r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4480
Expires: Tue, 31 Jan 2023 20:31:14 GMT
Date: Tue, 31 Jan 2023 19:16:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6964
Expires: Tue, 31 Jan 2023 21:12:38 GMT
Date: Tue, 31 Jan 2023 19:16:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10258
Expires: Tue, 31 Jan 2023 22:07:32 GMT
Date: Tue, 31 Jan 2023 19:16:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: a3qK4rFugMS8K4h5KebIhB26up/owjMxBySdoAxM4jqXVUnyC0YbA5DtuMvfIjHwNkRqDeBYmVPUMiQK5UcZkw==
x-amz-request-id: J85EMPRYJKXZPJYV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 18:51:16 GMT
age: 1518
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 18:43:18 GMT
content-type: application/json
age: 1996
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ultimate.life/9weeklive
209.170.211.179302 Found 0 B IP 209.170.211.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /9weeklive HTTP/1.1
Host: ultimate.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Tue, 31 Jan 2023 19:16:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
location: https://ultimate.life/9weeklive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
X-op-ca: 91.90.42.154
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-op-class: default
X-op-release: 3
Server: ONTRAport
Set-Cookie: secure_redirect=1; expires=Tue, 31-Jan-2023 19:16:35 GMT; Max-Age=1; path=/; SameSite=Lax
op_loopCount=1; Path=/
op_loopTrack=ultimate.life/9weeklive; Path=/
op_loopCount=1; Max-Age=10; Path=/
op_loopTrack=ultimate.life/9weeklive; Max-Age=10; Path=/
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 19:16:35 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 18:41:42 GMT
age: 2093
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 705b6ebba91cda9de0b16931b4cdb305
b031d0c843c7064703d828e12b71a17611c0f47d
b9a6cbc882ce470fc460fd7f76ae50662334646960bfca891897d84a79083e18
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B9A6CBC882CE470FC460FD7F76AE50662334646960BFCA891897D84A79083E18"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21595
Expires: Wed, 01 Feb 2023 01:16:30 GMT
Date: Tue, 31 Jan 2023 19:16:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5289
Expires: Tue, 31 Jan 2023 20:44:44 GMT
Date: Tue, 31 Jan 2023 19:16:35 GMT
Connection: keep-alive
ultimate.life/9weeklive
209.170.211.179200 OK 24 kB IP 209.170.211.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58204)
Hash 05451dac954ce9027e9d3179e9eef299
c1e57e3d9d359b5a20ffd937b0ed062a46463469
1079ed23455c55e2ba5065c8a79d44c8e6fa3b0c1822d16afdb5f6b923a25723
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.life Domain
GET /9weeklive HTTP/1.1
Host: ultimate.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 19:16:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
Set-Cookie: lpsplt_82=0; path=%2F9weeklive; SameSite=Lax
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
X-op-ca: 91.90.42.154
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-op-class: default
X-op-release: 3
Server: ONTRAport
Content-Encoding: gzip
push.services.mozilla.com/
54.184.253.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.184.253.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /JICSJW/6azKM82IQNZCaA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8fH/S880G7UtNp/GxkHjWOO80ac=
app.ontraport.com/images/opt_default_image.png
104.16.21.19200 OK 2.1 kB URL HTTP/2 app.ontraport.com/images/opt_default_image.png
IP 104.16.21.19:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f2a680278221ddea8af2e9bec1c36d48
bfb61a37c65a581b03196ca0c914dc6246e9254f
e52dfee8b8ea50c75794e755848a3b03f69f871832c8764f8e406e3f81104bfe
GET /images/opt_default_image.png HTTP/1.1
Host: app.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:36 GMT
content-type: image/webp
content-length: 2058
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=5891
content-disposition: inline; filename="opt_default_image.webp"
etag: "63d2f12d-1703"
last-modified: Thu, 26 Jan 2023 21:31:25 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
vary: Accept
x-op-ca: 10.2.80.206
x-op-class: app
x-op-release: 3
cf-cache-status: HIT
age: 118
expires: Tue, 31 Jan 2023 19:36:36 GMT
cache-control: public, max-age=1200
accept-ranges: bytes
server: cloudflare
cf-ray: 7924c85e3b06b529-OSL
X-Firefox-Spdy: h2
i.ontraport.com/181547.d712dfeacc8983e88e67f7fe1e384924.PNG
104.16.21.19200 OK 5.2 kB URL HTTP/2 i.ontraport.com/181547.d712dfeacc8983e88e67f7fe1e384924.PNG
IP 104.16.21.19:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 226a84ea00497a51b765f1b41d5eacfb
b558a05b3100b8d72a23de14dbe02610b4a8041e
627909eac1bf158efc6a5277e51ac2a679bbb7d54f19041674553b3594d32244
GET /181547.d712dfeacc8983e88e67f7fe1e384924.PNG HTTP/1.1
Host: i.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:36 GMT
content-type: image/webp
content-length: 5168
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=2678400
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=6036
content-disposition: inline; filename="181547.webp"
etag: "29a631d384dae6a4436e5285522a7029"
last-modified: Thu, 18 Oct 2018 23:42:20 GMT
vary: Accept
via: 1.1 74b9d3168ead0de51d41113665a53160.cloudfront.net (CloudFront)
x-amz-cf-id: 0C8Z0mmxINGxnseS_UGydcAb9Zf4zvku5fGp9pJaHVeefsc9QZQpYA==
x-amz-cf-pop: CPH50-P1
x-cache: RefreshHit from cloudfront
x-amz-id-2: /F98cUwEe8foRRWuhbzlxd4Jbx3Dw4TcCBlExm/B/punFTt4BT14SgbkeMmezkrlWamzNPzzCN4=
x-amz-meta-touched: true
x-amz-request-id: JF4MVATTBH3BM5QK
cf-cache-status: HIT
age: 37677
expires: Fri, 03 Mar 2023 19:16:36 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 7924c85f0c56b529-OSL
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/work-sans-v18-vietnamese_latin-ext_latin-700.woff2
104.16.21.19200 OK 41 kB URL HTTP/2 optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/work-sans-v18-vietnamese_latin-ext_latin-700.woff2
IP 104.16.21.19:0
File type Web Open Font Format (Version 2), TrueType, length 40752, version 1.0\012- data
Hash c0abdbb3f8d09147bc53a75e8d8abfce
c14caf05772513afca53b8a20dfd90476ddd9813
cd571a3c1c4fd164cd486ec6a9474270e4820614eefa65a03a16358cda6e422e
GET /opt_assets/opt_boilerplates/fonts/hosted_fonts/work-sans-v18-vietnamese_latin-ext_latin-700.woff2 HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ultimate.life
Connection: keep-alive
Referer: https://optassets.ontraport.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:36 GMT
content-type: application/octet-stream
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 26 Jan 2023 21:31:36 GMT
etag: W/"63d2f138-9f30"
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-class: optassets
x-op-release: 3
cf-cache-status: MISS
expires: Wed, 01 Feb 2023 03:16:36 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c85f6a7d1c0a-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17958
Expires: Wed, 01 Feb 2023 00:15:55 GMT
Date: Tue, 31 Jan 2023 19:16:37 GMT
Connection: keep-alive
optassets.ontraport.com/opt_assets/static/js/anime.js
104.16.21.19200 OK 31 kB URL HTTP/2 optassets.ontraport.com/opt_assets/static/js/anime.js
IP 104.16.21.19:0
File type ASCII text, with very long lines (6673)
Hash d058d1a53239188f6044b437f4cc280c
8dc41969b19be7c3325d55b5114752d68093840a
06a07d4875ca0ef4bfe65089ceb1588c820097057756312eb417b271af10d751
GET /opt_assets/static/js/anime.js HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:36 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=16752
etag: W/"63d2f138-4170"
last-modified: Thu, 26 Jan 2023 21:31:36 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-op-ca: 10.2.80.206
x-op-class: optassets
x-op-release: 3
cf-cache-status: HIT
age: 118
expires: Tue, 31 Jan 2023 23:16:36 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 7924c85e491f1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/elements_v3/common/materialize/css/opt-styles.min.css
104.16.21.19200 OK 59 kB URL HTTP/2 optassets.ontraport.com/opt_assets/elements_v3/common/materialize/css/opt-styles.min.css
IP 104.16.21.19:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 91591c2fd45bfaa2a021e60e9488d79a
af74d8a4315df1aedb2782039c53fdc4d15e91fa
d578139f0fd5b971bc14071bdd9ba1c0b68f777093ae6f70a7ea4849a7f0e2a9
GET /opt_assets/elements_v3/common/materialize/css/opt-styles.min.css HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:36 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 26 Jan 2023 21:33:49 GMT
etag: W/"63d2f1bd-6cd2e"
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-class: optassets
x-op-release: 3
cf-cache-status: HIT
age: 118
expires: Wed, 01 Feb 2023 03:16:36 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c85e491e1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-300.woff2
104.16.21.19200 OK 60 kB URL HTTP/2 optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-300.woff2
IP 104.16.21.19:0
File type Web Open Font Format (Version 2), TrueType, length 50216, version 1.0\012- data
Hash 96426b51c3c771ff1ba60efe3859e797
e986907e215d9c8ed3933057278e98d2b9e6cd09
6146098a8fa86f2bdb602763c61c280757f917d29af16ff9a0796eaafb4233ed
GET /opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-300.woff2 HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ultimate.life
Connection: keep-alive
Referer: https://optassets.ontraport.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:36 GMT
content-type: application/octet-stream
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 26 Jan 2023 21:31:36 GMT
etag: W/"63d2f138-c428"
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-class: optassets
x-op-release: 3
cf-cache-status: MISS
expires: Wed, 01 Feb 2023 03:16:36 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c85f3a461c0a-OSL
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-regular.woff2
104.16.21.19200 OK 64 kB URL HTTP/2 optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-regular.woff2
IP 104.16.21.19:0
File type Web Open Font Format (Version 2), TrueType, length 50476, version 1.0\012- data
Hash eac3d13dbd89ce56fdd1082a0a40b198
6dd95e5d09772a69f348d04e4097a4d2d5fcbae9
863246ec88ba9dc3c4ec9c2c3087bf57747e1bd5444830063cdb31cdfb8b6f5c
GET /opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-regular.woff2 HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ultimate.life
Connection: keep-alive
Referer: https://optassets.ontraport.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:36 GMT
content-type: application/octet-stream
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 26 Jan 2023 21:31:36 GMT
etag: W/"63d2f138-c52c"
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-class: optassets
x-op-release: 3
cf-cache-status: MISS
expires: Wed, 01 Feb 2023 03:16:36 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c85f2a401c0a-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 42a648f9d34d8fb703f0b80a52e0deec
7ccefd66211d249ae5266c3b6ae3375a19e5cb6d
a57f8792e8caa2a31045a141d019f53f51b633d5d04baebdae97387740c6639d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5903
x-amzn-requestid: f6fca787-17c1-4edd-9ab0-a00e2fccc7a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboufGeSoAMF-1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d487f6-58be6bdc5e3e767e1ea47b86;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:27:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tAR5c5rQD0h5YZ6TU8pZKhUFUf5d0-l794EaYnwwkts3QXPhdYm6vA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:03:25 GMT
age: 79992
etag: "7ccefd66211d249ae5266c3b6ae3375a19e5cb6d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _xCzARAxn6PB9wrQAL98hWvnUxQOocZFqMoS2l_CoIzOJC18bXQuSQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:53:32 GMT
age: 76985
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2797bfd35b7ec24888de84be14f7f2ec
8e315ac5856967286eaa8769e081d827fb4ca39e
b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11129
x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffDBZGRPoAMFedg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9Fga247EZZqiGmdMJ72resdBZR2KLgflGDBPESmuw9cFVs4hSzMzTw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:50:52 GMT
age: 55545
etag: "8e315ac5856967286eaa8769e081d827fb4ca39e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6f9ffb8f9e99229b45ca5fdb84ce7d5
04577ad69ee9749b14382254eb5bbf0e1edcd7fa
6111acf3f363123b39d13cd3d23ab39b8c8d00379874f19231d1cd3da17c52c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8558
x-amzn-requestid: 2841cd36-22e6-4ecb-b56a-bfadce3197c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffB_BFA8IAMFyvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e393-3fd03bd14de762b0738a3b0a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R29JYq4Z8V_Xuq2no0bKxk1K6h2PmTO5OSxzMa4zppDVk3j9rO9aTw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:24:36 GMT
age: 57121
etag: "04577ad69ee9749b14382254eb5bbf0e1edcd7fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
i.ontraport.com/245156.bc8ef69e4c1c8b45ee26aa7ca875aada.PNG
104.16.21.19200 OK 47 kB URL HTTP/2 i.ontraport.com/245156.bc8ef69e4c1c8b45ee26aa7ca875aada.PNG
IP 104.16.21.19:0
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Hash d03d705a07d894faa2f9fdc26a2fc76e
8c96134a816823d59bf65453b4d74ca8fac4ddd5
4c0239262a48536d6c351c6cc34164205c0e963ff7de67b00814c7d97ba1bdb0
GET /245156.bc8ef69e4c1c8b45ee26aa7ca875aada.PNG HTTP/1.1
Host: i.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:37 GMT
content-type: image/png
content-length: 46890
x-amz-id-2: n6wWl5QrFenI3L1pwM4Q1uPXCles1CPhoS45u7iOWNsjbyaErlzCzrM4C8xIl/EJaw7rq2TigPI=
x-amz-request-id: DE5QTG00T07Y3744
last-modified: Wed, 25 Jan 2023 15:32:53 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
etag: "d03d705a07d894faa2f9fdc26a2fc76e"
cache-control: public, max-age=2678400
x-cache: RefreshHit from cloudfront
via: 1.1 987196530f90845d1356080568bb67c6.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG53-C1
x-amz-cf-id: G7M2bbJ0ysinVPBpYO8zY2arePkeZnB3B3NFGp5ZtEGvpDtqaMSnQg==
cf-cache-status: MISS
expires: Fri, 03 Mar 2023 19:16:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7924c85f2c9ab529-OSL
X-Firefox-Spdy: h2
i.ontraport.com/245156.fc7e98510d606f744e6410fbb19af47f.PNG
104.16.21.19200 OK 38 kB URL HTTP/2 i.ontraport.com/245156.fc7e98510d606f744e6410fbb19af47f.PNG
IP 104.16.21.19:0
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Hash 7e6c594082491e7a96d13048a6eb68ac
4b4719b807028d2414eb3ba1c2fcf77b393c7d0d
705e78d93c2edef0af11d34d052f026e5a03805c870c92ea8cf04b2898210999
GET /245156.fc7e98510d606f744e6410fbb19af47f.PNG HTTP/1.1
Host: i.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:37 GMT
content-type: image/png
content-length: 38430
x-amz-id-2: U8RDAGXlDIuDKzpb36SOZlSKwgF4+oGLMJRb6V82roYMLCYFSUuG1JhH/ztwvUmtGTNrdDZSPWo=
x-amz-request-id: XBV4XPAR2XDNEF6C
last-modified: Wed, 25 Jan 2023 15:32:53 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
etag: "7e6c594082491e7a96d13048a6eb68ac"
cache-control: public, max-age=2678400
x-cache: RefreshHit from cloudfront
via: 1.1 d6b30cd44d0926586624a3163e9a9e9a.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG53-C1
x-amz-cf-id: s2W_P3BwrfIjMPKKc7orcbCvcKZxnyw_iLDrmaHIY8dHUcE_jQHLiA==
cf-cache-status: MISS
expires: Fri, 03 Mar 2023 19:16:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7924c85f1c90b529-OSL
X-Firefox-Spdy: h2
i.ontraport.com/245156.29d6c503b22272d30885f346b1afc45d.PNG
104.16.21.19200 OK 24 kB URL HTTP/2 i.ontraport.com/245156.29d6c503b22272d30885f346b1afc45d.PNG
IP 104.16.21.19:0
File type PNG image data, 1280 x 720, 8-bit colormap, non-interlaced\012- data
Hash da39990f08fbc051637be3551cc38345
fc3a5584dd7ef094f9762c7e30561d9c438406f1
4b89524cd37956c3b78f3ef6c13dd274fa07399015d6b2d72cabedb8127e0a78
GET /245156.29d6c503b22272d30885f346b1afc45d.PNG HTTP/1.1
Host: i.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:37 GMT
content-type: image/png
content-length: 23814
x-amz-id-2: EkkFba2qZSTHSbCqORvknf8Jf5YxczypNrnU0qilcQdJkFLJp84GDo6i5HWLoYcmWZX4BKORXuM=
x-amz-request-id: EQK4J1BVD4RA5KC8
last-modified: Wed, 25 Jan 2023 15:32:53 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
etag: "da39990f08fbc051637be3551cc38345"
cache-control: public, max-age=2678400
x-cache: RefreshHit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MkfAUeeQzWtAgmEW1uwu4LW9-IQwWKsKMMHMJvpO4P26NlY38bDGkg==
cf-cache-status: MISS
expires: Fri, 03 Mar 2023 19:16:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7924c85f1c93b529-OSL
X-Firefox-Spdy: h2
i.ontraport.com/245156.3f4294d2806ca5fac4f04e7171eaaf27.JPEG
104.16.21.19200 OK 135 kB URL HTTP/2 i.ontraport.com/245156.3f4294d2806ca5fac4f04e7171eaaf27.JPEG
IP 104.16.21.19:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1714x1120, components 3\012- data
Size 135 kB (135109 bytes)
Hash e8b6ceba81e0312effa1b498aa10f927
71e970147eed141fa9bc109eab2d16ea05df8c17
af8cae78b965545b9e408d18ecab88ef1bf37f154280089c9846479a3eeb3769
GET /245156.3f4294d2806ca5fac4f04e7171eaaf27.JPEG HTTP/1.1
Host: i.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:38 GMT
content-type: image/jpeg
content-length: 135109
x-amz-id-2: //L9ajEdb+VIOEP9cxyrdHA6W7hGTlWgVhVy0s1ary6/n0B5k0SB/tXDoSKq3hXJTP1C3JVUNIo=
x-amz-request-id: EQK3VBX55G70GB2H
last-modified: Thu, 01 Dec 2022 19:21:42 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
etag: "e8b6ceba81e0312effa1b498aa10f927"
cache-control: public, max-age=2678400
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h9UkCGZH3gKNSrJVrYdtkXaeYwrCMWWuyhWEOfTgWx608_xqParQlg==
cf-cache-status: MISS
expires: Fri, 03 Mar 2023 19:16:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7924c8603e0db529-OSL
X-Firefox-Spdy: h2
i.ontraport.com/245156.a4427dcfa2c841da918052f4e5ff7cf5.PNG?ops=1280
104.16.21.19302 Found 0 B URL HTTP/2 i.ontraport.com/245156.a4427dcfa2c841da918052f4e5ff7cf5.PNG?ops=1280
IP 104.16.21.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /245156.a4427dcfa2c841da918052f4e5ff7cf5.PNG?ops=1280 HTTP/1.1
Host: i.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 31 Jan 2023 19:16:38 GMT
content-type: image/png
content-length: 0
x-amz-request-id: 4M1AM176CMXQN1M4
x-amz-id-2: nyITROxB8U3I4KGmKISq1WUQMYFR2qOiABj977OXWIedMStFg7t4f5W7Uk3IV0LjZewoUsik5Ho=
access-control-allow-origin: *
access-control-allow-methods: GET
location: /245156.a4427dcfa2c841da918052f4e5ff7cf5.PNG
cache-control: public, max-age=2678400
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9VJJWcDyzobG1hR3KX8Yeu1KP13n_RR8AeGjuR8oGKI1lqBNwTUvRQ==
cf-cache-status: MISS
expires: Fri, 03 Mar 2023 19:16:38 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7924c8603e0bb529-OSL
X-Firefox-Spdy: h2
app.ontraport.com/favicon.png
104.16.21.19200 OK 248 B URL HTTP/2 app.ontraport.com/favicon.png
IP 104.16.21.19:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d31bb8288cdfd86aca3a7034a3c126dd
ed3098ff46194ffb21ef3d298c57d09e4a9eca7b
54635387f34679b09f283123c6106eb827bda11dfd290950a3281c913b1be6b4
GET /favicon.png HTTP/1.1
Host: app.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:38 GMT
content-type: image/webp
content-length: 248
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=985
content-disposition: inline; filename="favicon.webp"
etag: "63d2f12c-3d9"
last-modified: Thu, 26 Jan 2023 21:31:24 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
vary: Accept
x-op-ca: 10.2.80.206
x-op-class: app
x-op-release: 3
cf-cache-status: REVALIDATED
expires: Tue, 31 Jan 2023 19:36:38 GMT
cache-control: public, max-age=1200
accept-ranges: bytes
server: cloudflare
cf-ray: 7924c86a4f0ab529-OSL
X-Firefox-Spdy: h2
i.ontraport.com/245156.a4427dcfa2c841da918052f4e5ff7cf5.PNG
104.16.21.19200 OK 46 kB URL HTTP/2 i.ontraport.com/245156.a4427dcfa2c841da918052f4e5ff7cf5.PNG
IP 104.16.21.19:0
File type PNG image data, 1920 x 480, 8-bit/color RGB, non-interlaced\012- data
Hash 451734c65cb25afaa6085069bd57f3f6
8d1a8b577e7c92214b72d0c7cd299bae3ac40acc
27254ad689747f006df4c64d36f638c3d7bced4c2ea7d330d106e5f6bfd1da64
GET /245156.a4427dcfa2c841da918052f4e5ff7cf5.PNG HTTP/1.1
Host: i.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ultimate.life/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:39 GMT
content-type: image/png
content-length: 46054
x-amz-id-2: JDp+Bu0wYHDSdiXM8AYroEF2Nngumhl5oSlB9bud2S4OxSi9x1KDnD35yKRCuVLJ8Uf1+coXNOI=
x-amz-request-id: KMWT8YTQQERZ9Z82
last-modified: Wed, 25 Jan 2023 20:02:11 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
etag: "451734c65cb25afaa6085069bd57f3f6"
cache-control: public, max-age=2678400
x-cache: RefreshHit from cloudfront
via: 1.1 ee57e278d5f96045a012c4c3d8da58f8.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG53-C1
x-amz-cf-id: XDnT0-CRrFIDO5NToFybsD4y1UccJUuBj6Hh0X4ZJQZ3W-3HGPRw0Q==
cf-cache-status: MISS
expires: Fri, 03 Mar 2023 19:16:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7924c86b58dfb529-OSL
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-300italic.woff2
104.16.21.19200 OK 55 kB URL HTTP/2 optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-300italic.woff2
IP 104.16.21.19:0
File type Web Open Font Format (Version 2), TrueType, length 54924, version 1.0\012- data
Hash 1651487f8eae654eb3972dfedad8e7b3
66fd19689f4dd6c7dd4769ec267bf440336bbdbf
bd275b4b5f5ba1a9bfa72e1449ac35d63fc7c17ddc9972125ece8a04f5fffee6
GET /opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-300italic.woff2 HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ultimate.life
Connection: keep-alive
Referer: https://optassets.ontraport.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:37 GMT
content-type: application/octet-stream
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 26 Jan 2023 21:31:36 GMT
etag: W/"63d2f138-d68c"
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-class: optassets
x-op-release: 3
cf-cache-status: MISS
expires: Wed, 01 Feb 2023 03:16:37 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c85f6a821c0a-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 162664586cacf99e8bebd03209131c22
e1d094ee4849d142646c3db4148b3dcb340ccd17
1b75c697d052617fffb065ed73f6b100d68e129f26155401d5a05ba89f24ec96
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6113
Cache-Control: max-age=133672
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 19:16:40 GMT
Etag: "63d8b85f-118"
Expires: Thu, 02 Feb 2023 08:24:32 GMT
Last-Modified: Tue, 31 Jan 2023 06:42:39 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/skeleton.css
104.16.21.19200 OK 7.1 kB URL HTTP/2 optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/skeleton.css
IP 104.16.21.19:0
File type ASCII text, with very long lines (6001), with no line terminators
Hash 4c549be0d2632bf7a0c9ed74bde2a54a
10bfa6af0ed119f8451cd19499757eb3cf73c9b9
db4a223cc2dbfeb2ef4602c32496e9806389d028f9e3b9d65423b4904f1265c2
GET /opt_assets/blocks/common/skeleton/css/skeleton.css HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.ontraport.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:40 GMT
content-type: text/css
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=11452
etag: W/"63d2f131-2cbc"
last-modified: Thu, 26 Jan 2023 21:31:29 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-op-ca: 10.2.80.206
x-op-class: optassets
x-op-release: 3
cf-cache-status: HIT
age: 2486
expires: Wed, 01 Feb 2023 03:16:40 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c8785f481c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 19:16:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
optassets.ontraport.com/opt_assets/static/js/jquery-3.2.1.min.js
104.16.21.19200 OK 90 kB URL HTTP/2 optassets.ontraport.com/opt_assets/static/js/jquery-3.2.1.min.js
IP 104.16.21.19:0
File type ASCII text, with very long lines (32058), with CRLF line terminators
Hash 7c5808bbb496fa5579a146f5812f0690
0601c81bff20d586f4aeacb1984b94cbb958271b
a04f568b4f54be5bc088cf9ba6a229f7f754e13148036b14eadee1a5b78c8ac8
GET /opt_assets/static/js/jquery-3.2.1.min.js HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:36 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 26 Jan 2023 21:31:36 GMT
etag: W/"63d2f138-15285"
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-class: optassets
x-op-release: 3
cf-cache-status: HIT
age: 118
expires: Tue, 31 Jan 2023 23:16:36 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 7924c85e49201c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/normalize.css
104.16.21.19200 OK 32 kB URL HTTP/2 optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/normalize.css
IP 104.16.21.19:0
File type ASCII text, with very long lines (1979), with no line terminators
Hash c234b3cd924ae6e5fd2dd85b5d169989
b76cc415f3b12b6f814a52cbb4d6c343a70c02ef
efcbcf22c6af6854845a12df9858a7f85e132061a42b1b45f04da3daa2605f6d
GET /opt_assets/blocks/common/skeleton/css/normalize.css HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.ontraport.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:40 GMT
content-type: text/css
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=7797
etag: W/"63d2f131-1e75"
last-modified: Thu, 26 Jan 2023 21:31:29 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-op-ca: 10.2.80.206
x-op-class: optassets
x-op-release: 3
cf-cache-status: HIT
age: 2486
expires: Wed, 01 Feb 2023 03:16:40 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c8785f461c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c245156f1&formType=modal&formGUID=OPF_0e21573e-bbf0-0d6b-d538-3a86321e5cbf&referer=https%3A%2F%2Fultimate.life%2F9weeklive&formceptionID=formception-24e07e57-96f9-4b9a-6316-b68b6d7b56cb&__opv=v1&lpid=82.0
104.16.21.19200 OK 26 kB URL HTTP/2 forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c245156f1&formType=modal&formGUID=OPF_0e21573e-bbf0-0d6b-d538-3a86321e5cbf&referer=https%3A%2F%2Fultimate.life%2F9weeklive&formceptionID=formception-24e07e57-96f9-4b9a-6316-b68b6d7b56cb&__opv=v1&lpid=82.0
IP 104.16.21.19:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (32491)
Hash 33c78fa8fc5ebc28706b9279c502a1c8
46c0db482dacf1aa2ef9ae05293709437332dc88
9396e58b347d550b4f50dde8502bf1671d3a6b0b6b15d2b2dee6feb153fbe368
GET /v2.4/include/formEditor/genlightbootstrap.php?uid=p2c245156f1&formType=modal&formGUID=OPF_0e21573e-bbf0-0d6b-d538-3a86321e5cbf&referer=https%3A%2F%2Fultimate.life%2F9weeklive&formceptionID=formception-24e07e57-96f9-4b9a-6316-b68b6d7b56cb&__opv=v1&lpid=82.0 HTTP/1.1
Host: forms.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:40 GMT
content-type: text/html
vary: Accept-Encoding, Accept-Encoding
set-cookie: PHPSESSID=ldu67edhcv0mn64crbr1tdskq2; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-benvironment: production
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-what: what
x-op-pci: true
x-cache-status: BYPASS
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7924c87618a1b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/skeleton.ontraport.css
104.16.21.19200 OK 70 kB URL HTTP/2 optassets.ontraport.com/opt_assets/blocks/common/skeleton/css/skeleton.ontraport.css
IP 104.16.21.19:0
File type ASCII text, with very long lines (10269), with no line terminators
Hash 75327990794adb0d8d8e6b3083a4ff8c
1a3370658caea848a187228520e7e2a62d4b98f7
e9b8a644b85d7743a2553da9eaec99deaa58f64893240e0c9946ba34abc20028
GET /opt_assets/blocks/common/skeleton/css/skeleton.ontraport.css HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.ontraport.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:40 GMT
content-type: text/css
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=19389
etag: W/"63d2f131-4bbd"
last-modified: Thu, 26 Jan 2023 21:31:29 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-op-ca: 10.2.80.206
x-op-class: optassets
x-op-release: 3
cf-cache-status: HIT
age: 2486
expires: Wed, 01 Feb 2023 03:16:40 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c8785f491c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 19:16:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ultimatelifetechnologiesllc.ontralink.com/track.php?mid=245156_lp82.0_2&llc=https://ultimate.life/9weeklive&first_visit=1&referral_page=&s=8gr3sfpspx7x1m2vdk7n&l=ultimate.life/9weeklive&ti=HHW%209%20Week%20Challenge%20Live&is_unique=1
209.170.211.179200 OK 366 B URL HTTP/1.1 ultimatelifetechnologiesllc.ontralink.com/track.php?mid=245156_lp82.0_2&llc=https://ultimate.life/9weeklive&first_visit=1&referral_page=&s=8gr3sfpspx7x1m2vdk7n&l=ultimate.life/9weeklive&ti=HHW%209%20Week%20Challenge%20Live&is_unique=1
IP 209.170.211.179:0
File type ASCII text, with CRLF, LF line terminators
Hash e0f683c509a4448b9f5ce6c95c59c628
77d8542a70741539910165b00ecf905701c69f7d
5c45d38f0ebf7d6ddd52ebe473c6933b1bf53c7a1336ea439d378c9fb1cb2f63
GET /track.php?mid=245156_lp82.0_2&llc=https://ultimate.life/9weeklive&first_visit=1&referral_page=&s=8gr3sfpspx7x1m2vdk7n&l=ultimate.life/9weeklive&ti=HHW%209%20Week%20Challenge%20Live&is_unique=1 HTTP/1.1
Host: ultimatelifetechnologiesllc.ontralink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 19:16:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
Set-Cookie: sess_=8gr3sfpspx7x1m2vdk7n; expires=Sun, 30-Jul-2023 19:16:40 GMT; Max-Age=15552000; path=/; secure; SameSite=None
mr_src=lp82; expires=Sun, 30-Jul-2023 19:16:40 GMT; Max-Age=15552000; path=/; secure; SameSite=None
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
X-op-ca: 91.90.42.154
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-op-class: default
X-op-release: 3
Server: ONTRAport
Content-Encoding: gzip
optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-500.woff2
104.16.21.19200 OK 58 kB URL HTTP/2 optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-500.woff2
IP 104.16.21.19:0
File type Web Open Font Format (Version 2), TrueType, length 50900, version 1.0\012- data
Hash 23e07a33777b5d43f1dd1f9684366279
a797532b7e0cf9080642b2c6da35e10391e303d7
39f8dc968394c2ca2caf874aaebaa4fa96a4463ae9f91202c5919a93576f4280
GET /opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-500.woff2 HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.ontraport.com
Connection: keep-alive
Referer: https://optassets.ontraport.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:40 GMT
content-type: text/plain
vary: Accept-Encoding
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-class: optassets
x-op-release: 3
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 30 Jan 2023 14:16:30 GMT
cf-cache-status: HIT
age: 1611
expires: Wed, 01 Feb 2023 03:16:40 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c87a19061c0a-OSL
X-Firefox-Spdy: h2
i.ontraport.com/245156.b56c9ef7f2231593198568bafde985d0.PNG
104.16.21.19200 OK 2.5 kB URL HTTP/2 i.ontraport.com/245156.b56c9ef7f2231593198568bafde985d0.PNG
IP 104.16.21.19:0
File type PNG image data, 80 x 96, 8-bit gray+alpha, non-interlaced\012- data
Hash 2432c61525b2e75c27d3ffafdb4113d4
b9b49a978bfd4bb47a516e78af8397f02c3e76e8
44baa2b6139ffd0a32e49720b346553443e343e9b3e1dbc34543b51254530207
GET /245156.b56c9ef7f2231593198568bafde985d0.PNG HTTP/1.1
Host: i.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.ontraport.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:41 GMT
content-type: image/png
content-length: 2484
x-amz-id-2: QW8dwJ4A2q+IVtqk/0MB0qgThvJQKS15qGs1FVq3SwtLjHkWM46D8ARSL8w8d0iFSm0NAxZ4mxM=
x-amz-request-id: YWBVYXF9DYV7N6NR
last-modified: Thu, 08 Sep 2022 20:54:27 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
etag: "2432c61525b2e75c27d3ffafdb4113d4"
cache-control: public, max-age=2678400
x-cache: RefreshHit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ruzs_89wZ-7Dgc_jCRWhwktxB7p4zTI_UKjy63vTDkOMdR3Obo4NUg==
cf-cache-status: MISS
expires: Fri, 03 Mar 2023 19:16:41 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7924c8786bcdb529-OSL
X-Firefox-Spdy: h2
forms.ontraport.com/cdn-cgi/rum?
104.16.21.19204 No Content 0 B URL HTTP/2 forms.ontraport.com/cdn-cgi/rum?
IP 104.16.21.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: forms.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 8444
Origin: https://forms.ontraport.com
Connection: keep-alive
Referer: https://forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c245156f1&formType=modal&formGUID=OPF_0e21573e-bbf0-0d6b-d538-3a86321e5cbf&referer=https%3A%2F%2Fultimate.life%2F9weeklive&formceptionID=formception-24e07e57-96f9-4b9a-6316-b68b6d7b56cb&__opv=v1&lpid=82.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 19:16:41 GMT
access-control-allow-origin: https://forms.ontraport.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7924c8824afbb529-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
forms.ontraport.com/cdn-cgi/rum?
104.16.21.19204 No Content 0 B URL HTTP/2 forms.ontraport.com/cdn-cgi/rum?
IP 104.16.21.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: forms.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 625
Origin: https://forms.ontraport.com
Connection: keep-alive
Referer: https://forms.ontraport.com/v2.4/include/formEditor/genlightbootstrap.php?uid=p2c245156f1&formType=modal&formGUID=OPF_0e21573e-bbf0-0d6b-d538-3a86321e5cbf&referer=https%3A%2F%2Fultimate.life%2F9weeklive&formceptionID=formception-24e07e57-96f9-4b9a-6316-b68b6d7b56cb&__opv=v1&lpid=82.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 19:16:43 GMT
access-control-allow-origin: https://forms.ontraport.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7924c88e2e60b529-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
optassets.ontraport.com/tracking.js
104.16.21.19200 OK 0 B URL HTTP/2 optassets.ontraport.com/tracking.js
IP 104.16.21.19:0
GET /tracking.js HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:36 GMT
content-type: text/html
vary: Accept-Encoding
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-class: optassets
x-op-release: 3
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Mon, 30 Jan 2023 22:10:23 GMT
cf-cache-status: HIT
age: 1559
expires: Wed, 01 Feb 2023 03:16:36 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c85e49281c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/static/js/opt-assets.js?1674769103
104.16.21.19200 OK 0 B URL HTTP/2 optassets.ontraport.com/opt_assets/static/js/opt-assets.js?1674769103
IP 104.16.21.19:0
GET /opt_assets/static/js/opt-assets.js?1674769103 HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:36 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=321891
etag: W/"63d2f1ab-4e963"
last-modified: Thu, 26 Jan 2023 21:33:31 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-op-ca: 10.2.80.206
x-op-class: optassets
x-op-release: 3
cf-cache-status: HIT
age: 118
expires: Tue, 31 Jan 2023 23:16:36 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 7924c85e49261c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-700.woff2
104.16.21.19200 OK 0 B URL HTTP/2 optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-700.woff2
IP 104.16.21.19:0
GET /opt_assets/opt_boilerplates/fonts/hosted_fonts/roboto-v30-vietnamese_latin-ext_latin_greek-ext_greek_cyrillic-ext_cyrillic-700.woff2 HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ultimate.life
Connection: keep-alive
Referer: https://optassets.ontraport.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:37 GMT
content-type: application/octet-stream
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 26 Jan 2023 21:31:36 GMT
etag: W/"63d2f138-c4a4"
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-class: optassets
x-op-release: 3
cf-cache-status: MISS
expires: Wed, 01 Feb 2023 03:16:37 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c85f2a411c0a-OSL
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/raleway-v28-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-600.woff2
104.16.21.19200 OK 0 B URL HTTP/2 optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/raleway-v28-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-600.woff2
IP 104.16.21.19:0
GET /opt_assets/opt_boilerplates/fonts/hosted_fonts/raleway-v28-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-600.woff2 HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.ontraport.com
Connection: keep-alive
Referer: https://optassets.ontraport.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:40 GMT
content-type: application/octet-stream
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 26 Jan 2023 21:31:35 GMT
etag: W/"63d2f137-d4c0"
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-class: optassets
x-op-release: 3
cf-cache-status: HIT
age: 2642
expires: Wed, 01 Feb 2023 03:16:40 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c87a29081c0a-OSL
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/material/material_icons.woff2
104.16.21.19200 OK 0 B URL HTTP/2 optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/material/material_icons.woff2
IP 104.16.21.19:0
GET /opt_assets/opt_boilerplates/fonts/material/material_icons.woff2 HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ultimate.life
Connection: keep-alive
Referer: https://optassets.ontraport.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:37 GMT
content-type: application/octet-stream
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 26 Jan 2023 21:31:36 GMT
etag: W/"63d2f138-1f568"
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-class: optassets
x-op-release: 3
cf-cache-status: MISS
expires: Wed, 01 Feb 2023 03:16:37 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c8604b941c0a-OSL
X-Firefox-Spdy: h2
app.ontraport.com/js/libs/materialize/dist/js/materializev2.min.js
104.16.21.19200 OK 0 B URL HTTP/2 app.ontraport.com/js/libs/materialize/dist/js/materializev2.min.js
IP 104.16.21.19:0
GET /js/libs/materialize/dist/js/materializev2.min.js HTTP/1.1
Host: app.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.ontraport.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:40 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 26 Jan 2023 21:31:27 GMT
etag: W/"63d2f12f-13bbf"
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-class: app
x-op-release: 3
cf-cache-status: HIT
expires: Tue, 31 Jan 2023 19:36:40 GMT
cache-control: public, max-age=1200
server: cloudflare
cf-ray: 7924c8788c10b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/blocks/common/jQueryCloneVal/jquery-cloneVal.js
104.16.21.19200 OK 0 B URL HTTP/2 optassets.ontraport.com/opt_assets/blocks/common/jQueryCloneVal/jquery-cloneVal.js
IP 104.16.21.19:0
GET /opt_assets/blocks/common/jQueryCloneVal/jquery-cloneVal.js HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.ontraport.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:40 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=1472
etag: W/"63d2f131-5c0"
last-modified: Thu, 26 Jan 2023 21:31:29 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-op-ca: 10.2.80.206
x-op-class: optassets
x-op-release: 3
cf-cache-status: HIT
age: 6588
expires: Wed, 01 Feb 2023 03:16:40 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c8788f7b1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/raleway-v28-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-regular.woff2
104.16.21.19200 OK 0 B URL HTTP/2 optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/raleway-v28-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-regular.woff2
IP 104.16.21.19:0
GET /opt_assets/opt_boilerplates/fonts/hosted_fonts/raleway-v28-vietnamese_latin-ext_latin_cyrillic-ext_cyrillic-regular.woff2 HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.ontraport.com
Connection: keep-alive
Referer: https://optassets.ontraport.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:40 GMT
content-type: application/octet-stream
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 26 Jan 2023 21:31:35 GMT
etag: W/"63d2f137-d0a8"
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-class: optassets
x-op-release: 3
cf-cache-status: HIT
age: 7018
expires: Wed, 01 Feb 2023 03:16:40 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c87a19051c0a-OSL
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/static/js/custom-elements.min.js
104.16.21.19200 OK 0 B URL HTTP/2 optassets.ontraport.com/opt_assets/static/js/custom-elements.min.js
IP 104.16.21.19:0
GET /opt_assets/static/js/custom-elements.min.js HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:36 GMT
content-type: text/plain
vary: Accept-Encoding
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-class: optassets
x-op-release: 3
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
last-modified: Fri, 27 Jan 2023 06:14:34 GMT
cf-cache-status: HIT
age: 118
expires: Tue, 31 Jan 2023 23:16:36 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 7924c85e492a1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
app.ontraport.com/js/ontraport/opt_assets/drivers/opf.js
104.16.21.19200 OK 0 B URL HTTP/2 app.ontraport.com/js/ontraport/opt_assets/drivers/opf.js
IP 104.16.21.19:0
GET /js/ontraport/opt_assets/drivers/opf.js HTTP/1.1
Host: app.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ultimate.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:36 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cf-bgj: minify
etag: W/"63d2f1b8-109f8"
last-modified: Thu, 26 Jan 2023 21:33:44 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-op-ca: 10.2.80.206
x-op-class: app
x-op-release: 3
cf-cache-status: HIT
expires: Tue, 31 Jan 2023 19:36:36 GMT
cache-control: public, max-age=1200
server: cloudflare
cf-ray: 7924c85e3b0fb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/work-sans-v18-vietnamese_latin-ext_latin-300.woff2
104.16.21.19200 OK 0 B URL HTTP/2 optassets.ontraport.com/opt_assets/opt_boilerplates/fonts/hosted_fonts/work-sans-v18-vietnamese_latin-ext_latin-300.woff2
IP 104.16.21.19:0
GET /opt_assets/opt_boilerplates/fonts/hosted_fonts/work-sans-v18-vietnamese_latin-ext_latin-300.woff2 HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ultimate.life
Connection: keep-alive
Referer: https://optassets.ontraport.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:37 GMT
content-type: application/octet-stream
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 26 Jan 2023 21:31:36 GMT
etag: W/"63d2f138-9d0c"
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-op-ca: 10.2.80.206
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
x-op-class: optassets
x-op-release: 3
cf-cache-status: MISS
expires: Wed, 01 Feb 2023 03:16:37 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c85f4a571c0a-OSL
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.57.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.57.101:0
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://forms.ontraport.com
Connection: keep-alive
Referer: https://forms.ontraport.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:40 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7924c8791c2a1c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/libraries/opt_date_time_picker/dist/opt_date_time_picker_lib.css
104.16.21.19200 OK 0 B URL HTTP/2 optassets.ontraport.com/opt_assets/libraries/opt_date_time_picker/dist/opt_date_time_picker_lib.css
IP 104.16.21.19:0
GET /opt_assets/libraries/opt_date_time_picker/dist/opt_date_time_picker_lib.css HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.ontraport.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:40 GMT
content-type: text/css
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cf-bgj: minify
etag: W/"63d2f16b-233e"
last-modified: Thu, 26 Jan 2023 21:32:27 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-op-ca: 10.2.80.206
x-op-class: optassets
x-op-release: 3
cf-cache-status: HIT
age: 2486
expires: Wed, 01 Feb 2023 03:16:40 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c8786f521c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
optassets.ontraport.com/opt_assets/libraries/opt_date_time_picker/dist/opt_date_time_picker_lib.js
104.16.21.19200 OK 0 B URL HTTP/2 optassets.ontraport.com/opt_assets/libraries/opt_date_time_picker/dist/opt_date_time_picker_lib.js
IP 104.16.21.19:0
GET /opt_assets/libraries/opt_date_time_picker/dist/opt_date_time_picker_lib.js HTTP/1.1
Host: optassets.ontraport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.ontraport.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 19:16:40 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cf-bgj: minify
etag: W/"63d2f16b-86a9"
last-modified: Thu, 26 Jan 2023 21:32:27 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-op-ca: 10.2.80.206
x-op-class: optassets
x-op-release: 3
cf-cache-status: HIT
age: 2486
expires: Wed, 01 Feb 2023 03:16:40 GMT
cache-control: public, max-age=28800
server: cloudflare
cf-ray: 7924c8789f7f1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2