16 17:40:55 +0000
0 - 0 - 1 w1.msssnv.com/prod/53391947-c110-40ff-869d-ad (...) 34.204.222.45
2022-09-14 02:58:24 +0000
0 - 0 - 1 w1.msssnv.com/prod/158ed2e6-dd78-4830-ade3-62 (...) 34.204.222.45

Last 2 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-22 04:59:24 +0000
0 - 0 - 1 w1.msssnv.com/prod/c497ff60-1500-4916-9b73-fd (...) 44.198.6.24
2022-09-12 23:58:21 +0000
0 - 0 - 1 w1.msssnv.com/prod/2dc56081-9453-451c-b161-86 (...) 3.223.208.36


JavaScript

Executed Scripts (84)


Executed Evals (2)

#1 JavaScript::Eval (size: 20304, repeated: 1) - SHA256: 9c1ea695852f01d2fc6027d572b126b740a9c4634540fb0d39ea3656377eef77

                                        function $d(d) {
    return document.getElementById(d)
}
var proc = location.protocol;
if (proc != 'https:') {
    proc = 'http:'
}
var _image_path = proc + '//addthisevent.com/gfx/icon-calendar-t1.png';
var _ate_license = '';
var _ate_mouse = false;
var _ate_css = 'true';
var _ate_callback = '';
var _ate_dropdown = '';
var _ate_lbl_outlook = 'Outlook Calendar';
var _ate_lbl_google = 'Google Calendar';
var _ate_lbl_yahoo = 'Yahoo Calendar';
var _ate_lbl_hotmail = 'Hotmail Calendar';
var _ate_lbl_ical = 'iCal Calendar';
var _ate_lbl_fb_event = 'Facebook Event';
var _ate_show_outlook = true;
var _ate_show_google = true;
var _ate_show_yahoo = true;
var _ate_show_hotmail = true;
var _ate_show_ical = true;
var _ate_show_facebook = true;
var _d_rd = false;
var _ate_btn_found = false;
var _ate_btn_expo = false;
var addthisevent = function() {
    var D = false,
        dropzcx = 1,
        olddrop = '',
        dropmousetim, css1 = false,
        css2 = false;
    return {
        generate: function() {
            try {
                _image_path = _image_path
            } catch (e) {
                _image_path = proc + '//addthisevent.com/gfx/icon-calendar-t1.png'
            }
            try {
                _ate_license = _license
            } catch (e) {}
            try {
                _ate_mouse = _mouse
            } catch (e) {}
            try {
                _ate_css = _css
            } catch (e) {}
            var b = addthisevent.glicense(_ate_license);
            var c = document.getElementsByTagName('*');
            for (var d = 0; d < c.length; d += 1) {
                var f = '',
                    fbevent = false,
                    str = c[d].className,
                    htmx = '';
                if (addthisevent.hasclass(c[d], 'addthisevent')) {
                    var g = c[d].getElementsByTagName('span');
                    for (var m = 0; m < g.length; m += 1) {
                        if (addthisevent.hasclass(g[m], '_url')) {
                            g[m].style.display = 'none'
                        }
                        if (addthisevent.hasclass(g[m], '_start')) {
                            g[m].style.display = 'none';
                            f += '&dstart=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_end')) {
                            g[m].style.display = 'none';
                            f += '&dend=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_zonecode')) {
                            g[m].style.display = 'none';
                            f += '&dzone=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_summary')) {
                            g[m].style.display = 'none';
                            f += '&dsum=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_description')) {
                            g[m].style.display = 'none';
                            f += '&ddesc=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_location')) {
                            g[m].style.display = 'none';
                            f += '&dloca=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_organizer')) {
                            g[m].style.display = 'none';
                            f += '&dorga=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_organizer_email')) {
                            g[m].style.display = 'none';
                            f += '&dorgaem=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_attendees')) {
                            g[m].style.display = 'none';
                            f += '&datte=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_all_day_event')) {
                            g[m].style.display = 'none';
                            f += '&dallday=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_date_format')) {
                            g[m].style.display = 'none';
                            f += '&dateformat=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_alarm_reminder')) {
                            g[m].style.display = 'none';
                            f += '&alarm=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_recurring')) {
                            g[m].style.display = 'none';
                            f += '&drule=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_uid')) {
                            g[m].style.display = 'none';
                            f += '&uid=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_facebook_event')) {
                            if (g[m].innerHTML != '') {
                                g[m].style.display = 'none';
                                var h = g[m].innerHTML.replace(/ /gi, "");
                                f += '&fbevent=' + encodeURIComponent(h);
                                fbevent = true
                            }
                        }
                    }
                    if (b) {
                        f += '&credits=false'
                    }
                    f = f.replace(/'/gi, "�");
                    if (_ate_dropdown != '') {
                        _ate_dropdown = _ate_dropdown + ',';
                        _ate_dropdown = _ate_dropdown.replace(/ /gi, '');
                        var i = _ate_dropdown.split(',');
                        for (var a = 0; a < i.length; a += 1) {
                            if (_ate_show_outlook && i[a] == 'outlook') {
                                htmx += '<span class="ateoutlook" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'outlook\',\'' + f + '\');">' + _ate_lbl_outlook + '</span>'
                            }
                            if (_ate_show_google && i[a] == 'google') {
                                htmx += '<span class="ategoogle" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'google\',\'' + f + '\');">' + _ate_lbl_google + '</span>'
                            }
                            if (_ate_show_yahoo && i[a] == 'yahoo') {
                                htmx += '<span class="ateyahoo" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'yahoo\',\'' + f + '\');">' + _ate_lbl_yahoo + '</span>'
                            }
                            if (_ate_show_hotmail && i[a] == 'hotmail') {
                                htmx += '<span class="atehotmail" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'hotmail\',\'' + f + '\');">' + _ate_lbl_hotmail + '</span>'
                            }
                            if (_ate_show_ical && i[a] == 'ical') {
                                htmx += '<span class="ateical" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'ical\',\'' + f + '\');">' + _ate_lbl_ical + '</span>'
                            }
                            if (fbevent && i[a] == 'facebook') {
                                if (_ate_show_facebook && i[a] == 'facebook') {
                                    htmx += '<span class="atefacebook" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'facebook\',\'' + f + '\');">' + _ate_lbl_fb_event + '</span>'
                                }
                            }
                        }
                    } else {
                        if (_ate_show_outlook) {
                            htmx += '<span class="ateoutlook" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'outlook\',\'' + f + '\');">' + _ate_lbl_outlook + '</span>'
                        }
                        if (_ate_show_google) {
                            htmx += '<span class="ategoogle" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'google\',\'' + f + '\');">' + _ate_lbl_google + '</span>'
                        }
                        if (_ate_show_yahoo) {
                            htmx += '<span class="ateyahoo" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'yahoo\',\'' + f + '\');">' + _ate_lbl_yahoo + '</span>'
                        }
                        if (_ate_show_hotmail) {
                            htmx += '<span class="atehotmail" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'hotmail\',\'' + f + '\');">' + _ate_lbl_hotmail + '</span>'
                        }
                        if (_ate_show_ical) {
                            htmx += '<span class="ateical" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'ical\',\'' + f + '\');">' + _ate_lbl_ical + '</span>'
                        }
                        if (fbevent) {
                            if (_ate_show_facebook) {
                                htmx += '<span data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'facebook\',\'' + f + '\');">' + _ate_lbl_fb_event + '</span>'
                            }
                        }
                    }
                    if (!b) {
                        htmx += '<em class="copyx"><em class="brx"></em><em class="frs" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'home\');">AddThisEvent</em></em>'
                    }
                    c[d].id = 'atedrop' + dropzcx;
                    c[d].className = c[d].className.replace(/addthisevent/gi, '');
                    c[d].className = c[d].className + ' addthisevent-drop';
                    c[d].title = '';
                    var j = c[d].getAttribute('data-direct');
                    if (j) {
                        c[d].setAttribute('data-url', f);
                        c[d].setAttribute('data-ref', dropzcx);
                        c[d].onclick = function() {
                            addthisevent.direct(this);
                            return false
                        }
                    } else {
                        if (_ate_mouse) {
                            c[d].onmouseover = function() {
                                clearTimeout(dropmousetim);
                                addthisevent.show(this, 'auto', 'auto', true)
                            };
                            c[d].onmouseout = function() {
                                dropmousetim = setTimeout("addthisevent.out();", 200)
                            };
                            c[d].onclick = function() {
                                return false
                            }
                        } else {
                            c[d].onclick = function() {
                                addthisevent.show(this, 'auto', 'auto');
                                return false
                            }
                        }
                    }
                    var k = c[d];
                    var l = document.createElement('span');
                    l.id = 'atedrop' + dropzcx + '-drop';
                    l.className = 'addthisevent_dropdown';
                    l.innerHTML = htmx;
                    k.appendChild(l);
                    dropzcx++;
                    _ate_btn_found = true
                }
            }
            if (_ate_css == 'false') {
                addthisevent.trycss()
            } else {
                addthisevent.applycss(b)
            }
            if (_ate_btn_found && !_ate_btn_expo) {
                _ate_btn_expo = true;
                addthisevent.track({
                    typ: 'exposure',
                    cal: ''
                })
            }
        },
        direct: function(f) {
            var a = f.getAttribute('data-url');
            var b = f.getAttribute('data-direct');
            addthisevent.cli(f, b, a)
        },
        cli: function(f, a, b) {
            var c = '',
                ref = location.href,
                nw = true,
                now = new Date();
            if (a == 'outlook') {
                c = proc + '//addthisevent.com/create/?service=OUTLOOK' + b + '&reference=' + ref;
                nw = false
            }
            if (a == 'google') {
                c = proc + '//addthisevent.com/create/?service=GOOGLE' + b + '&reference=' + ref
            }
            if (a == 'yahoo') {
                c = proc + '//addthisevent.com/create/?service=YAHOO' + b + '&reference=' + ref
            }
            if (a == 'hotmail') {
                c = proc + '//addthisevent.com/create/?service=HOTMAIL' + b + '&reference=' + ref
            }
            if (a == 'ical') {
                c = proc + '//addthisevent.com/create/?service=ICAL' + b + '&reference=' + ref;
                nw = false
            }
            if (a == 'facebook') {
                c = proc + '//addthisevent.com/create/?service=FACEBOOK' + b + '&reference=' + ref
            }
            if (a == 'home') {
                c = proc + '//addthisevent.com/'
            }
            if (c != '') {
                if (a != 'home') {
                    var d = f.getAttribute('data-ref');
                    var g = $d('atedrop' + d);
                    if (g) {
                        var h = g.getAttribute('data-track');
                        if (h != null) {
                            h = h.replace(/ate-calendar/gi, a);
                            try {
                                eval(h)
                            } catch (e) {}
                        }
                    }
                }
                if (!$d('atecllink')) {
                    var j = document.createElement("a");
                    j.id = 'atecllink';
                    j.rel = 'external';
                    j.innerHTML = '{addthisevent-ghost-link}';
                    j.style.display = 'none';
                    document.body.appendChild(j)
                }
                var k = $d('atecllink');
                if (nw) {
                    k.target = '_blank'
                } else {
                    k.target = '_self'
                }
                k.href = c;
                addthisevent.eclick('atecllink')
            }
            addthisevent.track({
                typ: 'click',
                cal: a
            });
            if (_ate_callback) {
                for (var i = 0; i < _ate_callback.length; i++) {
                    try {
                        eval(_ate_callback[i])
                    } catch (e) {
                        alert(e.description)
                    }
                }
            }
        },
        applycss: function(a) {
            if (!css2) {
                var b;
                b = '.addthisevent-drop {display:inline-block;position:relative;font-family:arial;color:#333!important;background:#f4f4f4 url(' + _image_path + ') no-repeat 9px 50%;text-decoration:none!important;border:1px solid #d9d9d9;color:#555;font-weight:bold;font-size:14px;text-decoration:none;padding:9px 12px 8px 35px;-moz-border-radius:2px;-webkit-border-radius:2px;-webkit-touch-callout:none;-webkit-user-select:none;-khtml-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;}';
                b += '.addthisevent-drop:hover {border:1px solid #aab9d4;color:#555;font-weight:bold;font-size:14px;text-decoration:none!important;}';
                b += '.addthisevent-drop:active {top:1px;}';
                b += '.addthisevent-selected {background-color:#f7f7f7;}';
                if (a) {
                    b += '.addthisevent_dropdown {width:200px;position:absolute;z-index:99999;padding:0px 0px 0px 0px;background:#fff;text-align:left;display:none;margin-top:-2px;margin-left:-1px;border-top:1px solid #c8c8c8;border-right:1px solid #bebebe;border-bottom:1px solid #a8a8a8;border-left:1px solid #bebebe;-moz-border-radius:2px;-webkit-border-radius:2px;-webkit-box-shadow:1px 3px 6px rgba(0,0,0,0.15);-moz-box-shadow:1px 3px 6px rgba(0,0,0,0.15);box-shadow:1px 3px 6px rgba(0,0,0,0.15);}'
                } else {
                    b += '.addthisevent_dropdown {width:200px;position:absolute;z-index:99999;padding:6px 0px 0px 0px;background:#fff;text-align:left;display:none;margin-top:-2px;margin-left:-1px;border-top:1px solid #c8c8c8;border-right:1px solid #bebebe;border-bottom:1px solid #a8a8a8;border-left:1px solid #bebebe;-moz-border-radius:2px;-webkit-border-radius:2px;-webkit-box-shadow:1px 3px 6px rgba(0,0,0,0.15);-moz-box-shadow:1px 3px 6px rgba(0,0,0,0.15);box-shadow:1px 3px 6px rgba(0,0,0,0.15);}'
                }
                b += '.addthisevent_dropdown span {display:block;cursor:pointer;line-height:110%;background:#fff;text-decoration:none;font-size:12px;color:#6d84b4;padding:8px 10px 9px 15px;}';
                b += '.addthisevent_dropdown span:hover {background:#f4f4f4;color:#6d84b4;text-decoration:none;font-size:12px;}';
                b += '.addthisevent span {display:none!important;}';
                b += '.addthisevent-drop ._url,.addthisevent-drop ._start,.addthisevent-drop ._end,.addthisevent-drop ._zonecode,.addthisevent-drop ._summary,.addthisevent-drop ._description,.addthisevent-drop ._location,.addthisevent-drop ._organizer,.addthisevent-drop ._organizer_email,.addthisevent-drop ._facebook_event,.addthisevent-drop ._all_day_event {display:none!important;}';
                b += '.addthisevent_dropdown .copyx {width:200px;height:21px;display:block;position:relative;cursor:default;}';
                b += '.addthisevent_dropdown .brx {width:180px;height:1px;overflow:hidden;background:#e0e0e0;position:absolute;z-index:100;left:10px;top:9px;}';
                b += '.addthisevent_dropdown .frs {position:absolute;top:5px;cursor:pointer;right:10px;padding-left:10px;font-style:normal;font-weight:normal;text-align:right;z-index:101;line-height:110%;background:#fff;text-decoration:none;font-size:9px;color:#cacaca;}';
                b += '.addthisevent_dropdown .frs:hover {color:#999!important;}';
                var c = document.createElement("style");
                c.type = "text/css";
                c.id = "ate_css";
                if (c.styleSheet) {
                    c.styleSheet.cssText = b
                } else {
                    c.appendChild(document.createTextNode(b))
                }
                document.getElementsByTagName("head")[0].appendChild(c);
                css2 = true
            }
        },
        trycss: function() {
            if (!css1) {
                try {
                    var a = '.addthisevent {visibility:hidden;}';
                    a += '.addthisevent-drop ._url,.addthisevent-drop ._start,.addthisevent-drop ._end,.addthisevent-drop ._zonecode,.addthisevent-drop ._summary,.addthisevent-drop ._description,.addthisevent-drop ._location,.addthisevent-drop ._organizer,.addthisevent-drop ._organizer_email,.addthisevent-drop ._attendees,.addthisevent-drop ._facebook_event,.addthisevent-drop ._all_day_event {display:none!important;}';
                    var b = document.createElement("style");
                    b.type = "text/css";
                    if (b.styleSheet) {
                        b.styleSheet.cssText = a
                    } else {
                        b.appendChild(document.createTextNode(a))
                    }
                    document.getElementsByTagName("head")[0].appendChild(b)
                } catch (e) {}
                css1 = true;
                addthisevent.track({
                    typ: 'jsinit',
                    cal: ''
                })
            }
        },
        removecss: function() {
            try {
                return (hdx = $d('ate_css')) ? hdx.parentNode.removeChild(hdx) : false
            } catch (e) {}
        },
        show: function(f, o, a, b) {
            var c = f.id;
            var d = $d(c);
            var g = $d(c + '-drop');
            if (d && g) {
                if (olddrop != c) {
                    addthisevent.hide(olddrop)
                }
                var h = addthisevent.getstyle(g, 'display');
                try {
                    f.blur()
                } catch (e) {};
                if (h == 'block') {
                    if (b) {} else {
                        addthisevent.hide(c)
                    }
                } else {
                    olddrop = c;
                    d.className = d.className + ' addthisevent-selected';
                    d.style.zIndex = addthisevent.topzindex();
                    g.style.left = '0px';
                    g.style.top = '0px';
                    g.style.display = 'block';
                    setTimeout("addthisevent.tim();", 350);
                    D = false;
                    var i = parseInt(d.offsetHeight);
                    var j = parseInt(d.offsetWidth);
                    var k = parseInt(g.offsetHeight);
                    var l = parseInt(g.offsetWidth);
                    var m = addthisevent.viewport();
                    var n = m.split('/');
                    var p = parseInt(n[0]);
                    var q = parseInt(n[1]);
                    var r = parseInt(n[2]);
                    var s = parseInt(n[3]);
                    var t = addthisevent.elementposition(g);
                    var u = t.split('/');
                    var v = parseInt(u[0]);
                    var w = parseInt(u[1]);
                    var x = w + k;
                    var y = q + s;
                    var z = v + l;
                    var A = p + r;
                    var B = 0,
                        dropy = 0;
                    if (o == 'down' && a == 'left') {
                        B = '0px';
                        dropy = i + 'px'
                    } else if (o == 'up' && a == 'left') {
                        B = '0px';
                        dropy = -k + 'px'
                    } else if (o == 'down' && a == 'right') {
                        B = -(l - j) + 'px';
                        dropy = i + 'px'
                    } else if (o == 'up' && a == 'right') {
                        B = -(l - j) + 'px';
                        dropy = -k + 'px'
                    } else if (o == 'auto' && a == 'left') {
                        B = '0px';
                        if (x > y) {
                            dropy = -k + 'px'
                        } else {
                            dropy = i + 'px'
                        }
                    } else if (o == 'auto' && a == 'right') {
                        B = -(l - j) + 'px';
                        if (x > y) {
                            dropy = -k + 'px'
                        } else {
                            dropy = i + 'px'
                        }
                    } else {
                        if (x > y) {
                            dropy = -k + 'px'
                        } else {
                            dropy = i + 'px'
                        }
                        if (z > A) {
                            B = -(l - j) + 'px'
                        } else {
                            B = '0px'
                        }
                    }
                    g.style.left = B;
                    g.style.top = dropy;
                    var C = 'ontouchstart' in document.documentElement ? 'touchstart' : 'click';
                    if (document.addEventListener) {
                        document.addEventListener(C, function() {
                            if (D) {
                                setTimeout(function() {
                                    addthisevent.force(c)
                                }, 300)
                            }
                        }, false)
                    } else if (document.attachEvent) {
                        document.attachEvent("on" + C, function() {
                            if (D) {
                                setTimeout(function() {
                                    addthisevent.force(c)
                                }, 300)
                            }
                        })
                    } else {
                        document.onclick = function() {
                            addthisevent.force(c)
                        }
                    }
                }
            }
        },
        force: function(f) {
            var a = $d(f);
            var b = $d(f + '-drop');
            if (a && b) {
                if (D && b.style.display == 'block') {
                    setTimeout("addthisevent.hide('" + f + "');", 350)
                }
            }
        },
        out: function() {
            addthisevent.force(olddrop)
        },
        hide: function(f) {
            var a = $d(f);
            var b = $d(f + '-drop');
            if (a && b) {
                a.className = a.className.replace(/addthisevent-selected/gi, '');
                b.style.display = 'none';
                b.style.zIndex = ''
            }
        },
        tim: function() {
            D = true
        },
        topzindex: function() {
            var a = 99999;
            var b = document.getElementsByTagName('*');
            for (var d = 0; d < b.length; d += 1) {
                if (addthisevent.hasclass(b[d], 'addthisevent-drop') || addthisevent.hasclass(b[d], 'addeventstc-drop')) {
                    var c = addthisevent.getstyle(b[d], 'z-index');
                    if (!isNaN(parseFloat(c)) && isFinite(c)) {
                        c = parseInt(c);
                        if (c > a) {
                            a = c
                        }
                    }
                }
            }
            a++;
            return a
        },
        viewport: function() {
            var w = 0,
                h = 0,
                y = 0,
                x = 0;
            if (typeof(window.innerWidth) == 'number') {
                w = window.innerWidth;
                h = window.innerHeight
            } else if (document.documentElement && (document.documentElement.clientWidth || document.documentElement.clientHeight)) {
                w = document.documentElement.clientWidth;
                h = document.documentElement.clientHeight
            } else if (document.body && (document.body.clientWidth || document.body.clientHeight)) {
                w = document.body.clientWidth;
                h = document.body.clientHeight
            }
            if (document.all) {
                x = (document.documentElement.scrollLeft) ? document.documentElement.scrollLeft : document.body.scrollLeft;
                y = (document.documentElement.scrollTop) ? document.documentElement.scrollTop : document.body.scrollTop
            } else {
                x = window.pageXOffset;
                y = window.pageYOffset
            }
            return w + '/' + h + '/' + x + '/' + y
        },
        elementposition: function(a) {
            var x = 0,
                y = 0;
            if (a.offsetParent) {
                x = a.offsetLeft;
                y = a.offsetTop;
                while (a = a.offsetParent) {
                    x += a.offsetLeft;
                    y += a.offsetTop
                }
            }
            return x + '/' + y
        },
        getstyle: function(a, b) {
            var x = a;
            var y;
            if (x.currentStyle) {
                y = x.currentStyle[b]
            } else if (window.getComputedStyle) {
                y = document.defaultView.getComputedStyle(x, null).getPropertyValue(b)
            }
            return y
        },
        glicense: function(f) {
            var b = location.href;
            var c = true;
            var d = f;
            var e = d.length;
            if (e == 20) {
                var a = d.substring(0, 1);
                var z = d.substring(9, 10);
                var m = d.substring(17, 18);
                if (a != 'a') {
                    c = false
                }
                if (z != 'z') {
                    c = false
                }
                if (m != 'm') {
                    c = false
                }
            } else {
                c = false
            }
            if (b.indexOf('addthisevent.com') == -1 && d == 'aao8iuet5zp9iqw5sm9z') {
                c = false
            }
            return c
        },
        refresh: function() {
            var a = document.getElementsByTagName('*');
            for (var d = 0; d < a.length; d += 1) {
                if (addthisevent.hasclass(a[d], 'addthisevent-drop')) {
                    a[d].className = a[d].className.replace(/addthisevent-drop/gi, '');
                    a[d].className = a[d].className.replace(/addthisevent/gi, '');
                    a[d].className = a[d].className + ' addthisevent'
                }
            }
            _ate_btn_expo = false;
            addthisevent.generate()
        },
        callcack: function(f) {
            _ate_callback = f
        },
        setlabel: function(l, t) {
            var x = l.toLowerCase();
            if (x == 'outlook') {
                _ate_lbl_outlook = t
            }
            if (x == 'google') {
                _ate_lbl_google = t
            }
            if (x == 'yahoo') {
                _ate_lbl_yahoo = t
            }
            if (x == 'ical') {
                _ate_lbl_ical = t
            }
            if (x == 'facebookevent') {
                _ate_lbl_fb_event = t
            }
        },
        settings: function(c) {
            if (c.license != undefined) {
                _ate_license = c.license
            }
            if (c.css != undefined) {
                if (c.css) {
                    _ate_css = 'true'
                } else {
                    _ate_css = 'false';
                    addthisevent.removecss()
                }
            }
            if (c.mouse != undefined) {
                _ate_mouse = c.mouse
            }
            if (c.outlook != undefined) {
                if (c.outlook.show != undefined) {
                    _ate_show_outlook = c.outlook.show
                }
            }
            if (c.google != undefined) {
                if (c.google.show != undefined) {
                    _ate_show_google = c.google.show
                }
            }
            if (c.yahoo != undefined) {
                if (c.yahoo.show != undefined) {
                    _ate_show_yahoo = c.yahoo.show
                }
            }
            if (c.hotmail != undefined) {
                if (c.hotmail.show != undefined) {
                    _ate_show_hotmail = c.hotmail.show
                }
            }
            if (c.ical != undefined) {
                if (c.ical.show != undefined) {
                    _ate_show_ical = c.ical.show
                }
            }
            if (c.facebook != undefined) {
                if (c.facebook.show != undefined) {
                    _ate_show_facebook = c.facebook.show
                }
            }
            if (c.outlook != undefined) {
                if (c.outlook.text != undefined) {
                    _ate_lbl_outlook = c.outlook.text
                }
            }
            if (c.google != undefined) {
                if (c.google.text != undefined) {
                    _ate_lbl_google = c.google.text
                }
            }
            if (c.yahoo != undefined) {
                if (c.yahoo.text != undefined) {
                    _ate_lbl_yahoo = c.yahoo.text
                }
            }
            if (c.hotmail != undefined) {
                if (c.hotmail.text != undefined) {
                    _ate_lbl_hotmail = c.hotmail.text
                }
            }
            if (c.ical != undefined) {
                if (c.ical.text != undefined) {
                    _ate_lbl_ical = c.ical.text
                }
            }
            if (c.facebook != undefined) {
                if (c.facebook.text != undefined) {
                    _ate_lbl_fb_event = c.facebook.text
                }
            }
            if (c.dropdown != undefined) {
                if (c.dropdown.order != undefined) {
                    _ate_dropdown = c.dropdown.order
                }
            }
            if (c.callback != undefined) {
                _ate_callback = c.callback
            }
        },
        hasclass: function(e, c) {
            return new RegExp('(\\s|^)' + c + '(\\s|$)').test(e.className)
        },
        htmlencode: function(a) {
            var b = a.replace(/<br\s*[\/]?>/gi, "\n");
            b = b.replace(/<(?:.|\n)*?>/gm, '');
            b = b.replace(/(^\s+|\s+$)/g, '');
            var c = document.createElement("div");
            var d = document.createTextNode(b);
            c.appendChild(d);
            return c.innerHTML
        },
        eclick: function(a) {
            var b = document.getElementById(a);
            if (b.click) {
                b.click()
            } else if (document.createEvent) {
                var c = document.createEvent('MouseEvents');
                c.initEvent('click', true, true);
                b.dispatchEvent(c)
            }
        },
        track: function(a) {
            var b = new Image(1, 1);
            var d = new Date();
            var c = d.getTime();
            var e = encodeURIComponent(window.location.href);
            b.src = proc + '//track.addevent.com/atc/?trktyp=' + a.typ + '&trkcal=' + a.cal + '&guid=' + addthisevent.getguid() + '&url=' + e + '&cache=' + c
        },
        getguid: function() {
            var a = "addevent_track_cookie=",
                coov = '';
            var b = document.cookie.split(';');
            for (var i = 0; i < b.length; i++) {
                var c = b[i];
                while (c.charAt(0) == ' ') {
                    c = c.substring(1, c.length)
                }
                if (c.indexOf(a) == 0) {
                    coov = c.substring(a.length, c.length)
                }
            }
            if (coov == '') {
                var d = (addthisevent.s4() + addthisevent.s4() + "-" + addthisevent.s4() + "-4" + addthisevent.s4().substr(0, 3) + "-" + addthisevent.s4() + "-" + addthisevent.s4() + addthisevent.s4() + addthisevent.s4()).toLowerCase();
                var e = new Date();
                e.setTime(e.getTime() + (365 * 24 * 60 * 60 * 1000));
                var f = "expires=" + e.toUTCString();
                document.cookie = "addevent_track_cookie=" + d + "; " + f;
                coov = d
            }
            return coov
        },
        s4: function() {
            return (((1 + Math.random()) * 0x10000) | 0).toString(16).substring(1)
        }
    }
}();
if (window.addEventListener) {
    window.addEventListener("DOMContentLoaded", function() {
        _d_rd = true;
        addthisevent.trycss();
        addthisevent.generate()
    }, false);
    window.addEventListener("load", function() {
        addthisevent.generate()
    }, false)
} else if (window.attachEvent) {
    window.attachEvent("onreadystatechange", function() {
        _d_rd = true;
        addthisevent.trycss();
        addthisevent.generate()
    });
    window.attachEvent("onload", function() {
        addthisevent.generate()
    })
} else {
    window.onload = function() {
        addthisevent.generate()
    }
}
if (!_d_rd) {
    setTimeout("addthisevent.trycss();addthisevent.generate();", 20)
}
                                    

#2 JavaScript::Eval (size: 120, repeated: 1) - SHA256: 1619016722375b5b605a82e35c84b842d7eeb5deb5308c5ff7a93f1e3e444ef4

                                        createCookie('is_eu', false);
createCookie('fdu337owcgx3pldh', true, 365);
createCookie('11772561_viewed_2', '44', 365);
                                    

Executed Writes (0)



HTTP Transactions (191)


Request Response
                                        
                                            GET /prod/29d0f711-ba61-47b2-9e4e-724558c80b4b/eeb1999f-2d42-490c-8365-01e765af2d04 HTTP/1.1 
Host: w1.msssnv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         34.204.222.45
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Date: Mon, 12 Sep 2022 22:53:17 GMT
Content-Length: 204
Connection: keep-alive
X-Powered-By: Express
Location: https://www.cardoneventures.com/growth?msID=eeb1999f-2d42-490c-8365-01e765af2d04
Vary: Accept


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   204
Md5:    3912dc75ef199e4c0e056ffe4946a421
Sha1:   50d178b173f6910a3c0953f07758437866cb69db
Sha256: 9df13cc6333a70cf4d39b457abe01263bfbb188f31272ba62a2141880b6e8bc0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 12 Sep 2022 22:08:31 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8m8aKIZfI1jB14u327OAryRsfJWRv9S43ahnGlQsExXRjwMEa66e2g==
Age: 2686


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6904
Expires: Tue, 13 Sep 2022 00:48:21 GMT
Date: Mon, 12 Sep 2022 22:53:17 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5FMQINybQhkTAj-ajcgno4xZw6vNtaDKXg1Gdd3HXHax_3wTSP1S0w==
age: 56165
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 12 Sep 2022 22:53:17 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4403A43A4342EDE5BC6C06359CE5CB677F4178F247DCD9B90C4D9309B608F8B4"
Last-Modified: Sun, 11 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21551
Expires: Tue, 13 Sep 2022 04:52:28 GMT
Date: Mon, 12 Sep 2022 22:53:17 GMT
Connection: keep-alive

                                        
                                            GET /growth?msID=eeb1999f-2d42-490c-8365-01e765af2d04 HTTP/1.1 
Host: www.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         34.253.101.190
HTTP/2 301 Moved Permanently
content-type: text/html
                                        
server: openresty
date: Mon, 12 Sep 2022 22:53:18 GMT
content-length: 166
cache-control: private
location: https://10x.cardoneventures.com/growth-testimonialslel75vvg
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
x-served-by: cache-iad-kiad7000132-IAD, cache-dub4326-DUB
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1663023198.021316,VS0,VE127
vary: x-wf-forwarded-proto
x-cluster-name: eu-west-1-prod-edge-blue
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   166
Md5:    3ea1c8d079b38532a6e01a96216ba5e2
Sha1:   598d3ff91d3e252f1e13df8cf0348b270ff2da3f
Sha256: 87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 12 Sep 2022 21:56:07 GMT
Expires: Mon, 12 Sep 2022 22:37:53 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: O103MWXoEJiqKTLsxiwmaawBt-wD3rzJtf5YyatcCKdgYk_LEVlmCQ==
Age: 3431


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2116
Cache-Control: 'max-age=158059'
Date: Mon, 12 Sep 2022 22:53:18 GMT
Last-Modified: Mon, 12 Sep 2022 22:18:02 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /hosted/images/91/b7b95d5c4c4bb9a73db72fb1ccd90e/CardoneVentures-Horizontal-Logo-White.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 22:53:18 GMT
content-length: 30406
cf-ray: 749c37effb150b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "9fb6e72b243b86c2e741435ffb51cef3"
last-modified: Sat, 31 Jul 2021 01:25:49 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=ATc9xxP2JId.uWHisNdG.y_K5krTA16DMNUk6GaRWXg-1663023198-0-AaJqMeEhtjyVe30vC8ZYz5ZuPcYqKgTao7zK9a7tHqqAYosywWJ4irvMeYCIuXAbSdFnqW81XSFbUJef3hX1VuzkH85vRmc6DBc4gUoKPArH"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=ATc9xxP2JId.uWHisNdG.y_K5krTA16DMNUk6GaRWXg-1663023198-0-AaJqMeEhtjyVe30vC8ZYz5ZuPcYqKgTao7zK9a7tHqqAYosywWJ4irvMeYCIuXAbSdFnqW81XSFbUJef3hX1VuzkH85vRmc6DBc4gUoKPArH; report-to cf-csp-endpoint
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 2738 x 726, 8-bit colormap, non-interlaced\012- data
Size:   30406
Md5:    9fb6e72b243b86c2e741435ffb51cef3
Sha1:   3ffd07eaf86063121df9e41b7d0867af65004790
Sha256: 343aa64ec9ff58e7d508fafb933da4c48f9a9b0f62d11e0e7168ffcce98ec6ef
                                        
                                            GET /hosted/images/46/1cf427a52c473f965dc674cf5d6bda/giphy.gif HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/gif
                                        
date: Mon, 12 Sep 2022 22:53:18 GMT
content-length: 67635
cf-ray: 749c37efeb030b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "0f1aad00fdf3ad50213054664dd48bd3"
last-modified: Sat, 09 Apr 2022 01:50:16 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=7nf8StsbE2ah91hfVsGZ3T5PSSvn.Kb0XFpAaZpQTc8-1663023198-0-Aa5oK5spbJaZ0jsfvzXDIkyLr5unuWl3SNUz-BHBRgdRwMsyouyhtXqvVlDcZ4Tm4AitingPWYkflYryDx3v0-JMajMahYgRWcXVm65rD7Lb"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=7nf8StsbE2ah91hfVsGZ3T5PSSvn.Kb0XFpAaZpQTc8-1663023198-0-Aa5oK5spbJaZ0jsfvzXDIkyLr5unuWl3SNUz-BHBRgdRwMsyouyhtXqvVlDcZ4Tm4AitingPWYkflYryDx3v0-JMajMahYgRWcXVm65rD7Lb; report-to cf-csp-endpoint
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 480 x 432\012- data
Size:   67635
Md5:    0f1aad00fdf3ad50213054664dd48bd3
Sha1:   abf08cab0f5217d6426db27b28e0378f4763f4ea
Sha256: 442025698b951d3c5650480f23e8151e643aad52427624549f879505e36f825d
                                        
                                            GET /hosted/images/bc/06f27f5571408ea3ee903d7a0e771d/jdd8d.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 22:53:18 GMT
content-length: 457414
cf-ray: 749c37efeb060b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "3aafb317f317f57cf4bfb628e64ecd5b"
last-modified: Fri, 01 Jul 2022 21:34:56 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1160 x 1365, 8-bit colormap, non-interlaced\012- data
Size:   457414
Md5:    3aafb317f317f57cf4bfb628e64ecd5b
Sha1:   9921008e7b0d18b1dfb5d1ca85f001a57e0e548d
Sha256: 2c08e6a7263f1abb9f7559391c286423e6ea386acf18a309538daa23f2453492
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 22:53:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /assets/userevents/application.js HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Mon, 12 Sep 2022 22:53:18 GMT
cf-ray: 749c37efeb020b39-OSL
access-control-allow-origin: *
age: 443
cache-control: public, max-age=1200
etag: W/"630e9cfc-1353"
expires: Mon, 12 Sep 2022 23:13:18 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4947), with no line terminators
Size:   2212
Md5:    cd46d3bfc8f901092894a05192a250c3
Sha1:   b639440c93c519be6923f4a8d2ead1e9186739f2
Sha256: 4ab660bd7ee0218205524cb6f7466e6cc2263e7ea8dc468476c5e53da13d322d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 22:53:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7r5JV7kgFQqhlAhbo6W61A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.155.157.101
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GT4uCORV2fkAmS2uUgY+/A6jTUY=

                                        
                                            GET /hosted/images/0c/1ede9839594690acc9803bda0782dd/dddddd.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 22:53:18 GMT
content-length: 598637
cf-ray: 749c37effb110b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "d5f8da26afbee0e376ff5c7e31c1a0ec"
last-modified: Fri, 01 Jul 2022 21:00:14 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=B3Jm4wGSr2Wa0waMPj.bGFrVLExhQSE2rov_w.izZH4-1663023198-0-Aeapffckq2HSAdHhaOkErWEnNjULs33P-9Y20RI6T3YeSaOjc2TM3k81KpMfpnUeXK9OO-64m_hIIHmP2bCuhQkEIk4EDFcsQhoTSICDELi4"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=B3Jm4wGSr2Wa0waMPj.bGFrVLExhQSE2rov_w.izZH4-1663023198-0-Aeapffckq2HSAdHhaOkErWEnNjULs33P-9Y20RI6T3YeSaOjc2TM3k81KpMfpnUeXK9OO-64m_hIIHmP2bCuhQkEIk4EDFcsQhoTSICDELi4; report-to cf-csp-endpoint
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1480 x 1434, 8-bit colormap, non-interlaced\012- data
Size:   598637
Md5:    d5f8da26afbee0e376ff5c7e31c1a0ec
Sha1:   cae82089797bd8c3084fcf598f1ca47dbb179501
Sha256: 2fff2e8d281921bc381abfa1fd396bbc3fd7114d8d267dca3da23c4b85e3e785
                                        
                                            GET /css?family=Montserrat%7CHelvetica+Neue+Helvetica+Arial+sans-serif%7CMontserrat%7CHelvetica+Neue+Helvetica+Arial+sans-serif%7CMontserrat%7CHelvetica+Neue+Helvetica+Arial+sans-serif%7CMontserrat%7CHelvetica+Neue+Helvetica+Arial+sans-serif%7CMontserrat%7CHelvetica+Neue+Helvetica+Arial+sans-serif%7CMontserrat%7CHelvetica+Neue+Helvetica+Arial+sans-serif%7CMontserrat%7CHelvetica+Neue+Helvetica+Arial+sans-serif%7CMontserrat%7CHelvetica+Neue+Helvetica+Arial+sans-serif%7CMontserrat%7CRoboto%7CLato%7CMontserrat%7CLato%7CMontserrat%7C HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 12 Sep 2022 22:53:18 GMT
date: Mon, 12 Sep 2022 22:53:18 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1130
Md5:    ec2a7d67be9a44df57fd1406c440cb18
Sha1:   6bd331a66dd7e72e31c8f0a58184130f89580617
Sha256: c3b15dc6e3cc8108a433bc68814d12d9c3d2a502fc2176904676f032f465ec42
                                        
                                            GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.169.247
HTTP/2 200 OK
content-type: text/css
                                        
date: Mon, 12 Sep 2022 22:53:18 GMT
x-amz-id-2: 29dQf2WVNOHot5Ay8pBeGC9Jp0pul03AFXB61uD4zFysCnT6qW6VHySxi6MC8oLZjApsDY/NPq0=
x-amz-request-id: B6FTANBTWNEFCW5M
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 428957
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IAto2kjnHoMBeMESit65lWgjYfOhnbEA99Dov%2FUB7kPstCYeDS5tWMoqaKBu%2FreiHaFyxMakLuSZjCY9S87dTrfzJ%2FsxbCbz4pQl4YfidACiDRNW6FCD43HoZfeq5%2BXuviJqMvuw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 749c37f0094db51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26440)
Size:   4659
Md5:    c07216d28d9278558f183f4203d3e534
Sha1:   6b10643917146fdc1ff7ebe7ae04402084d5a378
Sha256: c1592ca04dd7a55eaf0ad7d4a4ffc606a429d48f0f13128c886f3284c9372a77
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 22:53:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 22:53:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /hosted/images/94/f9e5b090ce4e46b64492cd29bf1293/Untitled-design---2022-07-05T161731.169.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 22:53:19 GMT
content-length: 6164
cf-ray: 749c37effb0c0b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "389a129c35c84e5401094ee67ad74b51"
last-modified: Tue, 05 Jul 2022 20:17:41 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1050 x 120, 8-bit colormap, non-interlaced\012- data
Size:   6164
Md5:    389a129c35c84e5401094ee67ad74b51
Sha1:   9b662b4e4ed9784f863ff0b4cebbc36f2df5a4c4
Sha256: 45b6aa3a8c397d1765d8619c602173b73a95d7f1a957b489d12e14f592ac872f
                                        
                                            GET /gtm.js?id=GTM-5K69KKM HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 12 Sep 2022 22:53:19 GMT
expires: Mon, 12 Sep 2022 22:53:19 GMT
cache-control: private, max-age=900
last-modified: Mon, 12 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74751
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7280)
Size:   74751
Md5:    74a1d230c49e1477c7f5bd1f8ce5590c
Sha1:   eee660db3399d2a91e609daef893347fd56823f9
Sha256: 78aa0098d2fbe478177525b7fe6909e094e14afe8f2d49e591f0ef31c42766ca
                                        
                                            GET /embed/iframe/lnjd82cdm5?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"388562ebad63a1ffa977c2d919ab3aaf"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: afa10526d650424d8b9f9c8c219b853e
x-runtime: 0.078332
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kjyo7100165-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.073892,VS0,VE92
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2636
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5918)
Size:   2636
Md5:    509edaef4c3e5e712d9587673149e3be
Sha1:   c79b81b5f0ed3dce036a700800ef50efc3b8344d
Sha256: 8ed877801e4b820b65433bf252382f5fb9edb56e2831325a8a3bda8e0b1e588a
                                        
                                            GET /hosted/images/34/0bb5b9ec8f4c6d89a0fc64b57afd8f/Untitled-design---2022-07-05T163000.260.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 22:53:19 GMT
content-length: 11695
cf-ray: 749c37effb100b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "bae90047c05a0be22f7f492c6d821c1d"
last-modified: Tue, 05 Jul 2022 20:30:11 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1050 x 120, 8-bit colormap, non-interlaced\012- data
Size:   11695
Md5:    bae90047c05a0be22f7f492c6d821c1d
Sha1:   9a835b03b52b811adb54ed2c22a71dd45fbab44f
Sha256: b4ceedb71c4a17649b8e51385c40b483ab815480418801b99d859151e4e3a92a
                                        
                                            GET /embed/iframe/gfqf2p7jrc?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"5412973afbc978a5f6be55e1f6cdd146"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 4ba174e0e3845f2ab9138d2d4cb860e7
x-runtime: 0.069934
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kiad7000151-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.075077,VS0,VE92
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2589
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5927)
Size:   2589
Md5:    3e8c797a4f180be359daf53bff8866b0
Sha1:   3a49688dc2bf4b3c6fd7a39d4c0e2838ecd08f01
Sha256: 3fd6eaa3da0ed77ea3c91498b783b93d34bf905c69134d3e6787b7f165008e57
                                        
                                            GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1 
Host: static.cloudflareinsights.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.47.230
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
                                        
date: Mon, 12 Sep 2022 22:53:18 GMT
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 749c37f099cdb527-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   7800
Md5:    4627290a4f89d786f186e9cfaf49b9b0
Sha1:   e4c5d5218d7e9f28d07992e5b97510829760faeb
Sha256: f47ddd40a6c108ef3134eff097fda75239ea73b5f730e241d28a348bb26cbd6f
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 443951
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /hosted/images/35/c7fb823b264ea3a2fd5e7ab26e2fc2/Untitled-design---2022-07-05T160410.488.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 22:53:19 GMT
content-length: 6001
cf-ray: 749c37effb0b0b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "a18f300b1132924717917ef3d3d1c058"
last-modified: Tue, 05 Jul 2022 20:04:22 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1050 x 120, 8-bit colormap, non-interlaced\012- data
Size:   6001
Md5:    a18f300b1132924717917ef3d3d1c058
Sha1:   fbabb1421e0485a3bb39da9aa94ab36c062ebfc1
Sha256: edcfb2280fc7fbbd3494bf35d83901653fb8320dd2d878298ccaa7ae85db6f6b
                                        
                                            GET /hosted/images/dd/f8d6c444df4580b1253b408535851e/dark-bg-bar1.png HTTP/1.1 
Host: www.upwvirtual.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.14.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 22:53:19 GMT
content-length: 3346
cf-ray: 749c37f29b70b51b-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "2fc97fddf06b945e3a4af76fe677b1be"
last-modified: Thu, 28 Apr 2022 11:24:46 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
set-cookie: __cf_bm=_j2FYwDIV9XAgzS7UvGRKgvHiSFtD.Fj2mMc5FDV4Xk-1663023199-0-AVnINjf3s22jJYntKeppO6fNO3efHg01D2SgKhdbkScN+I9qDOL/go+wUg/le8jlVsLsdMYtDl4EsTBqMzgIdmooGZFfKVZFS2su90B3ybQg; path=/; expires=Mon, 12-Sep-22 23:23:19 GMT; domain=.www.upwvirtual.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1920 x 520, 2-bit colormap, non-interlaced\012- data
Size:   3346
Md5:    2fc97fddf06b945e3a4af76fe677b1be
Sha1:   53b9664cd105c1e4f11bab4ab8ae43069ed85698
Sha256: 9ab49aff9cb50869da5238eaf1dc9477d13f305cb7f21274538c9e08dbf4a9a4
                                        
                                            GET /embed/iframe/0u8ee6hghh?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"592e24f0d1465e2c9fa56ca0f7555788"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 5cf8fa5fe2d9f1452caccf3fb98f6db8
x-runtime: 0.082882
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kjyo7100051-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.074090,VS0,VE94
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2528
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5316)
Size:   2528
Md5:    97fadddd1ac1825b8d3a0dda40e4b82b
Sha1:   597d64f2bc5af87c199bdde17705aafb63852886
Sha256: 24edba9585c5f228aa9c7cdd4fc81c4a75d2b7718b2355bd5232618dbb53e639
                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 16:40:18 GMT
expires: Fri, 08 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 367981
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size:   30928
Md5:    ac0d2859ea5f8fd6bcb3c305c08ec184
Sha1:   7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
Sha256: ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
                                        
                                            GET /releases/v5.9.0/css/all.css HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.169.247
HTTP/2 200 OK
content-type: text/css
                                        
date: Mon, 12 Sep 2022 22:53:18 GMT
x-amz-id-2: 5R63sGXcq2LptVgWp1Hbu23fLcn6t7yox4MdVDD4fYkPpwwpE0tP8nap3nE7BUsLxb2kn6BawAQ=
x-amz-request-id: FW5J89H89QA35JM6
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 507383
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZfUQlY8iFBCt9%2B2RyffR6I3jw5lBqSUzRK9w66rm9hJ7VIbTvQUPNiphAlpd1vaI33kC1oZ6%2FBOYUHy7EPH%2Bks369sjMf39%2FWqI7IRG%2BosiKX4rTgKcFY2sRA2DEAmXi1CWo2MXf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 749c37eff944b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (55782)
Size:   74764
Md5:    6a79ac94f9b18bb543912427de4e6c21
Sha1:   a3e036f8c95684849e635d13f28ab234fac02216
Sha256: ff4453b9f26669e39152eb180d55ae2d7f787991d27a8402d9ad7804e197bf50
                                        
                                            GET /embed/iframe/jhj25fczq3?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"2ff419216403d68e0744fd8d8892af9f"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 93eb79464ffa58c71b7bcdaa342a5b27
x-runtime: 0.079832
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kiad7000074-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.074035,VS0,VE96
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2613
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5910)
Size:   2613
Md5:    bbed81f1905f1c19989207c6e3e3eb0e
Sha1:   4ca9fe78126c8267676cd4ec5459a45f8893f191
Sha256: 7c8d3f47e849a2ea918ef6fa9d4a41d55ae80b017d8e3c8746ddfa040b7c4857
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 22:53:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /embed/iframe/u4jrcon248?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"e94741dc05d778b69f84d397cb6304fd"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 79b9ce30da83b002cf10956a891ffe2e
x-runtime: 0.078434
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kiad7000026-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.081707,VS0,VE92
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2600
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5860)
Size:   2600
Md5:    e5ae0df72a47a58390a1f10d9ab3086f
Sha1:   ba4f89daea058b65f18c87acfa4f2a4056786ee0
Sha256: 61a50f8b730e683ce9654f33c2e88b56d3324bda06d70eaf49c57a0c4046c3c4
                                        
                                            GET /embed/iframe/2r2aotnlh4?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"79dbd07c17f2665f41db0a0131cb8ddc"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 510580b85a089c77dbc53ef1982057e2
x-runtime: 0.063805
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kcgs7200039-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.081694,VS0,VE92
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2585
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5869)
Size:   2585
Md5:    dc3924b24e18a6b55b99568bf0d1d6a1
Sha1:   228e6471af52a5ac3b2238dda68c3b16a14d2ecd
Sha256: b2a54b650738ab5eda881582e548526fd99f9d0cbdf49aa19921c4e3603dee88
                                        
                                            GET /embed/iframe/6zeqgrooi4?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"a66746deef1e9233efd86f910a0e041c"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 6b205edf30703525b1ba3375869b7eed
x-runtime: 0.063507
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 27523
x-served-by: cache-iad-kcgs7200177-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.074665,VS0,VE101
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2608
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5887)
Size:   2608
Md5:    2bbc63db528b19e32f7d1b61722d6e93
Sha1:   911896f7fb53f7cf6f7ec4fa7c5f775fa9ed2935
Sha256: 60e1153a9bbe24f74f4f7257bca64d7309cf6376e3c4fae4c9e3224391f3fc26
                                        
                                            GET /embed/iframe/v8n9jc5d3a?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"08df6587033507f61ceffaa91ce8a932"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 1d33d441090e10d7d452d33a4294df26
x-runtime: 0.066468
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 27523
x-served-by: cache-iad-kiad7000140-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.074878,VS0,VE101
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2583
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5870)
Size:   2583
Md5:    ccfe20fb4fa7e94d1ca860999980e4e7
Sha1:   8337cf11a2bbd47e823e0f86d7a71236eee6ea53
Sha256: b5f2f43f9217f9b6d100b1f03d8971dc12a9aced57fefd6fe3ef9b9089c71a85
                                        
                                            GET /embed/iframe/1qv93y6nq5?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"43421b7d9cf439d9a4a49c579462fae7"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: b46d81a6b29aa3f494b1ed47c3e39b81
x-runtime: 0.056131
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kiad7000131-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.074519,VS0,VE102
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2560
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5318)
Size:   2560
Md5:    ac161d9c2146a29612d50d27bdea46f0
Sha1:   462ed01d2f84849813ebc895683cc3383bd59b6e
Sha256: 446fb5fffcbdf74069e266b6854186c4bcf4f255d65ef43f9f2cb664bf83ba96
                                        
                                            GET /embed/iframe/v5yg2m28cw?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"d541861d17a397dafa20557eeafc58ad"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 831fa2a1f5733e94e2282ebe06192255
x-runtime: 0.069628
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kjyo7100168-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.073719,VS0,VE103
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2662
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5913)
Size:   2662
Md5:    ac2061dbd48d2483e5cdf20cc5bddf02
Sha1:   40f95df6e8f90626d251caff53fbaea294fed33f
Sha256: a97bfcc944270adb56d7f78095f3d5f4095c77f1f2dce19749d32133ac61f51e
                                        
                                            GET /embed/iframe/wtel0q0jxe?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"b152419342fef4e02df6e079e967af78"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 8b8f2a967ddd49bb4e70019d8da2cb4a
x-runtime: 0.069931
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kcgs7200035-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.081664,VS0,VE96
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2631
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5930)
Size:   2631
Md5:    984654f401c74525cd0bc68764057f09
Sha1:   7039ed42b87fdc5e75fe8c7635ef1db05f31fa96
Sha256: 095e01f8e9b78fa9680af97770bb96191110fba9e03c195f3815eaea11f96aae
                                        
                                            GET /embed/iframe/jk58jp1mni?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"3119ab4c882e9612e3b433c96ee4ca9d"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: b38ad002ac5953f4cea4cd160c8fd5fb
x-runtime: 0.103814
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kjyo7100072-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.081739,VS0,VE101
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2580
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5870)
Size:   2580
Md5:    f9f1dabd90515e058d7bcb340602c59b
Sha1:   193c69ad94bc87486c992bb1fdde446d76819f32
Sha256: 8e409d5014a41bb643550d2eb055eeb9b29274f65fa5c4c6523a8627f0ca932c
                                        
                                            GET /css?family=Montserrat:700,900 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 12 Sep 2022 22:53:18 GMT
date: Mon, 12 Sep 2022 22:53:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3132
Md5:    2a39cb2ae0e5683e5952089c9352b7c4
Sha1:   5b8b08893c34c6a221edb75cce5e51dc896218aa
Sha256: 4882ff0ba640f606b5cd4e78fb2a0b70d1bf4fc6390e1868c889c3598081f8f6
                                        
                                            GET /assets/lander.css HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: text/css
                                        
date: Mon, 12 Sep 2022 22:53:18 GMT
cf-ray: 749c37efdaf30b39-OSL
access-control-allow-origin: *
age: 474
cache-control: public, max-age=1200
etag: W/"630e9cfc-6a514"
expires: Mon, 12 Sep 2022 23:13:18 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (53232)
Size:   84311
Md5:    a3f2f662f8e829ea9c4369ea85b1b7ef
Sha1:   3fdb6bf91c7ac8a7a38287433aa5419b64dd34a6
Sha256: eba84da6cc8dbdb5358c393b1aa321071d0c418f0286487a7cdefc468c6b1a03
                                        
                                            GET /hosted/images/8d/829e2f65e1497399d2caaf5e001c25/Untitled-design---2022-07-05T160240.455.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 22:53:19 GMT
content-length: 7904
cf-ray: 749c37efeb090b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "3118a2631748803c9f20ad30018b8046"
last-modified: Tue, 05 Jul 2022 20:02:48 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1050 x 120, 8-bit colormap, non-interlaced\012- data
Size:   7904
Md5:    3118a2631748803c9f20ad30018b8046
Sha1:   1fea409064398d11144ae18a0aa7e8cdef231913
Sha256: cbf251e2e108f7f19db39da37cbd9e663c3aab7dd97fe18c6f6419a9304f5f50
                                        
                                            GET /embed/iframe/rculh6y9bw?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"be11712ab625f51a016be73d05e87fe4"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: cf1fa2befcf5fbac76ced3d948503f34
x-runtime: 0.079281
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85083
x-served-by: cache-iad-kjyo7100120-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.148845,VS0,VE93
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2595
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5875)
Size:   2595
Md5:    ee99213e093d1752649d644ae9435670
Sha1:   b56c599fa9019642e1af3220366540065cda5881
Sha256: 5b019bc450e8665684f3d0499e6ed0c0cf7d3b0a478f801e3ff424ee4de50226
                                        
                                            GET /hosted/images/6c/04b1d454e2452a8fe3d277d8f57e6a/Untitled-design---2022-07-05T170627.526.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 22:53:19 GMT
content-length: 28750
cf-ray: 749c37efeb070b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "cbd516d68ed7166979bdfaf93a886bc2"
last-modified: Tue, 05 Jul 2022 21:06:45 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 2175 x 120, 8-bit colormap, non-interlaced\012- data
Size:   28750
Md5:    cbd516d68ed7166979bdfaf93a886bc2
Sha1:   1f2dae93a7fc1bd521632656ee7e710cfe8c0bfc
Sha256: 7e4b3655f9c159133daae4c977bbf95bb068801b422f39164f9b653ce6dd4e50
                                        
                                            GET /embed/iframe/2tc3wb3hja?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"074c3453bc1d4cc49a93337e6356fd5e"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 8aa455bd0cf92cb79a5228e2e1bb912d
x-runtime: 0.078315
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kiad7000179-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023199.148746,VS0,VE93
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2602
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5885)
Size:   2602
Md5:    92eb2d855d34aaa87370579a3378beb2
Sha1:   955dcdfd0e0307fe190a1d1537e4d41c592d8769
Sha256: ef91c5e1617a76b3f25107cc7503176909f1faff893584d4442d7840e3371aaa
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 22:53:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /assets/pushcrew.js HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Mon, 12 Sep 2022 22:53:18 GMT
cf-ray: 749c37f00b2e0b39-OSL
access-control-allow-origin: *
age: 482
cache-control: public, max-age=1200
etag: W/"630e9cfb-27d"
expires: Mon, 12 Sep 2022 23:13:18 GMT
last-modified: Tue, 30 Aug 2022 23:27:55 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (637), with no line terminators
Size:   2947
Md5:    43b01af92b2597969ac5acb2033fae70
Sha1:   f73d55d2b4f4e16378f441f418afed74c88f7af4
Sha256: c9903306aff6f570987911fd3cb7a490c56aabede3ab50c732aed3cd98f2d075
                                        
                                            GET /hosted/images/4f/07a0c55c744dabaf04992020e98de3/GC1.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 22:53:18 GMT
content-length: 513805
cf-ray: 749c37effb160b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "3d6f3cb865f68315db7965185c192c7a"
last-modified: Wed, 06 Apr 2022 18:34:49 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2605
Md5:    6daecc332b133aedcd36dba312715142
Sha1:   01323a634b947cebba9df47a8f62d8e7c8fe8b2d
Sha256: d73314fe910d48b048f0f976b189ca72d85d6db7df5b7233de4260baf056cffa
                                        
                                            GET /hosted/images/39/93329ebd2d40d09ed3e3dc62ec0441/Circle-Headshots-04-1-.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 22:53:19 GMT
content-length: 259426
cf-ray: 749c37efeb080b39-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "e74c32ed58f0a435d908ba25186d2f6a"
last-modified: Thu, 07 Jul 2022 21:12:58 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 854 x 899, 8-bit colormap, non-interlaced\012- data
Size:   259426
Md5:    e74c32ed58f0a435d908ba25186d2f6a
Sha1:   6778dff7ace6d0cbb0a2567c85e3dba2e371e35d
Sha256: 35f805824dfc947f02bd4437b98b9a9a060587f66a9a83b072f15d5a5dfa2a6b
                                        
                                            GET /embed/iframe/v5yg2m28cw?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"d541861d17a397dafa20557eeafc58ad"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 831fa2a1f5733e94e2282ebe06192255
x-runtime: 0.069628
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kjyo7100168-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.509696,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2662
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5913)
Size:   2662
Md5:    ac2061dbd48d2483e5cdf20cc5bddf02
Sha1:   40f95df6e8f90626d251caff53fbaea294fed33f
Sha256: a97bfcc944270adb56d7f78095f3d5f4095c77f1f2dce19749d32133ac61f51e
                                        
                                            GET /vendor.js HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=vtkm92L2R.AyxiPfHNlf8F0wFN12tdmdeRItBVAd_Xg-1663023198-0-AdWOaaYIWzc5voD+djr4XMruEY8tBSBfKor5/H6neutkNOM1GrHDop3t4fAHBRqultuW0oNg/c+4zMJR8rYuXjPsokvCG/p3FtIjJOPq11Qp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 12 Sep 2022 22:53:19 GMT
cf-ray: 749c37f3dd490b39-OSL
access-control-allow-origin: *
cache-control: max-age=900, public
etag: W/"7422e50efbaea439fda7ef3b0eb54ee1"
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: 581e49c9b7bdd06dab54c00931f4256b223e620e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: stale, valid, store
x-request-id: 1af3ec9baa95fe7a06d36e95928859ac
x-runtime: 0.017421
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=TjsGfOHxATiC2D0.6zyiJ.S.shLwtOXkhNBW36xmgRg-1663023199-0-AaaL61uGbt0LArE4hSnWLtzy8djRQS9r8PXnFvO7DZhwaSrTuOMFKb1h3SzkFYlRsrjxbIAmNlqUu0WGbmpFFSt9u7GaTz2OTDNzJE6efV17"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=TjsGfOHxATiC2D0.6zyiJ.S.shLwtOXkhNBW36xmgRg-1663023199-0-AaaL61uGbt0LArE4hSnWLtzy8djRQS9r8PXnFvO7DZhwaSrTuOMFKb1h3SzkFYlRsrjxbIAmNlqUu0WGbmpFFSt9u7GaTz2OTDNzJE6efV17; report-to cf-csp-endpoint
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   8094
Md5:    68c13a64735c42c33a6f82c447363f57
Sha1:   3f25d79114f0d949eef48a610aa6b1c609f06878
Sha256: 5b36dd10ac234b4bf10ed2748465aa7519809772d3f1e8d5aedda48ac7ee9589
                                        
                                            GET /embed/iframe/troz3pmk2x?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"63bbefd1f9d5d5667d1a8933dc8c1922"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: bae90da67c0899d381eb1d14971d2d24
x-runtime: 0.064176
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kcgs7200094-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.513897,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2610
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5881)
Size:   2610
Md5:    ca36f8855a503d387676e1ef27908b70
Sha1:   a14b51345ee677142cc99359cd04c1969664ff10
Sha256: a22a81c760e391b32a06eef41b88a21ca07343619bc4510955ebcb5ebff08cc7
                                        
                                            GET /embed/iframe/2tc3wb3hja?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"074c3453bc1d4cc49a93337e6356fd5e"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 8aa455bd0cf92cb79a5228e2e1bb912d
x-runtime: 0.078315
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kiad7000179-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.516159,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2602
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5885)
Size:   2602
Md5:    92eb2d855d34aaa87370579a3378beb2
Sha1:   955dcdfd0e0307fe190a1d1537e4d41c592d8769
Sha256: ef91c5e1617a76b3f25107cc7503176909f1faff893584d4442d7840e3371aaa
                                        
                                            GET /embed/iframe/rculh6y9bw?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"be11712ab625f51a016be73d05e87fe4"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: cf1fa2befcf5fbac76ced3d948503f34
x-runtime: 0.079281
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85083
x-served-by: cache-iad-kjyo7100120-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.519649,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2595
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5875)
Size:   2595
Md5:    ee99213e093d1752649d644ae9435670
Sha1:   b56c599fa9019642e1af3220366540065cda5881
Sha256: 5b019bc450e8665684f3d0499e6ed0c0cf7d3b0a478f801e3ff424ee4de50226
                                        
                                            GET /embed/iframe/jxcd8tntsu?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"9b937efce21c241306fff9d6c36f7db7"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 8f259fb2ef9eb75697befb30539560aa
x-runtime: 0.076993
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kjyo7100046-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.523931,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2600
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5888)
Size:   2600
Md5:    1d0d934906440fadf6b4a884ad9b97b3
Sha1:   b9118f83cd26eee04aecff5813a59aa7ac53b22a
Sha256: f583f82a23867d6e8172cd31e641d5f0b87aeebb9304ac14b840214ff84f7879
                                        
                                            GET /embed/iframe/lnjd82cdm5?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"388562ebad63a1ffa977c2d919ab3aaf"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: afa10526d650424d8b9f9c8c219b853e
x-runtime: 0.078332
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kjyo7100165-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.527012,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2636
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5918)
Size:   2636
Md5:    509edaef4c3e5e712d9587673149e3be
Sha1:   c79b81b5f0ed3dce036a700800ef50efc3b8344d
Sha256: 8ed877801e4b820b65433bf252382f5fb9edb56e2831325a8a3bda8e0b1e588a
                                        
                                            GET /embed/iframe/jhj25fczq3?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"2ff419216403d68e0744fd8d8892af9f"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 93eb79464ffa58c71b7bcdaa342a5b27
x-runtime: 0.079832
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kiad7000074-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.529643,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2613
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5910)
Size:   2613
Md5:    bbed81f1905f1c19989207c6e3e3eb0e
Sha1:   4ca9fe78126c8267676cd4ec5459a45f8893f191
Sha256: 7c8d3f47e849a2ea918ef6fa9d4a41d55ae80b017d8e3c8746ddfa040b7c4857
                                        
                                            GET /embed/iframe/0u8ee6hghh?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"592e24f0d1465e2c9fa56ca0f7555788"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 5cf8fa5fe2d9f1452caccf3fb98f6db8
x-runtime: 0.082882
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kjyo7100051-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.532062,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2528
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5316)
Size:   2528
Md5:    97fadddd1ac1825b8d3a0dda40e4b82b
Sha1:   597d64f2bc5af87c199bdde17705aafb63852886
Sha256: 24edba9585c5f228aa9c7cdd4fc81c4a75d2b7718b2355bd5232618dbb53e639
                                        
                                            GET /embed/iframe/44h10j64gp?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"65aaec388b0c466ed717cf50b90cc6ac"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 2f7ee8597f4d3d873a74ecc3b0e67ab9
x-runtime: 0.069400
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kjyo7100179-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.534383,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2654
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5897)
Size:   2654
Md5:    a2422ed38e7104e9dc96e69c53f02651
Sha1:   3c60ee0586983dc9c8b63b0327cca374d60792cc
Sha256: d71923fcc9ade09a2ca1cb021ea7f7545b2f225c3079da1f2f8fa76dce6d39fd
                                        
                                            GET /embed/iframe/1qv93y6nq5?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"43421b7d9cf439d9a4a49c579462fae7"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: b46d81a6b29aa3f494b1ed47c3e39b81
x-runtime: 0.056131
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kiad7000131-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.536979,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2560
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5318)
Size:   2560
Md5:    ac161d9c2146a29612d50d27bdea46f0
Sha1:   462ed01d2f84849813ebc895683cc3383bd59b6e
Sha256: 446fb5fffcbdf74069e266b6854186c4bcf4f255d65ef43f9f2cb664bf83ba96
                                        
                                            GET /embed/iframe/6zeqgrooi4?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"a66746deef1e9233efd86f910a0e041c"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 6b205edf30703525b1ba3375869b7eed
x-runtime: 0.063507
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 27523
x-served-by: cache-iad-kcgs7200177-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.540895,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2608
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5887)
Size:   2608
Md5:    2bbc63db528b19e32f7d1b61722d6e93
Sha1:   911896f7fb53f7cf6f7ec4fa7c5f775fa9ed2935
Sha256: 60e1153a9bbe24f74f4f7257bca64d7309cf6376e3c4fae4c9e3224391f3fc26
                                        
                                            GET /embed/iframe/v8n9jc5d3a?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"08df6587033507f61ceffaa91ce8a932"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 1d33d441090e10d7d452d33a4294df26
x-runtime: 0.066468
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 27523
x-served-by: cache-iad-kiad7000140-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.541949,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2583
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5870)
Size:   2583
Md5:    ccfe20fb4fa7e94d1ca860999980e4e7
Sha1:   8337cf11a2bbd47e823e0f86d7a71236eee6ea53
Sha256: b5f2f43f9217f9b6d100b1f03d8971dc12a9aced57fefd6fe3ef9b9089c71a85
                                        
                                            GET /embed/iframe/gfqf2p7jrc?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"5412973afbc978a5f6be55e1f6cdd146"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 4ba174e0e3845f2ab9138d2d4cb860e7
x-runtime: 0.069934
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kiad7000151-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.547228,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2589
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5927)
Size:   2589
Md5:    3e8c797a4f180be359daf53bff8866b0
Sha1:   3a49688dc2bf4b3c6fd7a39d4c0e2838ecd08f01
Sha256: 3fd6eaa3da0ed77ea3c91498b783b93d34bf905c69134d3e6787b7f165008e57
                                        
                                            GET /embed/iframe/jk58jp1mni?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"3119ab4c882e9612e3b433c96ee4ca9d"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: b38ad002ac5953f4cea4cd160c8fd5fb
x-runtime: 0.103814
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kjyo7100072-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.548917,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2580
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5870)
Size:   2580
Md5:    f9f1dabd90515e058d7bcb340602c59b
Sha1:   193c69ad94bc87486c992bb1fdde446d76819f32
Sha256: 8e409d5014a41bb643550d2eb055eeb9b29274f65fa5c4c6523a8627f0ca932c
                                        
                                            GET /embed/iframe/u4jrcon248?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"e94741dc05d778b69f84d397cb6304fd"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 79b9ce30da83b002cf10956a891ffe2e
x-runtime: 0.078434
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kiad7000026-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.550141,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2600
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5860)
Size:   2600
Md5:    e5ae0df72a47a58390a1f10d9ab3086f
Sha1:   ba4f89daea058b65f18c87acfa4f2a4056786ee0
Sha256: 61a50f8b730e683ce9654f33c2e88b56d3324bda06d70eaf49c57a0c4046c3c4
                                        
                                            GET /embed/iframe/2r2aotnlh4?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"79dbd07c17f2665f41db0a0131cb8ddc"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 510580b85a089c77dbc53ef1982057e2
x-runtime: 0.063805
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kcgs7200039-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.552054,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2585
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5869)
Size:   2585
Md5:    dc3924b24e18a6b55b99568bf0d1d6a1
Sha1:   228e6471af52a5ac3b2238dda68c3b16a14d2ecd
Sha256: b2a54b650738ab5eda881582e548526fd99f9d0cbdf49aa19921c4e3603dee88
                                        
                                            GET /embed/iframe/wtel0q0jxe?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"b152419342fef4e02df6e079e967af78"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 8b8f2a967ddd49bb4e70019d8da2cb4a
x-runtime: 0.069931
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 85082
x-served-by: cache-iad-kcgs7200035-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023200.554739,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2631
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5930)
Size:   2631
Md5:    984654f401c74525cd0bc68764057f09
Sha1:   7039ed42b87fdc5e75fe8c7635ef1db05f31fa96
Sha256: 095e01f8e9b78fa9680af97770bb96191110fba9e03c195f3815eaea11f96aae
                                        
                                            GET /css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 12 Sep 2022 22:53:18 GMT
date: Mon, 12 Sep 2022 22:53:18 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   77888
Md5:    494aa509dd6b5c3a4faa3be32e165b1f
Sha1:   a7a763c57249eb58e0e3f2d1e5c33ccb22d02d33
Sha256: 7927cb61003db2e13f0771422a2b1fc76d50f6e2fbffe6ffdffce186f7c749ec
                                        
                                            GET /assets/external/insideIframe.js HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/embed/iframe/v5yg2m28cw?autoplay=0&wmode=transparent
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "631f51b5-2e72"
last-modified: Mon, 12 Sep 2022 15:35:17 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 460
x-served-by: cache-iad-kjyo7100068-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1663023200.733386,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 11890
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (45733), with no line terminators
Size:   11890
Md5:    14b80e600231e9af7999e6dfb3800fbd
Sha1:   c7fd59358696daa41061bd3fda539e9057f30466
Sha256: 04957ea1030b333697d3105d8df605b122b2745ce26e067823b2852f169ba02b
                                        
                                            GET /assets/external/E-v1.js HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/embed/iframe/v5yg2m28cw?autoplay=0&wmode=transparent
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "631f51b5-1c558"
last-modified: Mon, 12 Sep 2022 15:35:17 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:19 GMT
age: 460
x-served-by: cache-iad-kiad7000033-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1663023200.733693,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 116056
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   116056
Md5:    1e07902a555778087d61192f4e0c7472
Sha1:   b6db5f3dd3318865584a315d3d45697208a023a1
Sha256: b684dc4088d08162df35ee0879027d8f67888c0b40ea6c4d0dd38dbee5f7a84b
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8201
Expires: Tue, 13 Sep 2022 01:10:00 GMT
Date: Mon, 12 Sep 2022 22:53:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8201
Expires: Tue, 13 Sep 2022 01:10:00 GMT
Date: Mon, 12 Sep 2022 22:53:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8201
Expires: Tue, 13 Sep 2022 01:10:00 GMT
Date: Mon, 12 Sep 2022 22:53:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8201
Expires: Tue, 13 Sep 2022 01:10:00 GMT
Date: Mon, 12 Sep 2022 22:53:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8201
Expires: Tue, 13 Sep 2022 01:10:00 GMT
Date: Mon, 12 Sep 2022 22:53:19 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fa3e758-893f-4e13-94ae-85209a30089e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6670
x-amzn-requestid: 6f0e9fd2-a2a3-4b89-a109-e0ada80efb41
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X_Y9vFPHoAMFkBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63160857-3c8f54b87e1e502e2308a204;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 14:31:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: s9XL-JvEdgQ31t_VRIubCZ7fMr7qscSLt7pPtnq9FIKOya2WbUfdfQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:02:04 GMT
age: 3075
etag: "0c9cdc03cf2b5a60542cdb91de6b7b37866254cc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6670
Md5:    c3057080b51e9f8360222d0bba39807f
Sha1:   0c9cdc03cf2b5a60542cdb91de6b7b37866254cc
Sha256: 303c7c2f54dd0ef80f6a7b2cc050ff118f8907a79334dcab7e8fa4d4cab3b7bb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87c57865-c702-4995-8386-d5a054dd23e8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2711
x-amzn-requestid: d1f9060c-585c-4ac8-bc60-2b3a2c80ee65
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXb4DGKToAMFfog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa699-3522d608453b1c6374e4a94e;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:37:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eDXYc4gzXC8xdyNrP9rMoFU-Kewj4MfKQk0UUJitnTZnutZFtekXaA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:11 GMT
age: 4268
etag: "5955dc0e311eca9988970d55d222bb77a7552fec"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2711
Md5:    96d4d68111565e0e9d942cb22e3e4e93
Sha1:   5955dc0e311eca9988970d55d222bb77a7552fec
Sha256: 294fe6fa82e831192a0b16e1b2b1e57ac4ff082709a31ef52cc9c8586b9a4906
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabb8ed52-93ad-47ae-a006-da7de9e3d841.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5209
x-amzn-requestid: 8335006d-add1-4ab7-9930-e2304a6d1de2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQn93FGxIAMFSkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ced25-067cb6e120bd359b719bb421;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 20:01:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1L31YAxvPdmy1k0o-p11NcSM6ujk8NNaii936rsRrI9XoAxYF7CjIg==
via: 1.1 04e6cfc6f03b8f5e6f5459aacc86b372.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:58:11 GMT
age: 3308
etag: "f6100190de6244ae74b6c1250b997749a381ed89"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5209
Md5:    8b9c6d44f93a72d6c03ebcfadda1a48a
Sha1:   f6100190de6244ae74b6c1250b997749a381ed89
Sha256: 4bf351795fb3a9e8a1a917d6ab202b1c75007bd5dc450a869b4db5dbfdd81dc4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d542ad5-49b2-49ec-b91f-9f4913e58d1d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4810
x-amzn-requestid: 9fd1552d-1306-4164-a187-e8dee3cb7a27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBrqjEBdoAMFY8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316f310-6c15aad5779bf7d625b2ffd7;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 07:13:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2vrSdQU9eQx35iv0ENwLlT1MX6G4zcnZTkPwy_ysh4VkJorpLjfH6A==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:01:47 GMT
age: 3092
etag: "9e08828ce3d8d3170875c017ce70230fb60be657"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4810
Md5:    15c4bbfd3d31955ae2beb1e47f1fda18
Sha1:   9e08828ce3d8d3170875c017ce70230fb60be657
Sha256: c7cedd44499cf59595fd01e8ddd3bce3e93a86daeec18a7a0868c445f9ac5d51
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6844ead0-eb8f-4f28-a75b-063b2a4c1d53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7976
x-amzn-requestid: c09b1947-9386-4436-8b91-5930224dbdc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXbxcE4BIAMFuiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa66f-50a7fafb3baea1005f0a884a;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:36:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rqcrJo9n4aZ8e5sEVUquz2X-Q2Y42I6xBJt47VZay9CvZN_LTiR0vg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:53:14 GMT
age: 3605
etag: "ac3f912583cb076153a1bba5ad12d8eaf5024c91"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7976
Md5:    b851054b8d56a45bf361c894883a4cfd
Sha1:   ac3f912583cb076153a1bba5ad12d8eaf5024c91
Sha256: 5e204f7d5a3294fc2ee35a02d573c8144bd59fddb80638856ac8c733d5953871
                                        
                                            GET /hosted/images/f9/ab16fd38974ff6a98bea929f479db3/favicon.png HTTP/1.1 
Host: www.10xiv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 22:53:19 GMT
content-length: 5373
cf-ray: 749c37f77bb81c0a-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "b9ccb60a0a7843bdd0b06830cf4156ad"
last-modified: Mon, 02 Aug 2021 23:17:44 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-C1
set-cookie: __cf_bm=YEcGurP6DoGa3Ytisx.zBjyB4UpAuxoOeN4cN9STg1w-1663023199-0-ATPuz2T0yf8PJ1FtiPTk1+tyQTy66rNX6J9F8vzjxglOmkcaPjW2x3zVSpZa1K3paOQ4qRoQLaOy+0uqFmqyTFpfrlwZO/CM+3Fj85yIVhij; path=/; expires=Mon, 12-Sep-22 23:23:19 GMT; domain=.www.10xiv.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 196, 8-bit/color RGBA, non-interlaced\012- data
Size:   5373
Md5:    b9ccb60a0a7843bdd0b06830cf4156ad
Sha1:   e8dd997cd3970c68ea3fd2c54ef47f3df1546962
Sha256: f6bdf2374dc22dfcb0357e3f93d4e006e5734817e217b1ac1dac50ff20bd17bf
                                        
                                            OPTIONS /embed/v3/form/6592891/81a99195-37cd-41cb-afec-2b969356bfe5/json?hutk= HTTP/1.1 
Host: forms.hsforms.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-requested-with
Referer: https://10x.cardoneventures.com/
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.86.5
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Mon, 12 Sep 2022 22:53:20 GMT
content-length: 18
x-trace: 2B2971770C438B5A8B786DAD7C4E4F287409D4B71F000000000000000000
allow: HEAD,GET,OPTIONS
vary: Accept-Encoding
x-hubspot-correlation-id: 1d1a8c0c-f201-4959-9bf9-0547839b1b1f
access-control-allow-origin: https://10x.cardoneventures.com
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: x-requested-with
access-control-allow-credentials: false
access-control-max-age: 180
access-control-expose-headers: X-Origin-Hublet
cache-control: max-age=0, no-cache, no-store
x-robots-tag: none
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 749c37f9ef4a0af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   18
Md5:    cc7fd95a87ea3721ce1853bf3c4dd75e
Sha1:   7f687f7881adf0fc407378d375a61b8f198c0912
Sha256: 0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
                                        
                                            GET /embed/v3/form/6592891/81a99195-37cd-41cb-afec-2b969356bfe5/json?hutk= HTTP/1.1 
Host: forms.hsforms.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Content-Type: application/x-www-form-urlencoded
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.86.5
HTTP/2 200 OK
content-type: application/json;charset=utf-8
                                        
date: Mon, 12 Sep 2022 22:53:20 GMT
x-trace: 2BDF1A80A3C0F47E70EADEE321BDDDF568A58D126E000000000000000000
x-origin-hublet: na1
vary: Accept-Encoding
x-hubspot-correlation-id: 94a9d817-58de-4bfa-85ce-012d81f7bfa9
access-control-allow-origin: https://10x.cardoneventures.com
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: *
access-control-allow-credentials: false
access-control-max-age: 180
access-control-expose-headers: X-Origin-Hublet
cache-control: max-age=0, no-cache, no-store
x-robots-tag: none
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 749c37fabf9f0af6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- HTML document, ASCII text, with very long lines (13798), with no line terminators
Size:   35468
Md5:    f7ae3988c83d40d9c186a63256d5277a
Sha1:   0156be4fc43a0aa6743054d7ff15fc7e60923789
Sha256: 29e51ae53fccfdbaa1d208c67387d030c9f1dbe786a90fa2456dea3afd333d7a
                                        
                                            GET /nr-1216.min.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8=
x-amz-request-id: 4AV5AVKCCR961CNG
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8"
x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 504
x-timer: S1663023201.178036,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 14391
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32022)
Size:   14391
Md5:    b7c09cc097b2847f9edc784adba62dcb
Sha1:   5aa648623cf5e3b4b215fe5d068a7904c59f2925
Sha256: 6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa
                                        
                                            GET /1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=3971&ck=1&ref=https://10x.cardoneventures.com/success&ap=452&be=1297&fe=3654&dc=2039&perf=%7B%22timing%22:%7B%22of%22:1663023185003,%22n%22:0,%22f%22:1127,%22dn%22:1127,%22dne%22:1127,%22c%22:1127,%22s%22:1127,%22ce%22:1127,%22rq%22:1130,%22rp%22:1272,%22rpe%22:1275,%22dl%22:1280,%22di%22:1994,%22ds%22:2038,%22de%22:2241,%22dc%22:3653,%22l%22:3653,%22le%22:3766%7D,%22navigation%22:%7B%7D%7D&fcp=1720&jsonp=NREUM.setToken HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Mon, 12 Sep 2022 22:53:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 749c38005c6e0b39-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=f807103ce49f3547; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    f1442f5831dbbe0210da2d7a4180d6b8
Sha1:   2ade23c6c7a001c66f0c0a9a101ec152747b434e
Sha256: c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
                                        
                                            GET /assets/external/videoThumbnail.js HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/embed/iframe/v5yg2m28cw?autoplay=0&wmode=transparent
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "631f51b5-4cee"
last-modified: Mon, 12 Sep 2022 15:35:17 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:21 GMT
age: 461
x-served-by: cache-iad-kcgs7200056-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663023202.558856,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 19694
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   19694
Md5:    dcb8534d8a404a8a07fe9623e92fe5a5
Sha1:   e3171449329180b85891948c53bf14bc11c02382
Sha256: 856af8dbae45c432258df905a17abb0ce366a1c770ebb3fd37b17491fce57040
                                        
                                            GET /assets/external/playPauseLoadingControl.js HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/embed/iframe/troz3pmk2x?autoplay=0&wmode=transparent
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "631f51b5-3e0b"
last-modified: Mon, 12 Sep 2022 15:35:17 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:21 GMT
age: 462
x-served-by: cache-iad-kiad7000074-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1663023202.886037,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 15883
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59748), with no line terminators
Size:   15883
Md5:    a22b08be272e88f9f9cb5d36931404ad
Sha1:   df957da8dc2886427064cac808d96b37f7455b1c
Sha256: ca8ce25c2122efedb3dd68f8975f03bc0efde2f7e0e678c6c8d45c9b24ec7cc4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6267
Cache-Control: 'max-age=158059'
Date: Mon, 12 Sep 2022 22:53:22 GMT
Last-Modified: Mon, 12 Sep 2022 21:08:55 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /6592891.js HTTP/1.1 
Host: js.hs-scripts.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.214.204
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
date: Mon, 12 Sep 2022 22:53:21 GMT
x-trace: 2BB7849AB43B78A3444CD36E6A0D36E319B5547012000000000000000000
cache-control: public, max-age=60
vary: Accept-Encoding
x-hubspot-correlation-id: 8dfc504e-9ef9-4e8a-a580-ae82d522ac15
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://10x.cardoneventures.com
last-modified: Mon, 12 Sep 2022 22:53:21 GMT
cf-cache-status: MISS
expires: Mon, 12 Sep 2022 22:54:21 GMT
server: cloudflare
cf-ray: 749c3803a9540b61-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (539)
Size:   27310
Md5:    316ce3f9b2a37a1f2ac56fe4405dda3a
Sha1:   61fbba71a059f454c59f97839321c939e4fbb8f4
Sha256: ed4f5342db8719014fad40b92e928102d15f3a53e90154b8ff102e26fe6718bc
                                        
                                            GET /deliveries/a604b2573fcb1ee9a7f64a1067a65bfb.webp?image_crop_resized=640x361 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: a604b2573fcb1ee9a7f64a1067a65bfb
last-modified: Tue, 01 Mar 2022 14:29:23 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:22 GMT
age: 2257948
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000165-IAD, cache-bma1659-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023202.997745,VS0,VE100
content-length: 22166
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x361, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   22166
Md5:    6dc9c8e1020bbe9a09b5a4bef2c01dd9
Sha1:   2a03b848a69751e724feab6252aedd2264888e8b
Sha256: 5dfa5456ee94bd7967b53fad9e53d5876deb6c55a9819ce72fa8545189354af9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6267
Cache-Control: 'max-age=158059'
Date: Mon, 12 Sep 2022 22:53:22 GMT
Last-Modified: Mon, 12 Sep 2022 21:08:55 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /deliveries/ac1584a95a93925248e82f2e43742ef4.webp?image_crop_resized=640x354 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: ac1584a95a93925248e82f2e43742ef4
last-modified: Thu, 03 Mar 2022 15:15:07 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:22 GMT
age: 2257948
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kcgs7200153-IAD, cache-bma1659-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023202.043917,VS0,VE92
content-length: 17966
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x354, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   17966
Md5:    336c1696f2bd9405a38a48177662b792
Sha1:   bfeadb6611253146a88b136af33e3e25e6993bed
Sha256: 4732ed96f6fed48120a502ea0b09afed81dd65f48b0363c21145aac3dbdf7054
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 806
Cache-Control: 'max-age=158059'
Date: Mon, 12 Sep 2022 22:53:22 GMT
Last-Modified: Mon, 12 Sep 2022 22:39:57 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /deliveries/b9e950042eb9c0bb957ac34097a7ee4e.webp?image_crop_resized=640x357 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: b9e950042eb9c0bb957ac34097a7ee4e
last-modified: Mon, 14 Feb 2022 14:13:17 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:22 GMT
age: 2426357
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000055-IAD, cache-bma1659-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023202.357642,VS0,VE104
content-length: 20564
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x357, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   20564
Md5:    8a96e06aeef9027eb9853c6a844f3801
Sha1:   9cf469d4d8e990fc797f290bcc112a4542f7626b
Sha256: 0fa017a7b7a87476a6aefd71d94aa5f51d87c81dd9a875db6287afedea0aea05
                                        
                                            GET /deliveries/7fe790a07fa1fe6ae9bc293316bea427.webp?image_crop_resized=640x360 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: 7fe790a07fa1fe6ae9bc293316bea427
last-modified: Tue, 01 Mar 2022 14:38:18 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:22 GMT
age: 1157480
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kcgs7200088-IAD, cache-bma1659-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023202.488039,VS0,VE95
content-length: 15306
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   15306
Md5:    6a07741261a7083fdc5cf5c6ce3937c8
Sha1:   a7f580a6babd0dee1dd7498d26f4eb6b7b4699c3
Sha256: 035e0e4f60d99749b0297b91e1884f8512593eb3faa5e3314d3fb0959953d143
                                        
                                            GET /deliveries/7ea054bb6854d5f7d3a090400ddd3ff1.webp?image_crop_resized=640x359 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: 7ea054bb6854d5f7d3a090400ddd3ff1
last-modified: Tue, 22 Feb 2022 20:08:50 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:22 GMT
age: 1048862
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000123-IAD, cache-bma1659-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023203.588021,VS0,VE101
content-length: 19604
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x359, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   19604
Md5:    b4a69bf02f86d655dca90c38f48047f8
Sha1:   d60dcb2080e7173587e4fd2ae239c8258a14f99c
Sha256: 126e214d4c3993099abd1c28fe723045dea61b94a427f3df8499994b81eba61d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 22:53:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/conversion_async.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 12 Sep 2022 22:53:22 GMT
expires: Mon, 12 Sep 2022 22:53:22 GMT
cache-control: private, max-age=3600
etag: 15579141248118922429
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15687
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1623)
Size:   15687
Md5:    4738d969770682feba80f04bf171d65b
Sha1:   be0e0ceb91bf5ed0c64b0f3f2cc2c99c6d4cd6b7
Sha256: 1daca97cf9e8078299f94c50346e45fead45bf908ca97ded912f26986c1c4e9a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 22:53:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /deliveries/c1152f762fa91a8d28fa68ad81806adb.webp?image_crop_resized=640x360 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: c1152f762fa91a8d28fa68ad81806adb
last-modified: Fri, 04 Feb 2022 17:49:10 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:22 GMT
age: 1048862
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000054-IAD, cache-bma1659-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023203.721930,VS0,VE92
content-length: 12172
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   12172
Md5:    7e3596636e01974a41cb0a82b00f3a8d
Sha1:   4070a10dcda78aa399cf257274373d3450aac0d8
Sha256: 20227dfc63a7502aa45ff691439b1842550e66aa4878cb62fc3e702de530b4f2
                                        
                                            GET /deliveries/d00f14e970d54f483b2a4ae6c62adff0.webp?image_crop_resized=640x360 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: d00f14e970d54f483b2a4ae6c62adff0
last-modified: Fri, 04 Feb 2022 21:34:03 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:22 GMT
age: 1152763
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000035-IAD, cache-bma1659-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023203.820780,VS0,VE91
content-length: 14342
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   14342
Md5:    e7fa7436cb0868562375436e7c5ac329
Sha1:   bed87586a2a8ea88dc8bcb218fde407f3905c8fe
Sha256: 2c3dc4b34685a059695de9a599757a5a55bef424bd866fe7b0d0bc0d74b9f13f
                                        
                                            POST /g/collect?v=2&tid=G-4RP0SQD838&gtm=2oe970&_p=32316870&cid=425078746.1663023190&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663023189&sct=1&seg=0&dl=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess&dt=10X%20Your%20Business&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.32.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://10x.cardoneventures.com
date: Mon, 12 Sep 2022 22:53:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 22:53:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-165034806-1&cid=425078746.1663023190&jid=543380111&gjid=1020348053&_gid=1990324317.1663023190&_u=YADAAEAAAAAAAC~&z=1699063761 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.155
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://10x.cardoneventures.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 12 Sep 2022 22:53:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 22:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/viewthroughconversion/10861364251/?random=1663023190691&cv=9&fst=1663023190691&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa970&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess&tiba=10X%20Your%20Business&auid=1338622374.1663023189&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.217.21.162
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Sep 2022 22:53:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1039
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 12-Sep-2022 23:08:23 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2272), with no line terminators
Size:   1039
Md5:    0f327810aa2ead9b9ffe5808414fca04
Sha1:   dbfd843b0e95c9579b2aaf94c297f3e0ac2920aa
Sha256: 5f5c671f6c5b500168dee46e44640c1358f4e2d28a5acc477c626ab212f746b1
                                        
                                            GET /analytics/1663023000000/6592891.js HTTP/1.1 
Host: js.hs-analytics.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.71.176
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Mon, 12 Sep 2022 22:53:22 GMT
x-amz-id-2: DQTjYstYwuHQEhhib6npM+K6N7gOvg+Wox0kCgunmgoA75F/PW7PL2KvMpqUwNms3fWqdiS/aSo=
x-amz-request-id: JAKFN1VGWSFMY305
last-modified: Wed, 31 Aug 2022 12:18:35 GMT
etag: W/"9f937344c4f7ab9b4e1e2b8ee6e917be"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
expires: Mon, 12 Sep 2022 22:58:22 GMT
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 749c3808ba76b500-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (63804)
Size:   20096
Md5:    58d04e79c0ce0c8c7b1c2d966fbb1fb8
Sha1:   3acd67d65d47c92feb5de498fd4458cd968cd7b4
Sha256: 254d989f9fa3a1ce305ecfb5c5d8c8d4ee7d1cc1560b959720d06c1ccf78a06b
                                        
                                            GET /deliveries/a1e14ba03d06198f519e4313f7ffd72b.webp?image_crop_resized=640x360 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: a1e14ba03d06198f519e4313f7ffd72b
last-modified: Fri, 04 Feb 2022 17:39:50 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:23 GMT
age: 1048862
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000109-IAD, cache-bma1659-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663023203.153962,VS0,VE103
content-length: 15416
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   15416
Md5:    3a124758356485475120ab32f1cb1c17
Sha1:   0a2bd6fb22a4e655e78e7e932e4ac673e03173d4
Sha256: b9507457c29de3159f5b987b952397c662a9e49a94d7f8f57fa62e07975852f9
                                        
                                            GET /hs-script-loader-public/v1/config/pixel/json?portalId=6592891 HTTP/1.1 
Host: api.hubapi.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.200.204
HTTP/2 200 OK
content-type: application/json;charset=utf-8
                                        
date: Mon, 12 Sep 2022 22:53:23 GMT
cf-ray: 749c380b5e860b41-OSL
access-control-allow-origin: https://10x.cardoneventures.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: 7a2bb26d-e044-499a-9497-464eecee2798
x-trace: 2B347C9DA55ACB7E843E5D0DA391C0F5D2D58F0E5D000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vbUhSBAeesupCBgA0PKKrmI5zOQI6UN7FK8ImuZVYnuxVuLNcoPpD%2FHOIXkTbCrYOVzMjIv0vdrw1S3qA5KNgbzcDuO65cgKiun4FJ2p%2B9iLZbknbuVR3AF6iGazLY2D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   137
Md5:    074b4506d75edd5591e561a67f98491c
Sha1:   e0b6dd0f0e5147bb4e7fcb08686d6934e7c5d11f
Sha256: 2cc82e4673878a4b0deb4aed443c0719bf08f8a16ed7377a397145b346714141
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 22:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/1p-user-list/10861364251/?random=1663023190691&cv=9&fst=1663020000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa970&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess&tiba=10X%20Your%20Business&async=1&fmt=3&is_vtc=1&random=2229024553&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Sep 2022 22:53:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /deliveries/a79222f621eaf84a96302ddc36bdaec1.webp?image_crop_resized=640x360 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: a79222f621eaf84a96302ddc36bdaec1
last-modified: Fri, 04 Feb 2022 17:44:06 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:22 GMT
age: 0
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kjyo7100034-IAD, cache-bma1659-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1663023202.169776,VS0,VE431
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   69454
Md5:    e935088020e7301897e928b961b52e44
Sha1:   36fc7fc009a2952a340f7b1f3d0913311dae013f
Sha256: e3f6a2503c4f25312dc1ce9230b2c4370b7d60ba8117941ec8b65effbad95d6a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 22:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /li.lms-analytics/insight.min.js HTTP/1.1 
Host: snap.licdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         2.22.244.73
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
                                        
last-modified: Fri, 12 Aug 2022 20:23:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=53181
date: Mon, 12 Sep 2022 22:53:23 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7751)
Size:   3063
Md5:    57efbbeb3e1d23c82b677511c67c8b0e
Sha1:   f927ba115ef4be362694c22850ddbdd1c1b054d1
Sha256: 873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
                                        
                                            GET /collectedforms.js HTTP/1.1 
Host: js.hscollectedforms.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.131.171
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 12 Sep 2022 22:53:22 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 18 Jul 2022 02:17:32 UTC
etag: W/"877e5f54a66a69786dec54038d0864c4"
x-amz-server-side-encryption: AES256
x-amz-version-id: gdKWpz_yvObw8s97wY_QgOhrdmJzIElp
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 a97f872e6a14f227f3c3ea78467c0330.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P3
x-amz-cf-id: B7m7G5YhQz0jaKBUwcaxN2aA6-NSmGSxTw0l-ZxdCCE1bI9mKxHK0g==
cache-control: s-maxage=86400, max-age=0
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.285/bundles/project.js&cfRay=749c3805f89e0afa-ARN
x-hs-target-asset: collected-forms-embed-js/static-1.285/bundles/project.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: MISS
server: cloudflare
cf-ray: 749c3805f89e0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size:   36769
Md5:    b0085172398e38a90910d4cb925ce6da
Sha1:   8fba82dbab843135c032c318587cc79d41d79d95
Sha256: 99b7635eb83d27d35e134ca673de0f6fe11ec991bb248e75c3e928629d418272
                                        
                                            GET /assets/external/externalPlayer.js HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/embed/iframe/wtel0q0jxe?autoplay=0&wmode=transparent
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "631f51b5-5a59"
last-modified: Mon, 12 Sep 2022 15:35:17 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:23 GMT
age: 464
x-served-by: cache-iad-kcgs7200061-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663023204.610725,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 23129
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   23129
Md5:    7ff7cc715d484f93b368d7b50a3bc641
Sha1:   a9eecdf6cc6e8a9e1b7883bf84429a5c376eae16
Sha256: 7068b63a663648717387f2309d67e5541fee1b1308d0c6c7964df37c5c259cb8
                                        
                                            GET /collect?v=2&fmt=js&pid=2069236&time=1663023191275&url=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.42.14
HTTP/2 302 Found
                                        
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2069236%26time%3D1663023191275%26url%3Dhttps%253A%252F%252F10x.cardoneventures.com%252Fsuccess%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQK3kYUxvKXKAwAAAYMz6EV7J4jzntgU6mg2-Bbe1zZhAeiSQCasenCMfvPYL6umFQHcQ00_DVqaWQ; Max-Age=2592000; Expires=Wed, 12 Oct 2022 22:53:23 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure AnalyticsSyncHistory=AQInyWLBQ2aqvgAAAYMz6EV7v0AIZWmtntzd-y2pyrFT9vAhoNanb6VIVBvhSd8VXfGLR_YwmliHK8FVrVzzQQ; Max-Age=2592000; Expires=Wed, 12 Oct 2022 22:53:23 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&00893935-1ff3-45fb-8b9d-8a0dad72d3a2"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 12-Sep-2023 22:53:23 GMT; SameSite=None lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2380:u=1:x=1:i=1663023203:t=1663109603:v=2:sig=AQFGk2YD00WSlB1QojLghL3f0qENQkl3"; Expires=Tue, 13 Sep 2022 22:53:23 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXogsNPPy7mWa2J12Geag==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5EA0EE43AB984F9BAAAF5B9D6424384D Ref B: OSL30EDGE0318 Ref C: 2022-09-12T22:53:23Z
date: Mon, 12 Sep 2022 22:53:23 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /assets/external/engines/hls_video.js HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/embed/iframe/v5yg2m28cw?autoplay=0&wmode=transparent
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "631f51b5-1be2e"
last-modified: Mon, 12 Sep 2022 15:35:17 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 22:53:23 GMT
age: 464
x-served-by: cache-iad-kcgs7200162-IAD, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1663023204.986784,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 114222
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65469)
Size:   114222
Md5:    c27ab5c4623ea6b27cf7fee1af63cec6
Sha1:   c5ee43dca45ecf91f798c7caa8477ae21ac077cf
Sha256: 36368bd3be57f27e965d223f370c6384c8e1d8c43e671a8e299c0009056cf9f5
                                        
                                            GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2069236%26time%3D1663023191275%26url%3Dhttps%253A%252F%252F10x.cardoneventures.com%252Fsuccess%26liSync%3Dtrue HTTP/1.1 
Host: www.linkedin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://10x.cardoneventures.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.42.14
HTTP/2 302 Found
                                        
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=2069236&time=1663023191275&url=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None bcookie="v=2&8cf62183-c68b-4906-8e6b-97774ce9a8c4"; Domain=.linkedin.com; Expires=Tue, 12-Sep-2023 22:53:23 GMT; Path=/; Secure; SameSite=None bscookie="v=1&20220912225323d777b8bf-0a29-4de8-8a72-ada0224d8ff9AQErvvcqL9OB9xUa2P8CmFxoZq92lGFd"; Domain=.www.linkedin.com; Expires=Tue, 12-Sep-2023 22:53:23 GMT; Path=/; HttpOnly; Secure; SameSite=None li_gc=MTswOzE2NjMwMjMyMDM7MjswMjGKcH59+28V9Ow78cjpS8NFOKrwl6FMDzdWzHG0IwRRIQ==; Domain=.linkedin.com; Expires=Sat, 11 Mar 2023 22:53:23 GMT; Path=/; Secure; SameSite=None lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2341:u=1:x=1:i=1663023203:t=1663109603:v=2:sig=AQGF-l9m0vn8texK5li_NUE_XYCAjrKY"; Expires=Tue, 13 Sep 2022 22:53:23 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXogsNSo8yu8PciCcjjdQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A07F081B67594B5394762347BF175220 Ref B: OSL30EDGE0318 Ref C: 2022-09-12T22:53:23Z
date: Mon, 12 Sep 2022 22:53:23 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /deliveries/49ff41038ed2035b766451d62b81dcb8b7441ea0.webp?image_crop_resized=640x360 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers