| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7c60904d097cde276e4e5632cef1b9f1 4f805026462589345d85e8df2d18eafba6237504 12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7800
Expires: Fri, 25 Nov 2022 14:54:52 GMT
Date: Fri, 25 Nov 2022 12:44:52 GMT
Connection: keep-alive
|
|
| cf.securepagenow.com/optin_sports | 104.16.12.194 | 302 Found | 494 B |
URL HTTP/1.1cf.securepagenow.com/optin_sports IP104.16.12.194:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (479) Hasheb1a210ea3b393ea2a70354bfdb14bb4 3a274cc0d3c90cdd4c16f22ded99ed9da8f32811 26962ff4a62d78b81fbb0b6693c4f58fff18228601910dea5584820df9d55a92
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /optin_sports HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 25 Nov 2022 12:44:52 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://cf.securepagenow.com/optin1661179021022
CF-Ray: 76fa7a67dbfd1c06-OSL
Access-Control-Allow-Origin: *
Cache-Control: no-cache
Vary: Accept-Encoding
CF-Cache-Status: MISS
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
Status: 302 Found
X-Frame-Options: ALLOWALL
X-Powered-By: Phusion Passenger Enterprise 6.0.7
X-Rack-Cache: miss
X-Request-Id: 659ba60d357ba7ea700c6727a10f9891
X-Runtime: 0.096191
Set-Cookie: __cf_bm=z_cEAobtX9sstkVdtNFGXntlp7gPkw9c5wgGnpcWXsQ-1669380292-0-AcYcFvgnD37iMT6es/HgCTbS/q8l7zEkaJhJBRwVnDpRQHKGcIACzrBlihwaOjBcPKjN6fKdgDFInRMpRUB90/xeUGMtd9n4Ot5yFKq4kUnq; path=/; expires=Fri, 25-Nov-22 13:14:52 GMT; domain=.cf.securepagenow.com; HttpOnly; SameSite=None
Server: cloudflare
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash260e9998c20d831b66f1029c8f47aac9 716d630f647c54dc69a7f9c63a6cac294b3df7f7 c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10212
Expires: Fri, 25 Nov 2022 15:35:04 GMT
Date: Fri, 25 Nov 2022 12:44:52 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash10730f388c028d64e19b8a48d414768f e43b104e57e5ea7ff8568835776858cf2ede6f00 f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1749
Cache-Control: max-age=166531
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 11:00:23 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Fkt9rpsFxEhh+mJXWbcEf3Cm4EwRDLr2ifqhRncasJdJvhKc3mgasSLxLPuU4OAsu2QQPCR5C/c=
x-amz-request-id: M1E5VFZMP1BTV52H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 12:43:50 GMT
age: 62
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash4d7e4eed097b9c4e5d509419f1cfc85a 290bb3d428a7c6330e2e3d73a952b16f820896c8 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 12:17:26 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1646
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash69a9ecaddd9758857583f3a3cf4a66a0 57f27989064a5e6b5faaef2b1865996a2b30c7fd a475c1f979c76fb6a89444f186e5b264811eaa065dc6faf472d017fe7fd232a3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=147120
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "63805474-117"
Expires: Sun, 27 Nov 2022 05:36:52 GMT
Last-Modified: Fri, 25 Nov 2022 05:36:52 GMT
Server: nginx
Content-Length: 279
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash7d77ac1ccb2d74d694a83f20d746a4aa 45e39e0a3f94a7074063fc7ef1c05f81d219b4ef 055cf4be692f4f61fc8b0a691d365eb755b2020e89357895f2e03e590aad24e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1955
Cache-Control: max-age=167780
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "63809d85-116"
Expires: Sun, 27 Nov 2022 11:21:12 GMT
Last-Modified: Fri, 25 Nov 2022 10:48:37 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hasha130aed83a382264ec43322177a9c014 3a9e6f3d1042d4d7f9a4ef820d87771fed73d0a9 2ccdd60ee29576aebe6879a34b8245ecebf6825ffc87a85f6f6dfdc9893c7522
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5469
Cache-Control: max-age=156538
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "638063e1-117"
Expires: Sun, 27 Nov 2022 08:13:50 GMT
Last-Modified: Fri, 25 Nov 2022 06:42:41 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash1dde50dccde8c9b4c40c240e5c4c46f3 e56983b072fb1445adbe4c99da5d5329cd4c59c4 0faac19b770f26f8ab536cc27785bd23ccc75b6f81a690757b83c12320d8e330
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2420
Cache-Control: max-age=154573
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "6380681d-118"
Expires: Sun, 27 Nov 2022 07:41:05 GMT
Last-Modified: Fri, 25 Nov 2022 07:00:45 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash1dde50dccde8c9b4c40c240e5c4c46f3 e56983b072fb1445adbe4c99da5d5329cd4c59c4 0faac19b770f26f8ab536cc27785bd23ccc75b6f81a690757b83c12320d8e330
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2268
Cache-Control: max-age=154421
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "6380681d-118"
Expires: Sun, 27 Nov 2022 07:38:33 GMT
Last-Modified: Fri, 25 Nov 2022 07:00:45 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hashf2d8c84168fac835cfedc4e3f49dd87e 8850fca6914fe68a79ba16dbf5d8aa120ba9eed6 02366941cc203e7fb16325c12b9c3e59952473eab7a943b3a9faeef2eaeb5218
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2319
Cache-Control: max-age=86436
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "637f5e59-118"
Expires: Sat, 26 Nov 2022 12:45:28 GMT
Last-Modified: Thu, 24 Nov 2022 12:06:49 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
|
|
| cf.securepagenow.com/assets/pushcrew.js | 104.16.15.194 | 200 OK | 627 B |
URL HTTP/2cf.securepagenow.com/assets/pushcrew.js IP104.16.15.194:0
File typeASCII text, with very long lines (637), with no line terminators Hash5d116229731387dd8b1bd023c0487983 9268c06dc38f455d18035653158cd6de7a946c06 1bd6121e3c06add32e19b02a917edeb52f5bc13a4ece118287c2239e44dffbc2
GET /assets/pushcrew.js HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=AKYTdYxT4yNtY0d4GhK9DR7gd5tcQGjstdzXIv7JMC8-1669380292-0-AXUq7LD1iTSVIWcWnZM9MYY+IXHUqdqtjK9ACeKTRcMPo7HK4Rl8fuZHUvJi+4MZesQ7J+o9itO2X0DeEGUOlRhIN2XtN8xnonvYSVPpBSYC
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: application/x-javascript
cf-ray: 76fa7a6c2d0ffab4-OSL
access-control-allow-origin: *
age: 32
cache-control: public, max-age=1200
etag: W/"637bf172-27d"
expires: Fri, 25 Nov 2022 13:04:52 GMT
last-modified: Mon, 21 Nov 2022 21:45:22 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/assets/lander.css | 104.16.15.194 | 200 OK | 72 kB |
URL HTTP/2cf.securepagenow.com/assets/lander.css IP104.16.15.194:0
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (53232) Hashd43ffe02542e06f64c388b8dde39a537 5de400e8a086fabace98050f4a0d68b69ebaf63f b10f65721695993c37293d78f0fb1635e3651abddfb630093863d5739eb5c941
GET /assets/lander.css HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=AKYTdYxT4yNtY0d4GhK9DR7gd5tcQGjstdzXIv7JMC8-1669380292-0-AXUq7LD1iTSVIWcWnZM9MYY+IXHUqdqtjK9ACeKTRcMPo7HK4Rl8fuZHUvJi+4MZesQ7J+o9itO2X0DeEGUOlRhIN2XtN8xnonvYSVPpBSYC
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/css
cf-ray: 76fa7a6c1cf9fab4-OSL
access-control-allow-origin: *
age: 136
cache-control: public, max-age=1200
etag: W/"637bf173-6a514"
expires: Fri, 25 Nov 2022 13:04:52 GMT
last-modified: Mon, 21 Nov 2022 21:45:23 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 12:08:53 GMT
cache-control: public,max-age=3600
age: 2159
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hashf2d8c84168fac835cfedc4e3f49dd87e 8850fca6914fe68a79ba16dbf5d8aa120ba9eed6 02366941cc203e7fb16325c12b9c3e59952473eab7a943b3a9faeef2eaeb5218
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2319
Cache-Control: max-age=86436
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Etag: "637f5e59-118"
Expires: Sat, 26 Nov 2022 12:45:28 GMT
Last-Modified: Thu, 24 Nov 2022 12:06:49 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
|
|
| cf.securepagenow.com/assets/lander.js | 104.16.15.194 | 200 OK | 678 kB |
URL HTTP/2cf.securepagenow.com/assets/lander.js IP104.16.15.194:0
File typeASCII text, with very long lines (32752) Size678 kB (678265 bytes) Hashb8d1beaa14b98b06aeaa4bcd4cb8e4f9 9b5abeb60374acbdc87f893dce80df18067241f5 7a698bc859ee4fa0ef300d5c5057a1cf1d6f531f421bc962615af0879ca85d78
GET /assets/lander.js HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=AKYTdYxT4yNtY0d4GhK9DR7gd5tcQGjstdzXIv7JMC8-1669380292-0-AXUq7LD1iTSVIWcWnZM9MYY+IXHUqdqtjK9ACeKTRcMPo7HK4Rl8fuZHUvJi+4MZesQ7J+o9itO2X0DeEGUOlRhIN2XtN8xnonvYSVPpBSYC
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: application/x-javascript
cf-ray: 76fa7a6c2d0cfab4-OSL
access-control-allow-origin: *
age: 369
cache-control: public, max-age=1200
etag: W/"637bf1b5-2391a3"
expires: Fri, 25 Nov 2022 13:04:52 GMT
last-modified: Mon, 21 Nov 2022 21:46:29 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashdf06e70fc8a35facf1d8db463d18e231 fa8a2975566cc792898f870e48ae7518d3657326 4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6113
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 12:44:52 GMT
Last-Modified: Fri, 25 Nov 2022 11:02:59 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
|
| use.fontawesome.com/releases/v5.9.0/webfonts/fa-solid-900.woff2 | 172.64.133.15 | 200 OK | 75 kB |
URL HTTP/2use.fontawesome.com/releases/v5.9.0/webfonts/fa-solid-900.woff2 IP172.64.133.15:0
File typeWeb Open Font Format (Version 2), TrueType, length 75440, version 329.-1049\012- data Hashb5cf8ae26748570d8fb95a47f46b69e1 07bed153d47f9129a944ee54dd72952deed074c8 cd398be1a91817126cef10224738e624358edf6f08043abad7e60c1aaeccc8d0
GET /releases/v5.9.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cf.securepagenow.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: font/woff2
content-length: 75440
x-amz-id-2: kOT+8tX/Rar1Y1VDzxtVikQh6bRrA7lp+1+T0RnlyZ/Jjzqx3YLTwOBeL3WPBFxNxmFLJ0FOQjA=
x-amz-request-id: CYJ3RYJ2HTQ9E0TY
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:48:27 GMT
etag: "b5cf8ae26748570d8fb95a47f46b69e1"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 144668
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mk%2BJekjFNGOTFGBZ%2FMFrOFoQZ9qKJXkT5mXVqbVWkXQLCWGdNl6JdJp1rh3d5u4jRSlqx5y0ETT%2Fbi2EFfnnaEyO5CceuxCXoDWCvh0nLHGpUa%2F8V02LrAUrcRf%2FN07%2BaN%2BZvibH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76fa7a6e49617783-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 52.35.190.173 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.35.190.173:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MgiFvn4IGkQl3eUje/HxVA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 22+YKjaiQMKoG0SxlXu7Fo9d0kE=
|
|
| static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 | 104.16.57.101 | 200 OK | 6.4 kB |
URL HTTP/2static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP104.16.57.101:0
Hash64a7110c5e2d766ce00b15b6ae7c9eb8 3e8724570883ae2f5f438ba333839dcf001446bd f96e427027032166b79ee3e81d7a7652bb876beeb901f4d9844de16cdc0d085c
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cf.securepagenow.com
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fa7a6c8c39b506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 278 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
Hash97dc61e35061be309c5ac6a3dd52bff7 bb12b69c46b91492a7da8699fd975c3e9caa41ab ee23b3ef4be7bddea2caa05d34214ca5c1a5c22f16b10e17e5755d9035428df1
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 512
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
server: cloudflare
cf-ray: 76fa7a6c8bf1b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/vendor.js | 104.16.15.194 | 200 OK | 5.7 kB |
URL HTTP/2cf.securepagenow.com/vendor.js IP104.16.15.194:0
Hashc3b8a7956509d083fdb641f104378834 a3c32f65c8c1a34752663ea24151a8e4d35869a0 9aa90f486c647f263a3ebb5f3bb66719c9cc98bd6772b852fa2b80f7fd6bdc7f
GET /vendor.js HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=AKYTdYxT4yNtY0d4GhK9DR7gd5tcQGjstdzXIv7JMC8-1669380292-0-AXUq7LD1iTSVIWcWnZM9MYY+IXHUqdqtjK9ACeKTRcMPo7HK4Rl8fuZHUvJi+4MZesQ7J+o9itO2X0DeEGUOlRhIN2XtN8xnonvYSVPpBSYC
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
content-type: application/javascript
cf-ray: 76fa7a708931fab4-OSL
access-control-allow-origin: *
age: 1
cache-control: max-age=900, public
etag: W/"7422e50efbaea439fda7ef3b0eb54ee1"
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: 581e49c9b7bdd06dab54c00931f4256b223e620e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: fresh
x-request-id: 851302a7010c4321972de94e9b510635
x-runtime: 0.017497
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 34 kB |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
File typePNG image data, 1200 x 1649, 8-bit colormap, non-interlaced\012- data Hashf3dbc9baab6462d5d0942d97f86eed6c 9b00474da25e57a5f6873940fefb41ec5d89e959 0f045c39edbcfca0ba9231cd9078f29ca3b647771b80f4dc86f41cc07c7568ce
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 581
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
server: cloudflare
cf-ray: 76fa7a709a99b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/cdn-cgi/rum? | 104.16.15.194 | 204 No Content | 0 B |
URL HTTP/2cf.securepagenow.com/cdn-cgi/rum? IP104.16.15.194:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 14058
Origin: https://cf.securepagenow.com
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=AKYTdYxT4yNtY0d4GhK9DR7gd5tcQGjstdzXIv7JMC8-1669380292-0-AXUq7LD1iTSVIWcWnZM9MYY+IXHUqdqtjK9ACeKTRcMPo7HK4Rl8fuZHUvJi+4MZesQ7J+o9itO2X0DeEGUOlRhIN2XtN8xnonvYSVPpBSYC; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTU5NjUzODI=:visited=true; cf:visitor_id=8209c8be-3fcf-400c-a92e-03b654316f60; addevent_track_cookie=cd086111-807e-40d6-a5c7-05b66ad0910d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 25 Nov 2022 12:44:53 GMT
access-control-allow-origin: https://cf.securepagenow.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 76fa7a723bcffab4-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 672 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash19754ed4d508cf576c80cf36e0db8c50 f459beac714e5be68aa75349fa806a5642af456a 5216f197f782f4bb872e02a677986af90a488015910f8d3864b796ad68dbd389
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 557
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
server: cloudflare
cf-ray: 76fa7a709a9eb503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 14 kB |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
File typegzip compressed data, from Unix\012- data Hashb7c09cc097b2847f9edc784adba62dcb 5aa648623cf5e3b4b215fe5d068a7904c59f2925 6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 590
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
server: cloudflare
cf-ray: 76fa7a70baecb503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| d2saw6je89goi1.cloudfront.net/uploads/digital_asset/file/1052404/nfl-icon-22.png | 143.204.42.79 | 200 OK | 6.2 kB |
URL HTTP/2d2saw6je89goi1.cloudfront.net/uploads/digital_asset/file/1052404/nfl-icon-22.png IP143.204.42.79:0
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash9a7a8591960a761cdfd0ef8d3daefe76 9cdd5399c7f9ffd837786cfec925889ff139abe2 11bceac90a7efc89ec17e237df13f2a8c8140feaf8ce7166e247f7dfb9c583e8
GET /uploads/digital_asset/file/1052404/nfl-icon-22.png HTTP/1.1
Host: d2saw6je89goi1.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 6179
date: Fri, 25 Nov 2022 12:44:54 GMT
last-modified: Thu, 25 Aug 2022 09:45:54 GMT
etag: "9a7a8591960a761cdfd0ef8d3daefe76"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XVHmI7bIiZNLphGHdGKgJkNpWXiAk66-oJob-avtLEnxk1HTqufo8A==
X-Firefox-Spdy: h2
|
|
| bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2104&ck=1&ref=https://cf.securepagenow.com/optin1661179021022&ap=280&be=726&fe=1627&dc=1513&perf=%7B%22timing%22:%7B%22of%22:1669380291125,%22n%22:0,%22f%22:394,%22dn%22:398,%22dne%22:398,%22c%22:398,%22s%22:402,%22ce%22:650,%22rq%22:650,%22rp%22:695,%22rpe%22:697,%22dl%22:709,%22di%22:1491,%22ds%22:1513,%22de%22:1608,%22dc%22:1626,%22l%22:1626,%22le%22:1744%7D,%22navigation%22:%7B%7D%7D&fcp=958&jsonp=NREUM.setToken | 162.247.241.14 | 200 OK | 72 B |
URL HTTP/1.1bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2104&ck=1&ref=https://cf.securepagenow.com/optin1661179021022&ap=280&be=726&fe=1627&dc=1513&perf=%7B%22timing%22:%7B%22of%22:1669380291125,%22n%22:0,%22f%22:394,%22dn%22:398,%22dne%22:398,%22c%22:398,%22s%22:402,%22ce%22:650,%22rq%22:650,%22rp%22:695,%22rpe%22:697,%22dl%22:709,%22di%22:1491,%22ds%22:1513,%22de%22:1608,%22dc%22:1626,%22l%22:1626,%22le%22:1744%7D,%22navigation%22:%7B%7D%7D&fcp=958&jsonp=NREUM.setToken IP162.247.241.14:0
File typeASCII text, with no line terminators Hash107d93e382e2c9b00fbf9fb0edc65d86 77e750e3ebf9706f4f6dd253785602d70be17c6c a1ee50b689ea433a0acdccbf4ee4629e9ea3f9c4bcdd21effb334359a2f9e937
GET /1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2104&ck=1&ref=https://cf.securepagenow.com/optin1661179021022&ap=280&be=726&fe=1627&dc=1513&perf=%7B%22timing%22:%7B%22of%22:1669380291125,%22n%22:0,%22f%22:394,%22dn%22:398,%22dne%22:398,%22c%22:398,%22s%22:402,%22ce%22:650,%22rq%22:650,%22rp%22:695,%22rpe%22:697,%22dl%22:709,%22di%22:1491,%22ds%22:1513,%22de%22:1608,%22dc%22:1626,%22l%22:1626,%22le%22:1744%7D,%22navigation%22:%7B%7D%7D&fcp=958&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 12:44:53 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 76fa7a747d09b50f-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=fb0358ef89b7b1a9; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7626
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 12:44:54 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7626
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 12:44:54 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7626
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 12:44:54 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash6827d82f488045e02e40d6a2fdbae4b3 4944139a4b08769511ffc6aa913857d88a0db7bc 0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7626
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 12:44:54 GMT
Connection: keep-alive
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 12 kB |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
Hash7fb355c36bc293c178c1de1b73ba2f28 b4393fefa0309d8c9820ea58a697cb62d914c4a1 690c713e4879f722de77594412e191f04b1a90cbb258500ea7ee769c408e4a0f
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 557
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
server: cloudflare
cf-ray: 76fa7a6d7d68b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasheb94ecb5881a7e49d964e4287d11e7a4 4b131a189db1b615e2519a28cad83d78297ab67f f3693e29eb7b72361093434142e3f18969c1a0b02350fab430fa29c7c127bd1a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11401
x-amzn-requestid: 3bc374eb-7d70-4b95-94a7-2ad06cae4726
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtHcmoAMFxgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-333793987245ff9e741b9aed;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K4A6bdVv0gauO3YWTEPWMS6fhuB9CZ6o5dUL-O6G5-NzqOGQRzQLUw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:30:31 GMT
age: 51263
etag: "4b131a189db1b615e2519a28cad83d78297ab67f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash481c033b9ffd030ff0de6e35cf788b47 85d3baad9217af2b5d75c019d2ef95dbb919a788 02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 8f679d7f-2ea5-4e47-b78d-79af59435a62
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFPHYHkAIAMFpBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637ec562-26108a785e910dc3355d58f1;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 01:14:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NKwpIdw2RZNZNh69AF5GNvunA_QfRGClvzcRP3zYwn7c8BLBlt097g==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 08:37:15 GMT
age: 14859
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg | 34.120.237.76 | 200 OK | 4.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4006a9037ab5f28dca62b0aa7a704c41 74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b 556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 02:07:28 GMT
age: 38246
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| app.clickfunnels.com/mailcheck.min.js | 104.16.12.194 | 200 OK | 9.1 kB |
URL HTTP/2app.clickfunnels.com/mailcheck.min.js IP104.16.12.194:0
File typeC source, ASCII text, with very long lines (525) Hash85a58e85f6b1a16e828b2fc619863a9a 93e21254dd7acc7d805b70bacd467a41858bec57 8e10dbc8d5da1f3ebf99a27dfa157ea201eb3f563151f1b09a1a33cfc29b83f2
GET /mailcheck.min.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: application/x-javascript
cf-ray: 76fa7a6c6b0bfabc-OSL
access-control-allow-origin: *
age: 460
etag: W/"637bf173-a8d"
last-modified: Mon, 21 Nov 2022 21:45:23 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=LMZLtp8orEev17daG4AIXSdZcbizy8VmiSGOxa2LmbE-1669380292-0-AahR1RiQCgjioIm89abtzhOEf6dRVc91gFGldTG+dyO3PovrW8XTjqFqKGKZzA07YZVhncPZ9lrj7A5qy0hR2V9tBYsLjkK4vC85LXQox8lS; path=/; expires=Fri, 25-Nov-22 13:14:52 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 8.0 kB |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8b6ee13d43732f7c764a49500d092865 5d15fd672e968d59b541e4d5d0d01cd5e69f4075 fc3623d527147e1c6aab399251ed8d527e6eefdee6ad7183f00df2613498bfe4
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 596
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
server: cloudflare
cf-ray: 76fa7a724cf1b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/optin1661179021022 | 104.16.15.194 | 200 OK | 0 B |
URL HTTP/2cf.securepagenow.com/optin1661179021022 IP104.16.15.194:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /optin1661179021022 HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/html; charset=utf-8
cf-ray: 76fa7a6b4bd7fab4-OSL
access-control-allow-origin: *
age: 1
cache-control: max-age=60, public, s-maxage=600, r-maxage=10
last-modified: Wed, 07 Sep 2022 09:15:38 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: eacc0eb2fc971551d6cfddde29331c381220ec39
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: fresh
x-request-id: 21d5c643fe4271c3cb83b5136178a512
x-runtime: 0.274348
set-cookie: __cf_bm=AKYTdYxT4yNtY0d4GhK9DR7gd5tcQGjstdzXIv7JMC8-1669380292-0-AXUq7LD1iTSVIWcWnZM9MYY+IXHUqdqtjK9ACeKTRcMPo7HK4Rl8fuZHUvJi+4MZesQ7J+o9itO2X0DeEGUOlRhIN2XtN8xnonvYSVPpBSYC; path=/; expires=Fri, 25-Nov-22 13:14:52 GMT; domain=.cf.securepagenow.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa; report-to cf-csp-endpoint
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 755
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:45:00 GMT
server: cloudflare
cf-ray: 76fa7aa08de6b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 IP142.250.74.10:0
GET /css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 12:44:52 GMT
date: Fri, 25 Nov 2022 12:44:52 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| cf.securepagenow.com/assets/userevents/application.js | 104.16.15.194 | 200 OK | 0 B |
URL HTTP/2cf.securepagenow.com/assets/userevents/application.js IP104.16.15.194:0
GET /assets/userevents/application.js HTTP/1.1
Host: cf.securepagenow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/optin1661179021022
Cookie: __cf_bm=AKYTdYxT4yNtY0d4GhK9DR7gd5tcQGjstdzXIv7JMC8-1669380292-0-AXUq7LD1iTSVIWcWnZM9MYY+IXHUqdqtjK9ACeKTRcMPo7HK4Rl8fuZHUvJi+4MZesQ7J+o9itO2X0DeEGUOlRhIN2XtN8xnonvYSVPpBSYC
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: application/x-javascript
cf-ray: 76fa7a6c2d0afab4-OSL
access-control-allow-origin: *
age: 901
cache-control: public, max-age=1200
etag: W/"637bf173-147c"
expires: Fri, 25 Nov 2022 13:04:52 GMT
last-modified: Mon, 21 Nov 2022 21:45:23 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 645
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:45:00 GMT
server: cloudflare
cf-ray: 76fa7aa08de9b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 555
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
server: cloudflare
cf-ray: 76fa7a6c8bf4b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 645
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
server: cloudflare
cf-ray: 76fa7a724cf5b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 556
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
server: cloudflare
cf-ray: 76fa7a6c8befb503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 555
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
server: cloudflare
cf-ray: 76fa7a6c8bf3b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.9.0/css/v4-shims.css | 172.64.133.15 | 200 OK | 0 B |
URL HTTP/2use.fontawesome.com/releases/v5.9.0/css/v4-shims.css IP172.64.133.15:0
GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/css
x-amz-id-2: HpuDfuJOnoRBIn1oGWh6kpnFISyPAhBcUuSh2sgaSOixf+diILYpFUsoF1uDkiR93wgKGECAn7k=
x-amz-request-id: F0PPGVAN5CXAHSGM
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2590387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QrikEJVGNupoqifJ8hwIlMwC4evAkDWwOPiXTYGIqOlqC8wavXdm8k7MGLXgyARgPzI%2B1kCesb512nvyoL%2FRsSf%2BiTf9NLzM4EG6CaPVIRSzm6RkxY6T7UipiX2nM7Z16VMIWL8J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fa7a6cc9358e26-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 547
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
server: cloudflare
cf-ray: 76fa7a755972b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 753
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:45:00 GMT
server: cloudflare
cf-ray: 76fa7aa08de5b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 890
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
server: cloudflare
cf-ray: 76fa7a724cf2b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1103
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
server: cloudflare
cf-ray: 76fa7a746ff3b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.9.0/css/all.css | 172.64.133.15 | 200 OK | 0 B |
URL HTTP/2use.fontawesome.com/releases/v5.9.0/css/all.css IP172.64.133.15:0
GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cf.securepagenow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:52 GMT
content-type: text/css
x-amz-id-2: vC8KBN503iyWKZzHxfJc5rs99Ocw4DSTaifdaL1SsWTbuhhIHZc4Cm+BPlh6dJ7ueugjQrc5cWE=
x-amz-request-id: F0PHW7H6699FG8TW
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2590387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AfJO24P8lIRU0cawlXM7NnA8umSzzwfsULB4MbpT6lLodG3jVfS5P3FUnKLCX9SyzX7cXBMRoHVxV%2Bb8S%2BoyN768Z9aYAM30991WbZs5yaD%2Bh98euAZJXkxPlGmNnbdz4cTmI3WV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fa7a6cb92a8e26-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 535
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
server: cloudflare
cf-ray: 76fa7a709a98b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 557
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
server: cloudflare
cf-ray: 76fa7a709aa1b503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 557
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
server: cloudflare
cf-ray: 76fa7a70aadcb503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa | 104.18.20.157 | 200 OK | 0 B |
URL HTTP/2csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa IP104.18.20.157:0
POST /cdn-cgi/script_monitor/report?m=32Afi3TyimrsyRN7OqGUri9Vq56RJm32HBcjLelB7AU-1669380292-0-AWZ952YwFhrSI_ICxC06dO6LI2KKkvIfKqqfMOz2B2MfGTmriIOtHZup8bliaUM_fhI4uyQqXdgWWdv7qtyraDqhwT46QGpcMoEFtVvWXCxa HTTP/1.1
Host: csp-reporting.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 498
Origin: https://cf.securepagenow.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 12:44:53 GMT
server: cloudflare
cf-ray: 76fa7a70cafeb503-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|