Overview

URL grillhogs.co.uk/
IP104.16.12.194
ASNCLOUDFLARENET
Location
Report completed2022-09-15 04:14:46 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-15 2 grillhogs.co.uk/ Phishing
2022-09-15 2 grillhogs.co.uk/landing-page9797316 Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (89)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-14 04:47:55 UTC 143.204.55.35
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-14 04:48:22 UTC 104.18.20.226
mnemonic passive DNS analytics.tiktok.com (2) 1182 2020-02-29 13:09:05 UTC 2022-09-14 04:51:16 UTC 104.84.152.234
mnemonic passive DNS rtb-csync.smartadserver.com (1) 583 2012-12-17 16:38:47 UTC 2022-09-14 14:20:26 UTC 185.86.137.132
mnemonic passive DNS cm.g.doubleclick.net (1) 202 2013-05-30 23:19:45 UTC 2022-09-15 02:46:45 UTC 216.58.211.2
mnemonic passive DNS status.geotrust.com (2) 3662 2017-12-01 08:55:31 UTC 2022-09-14 04:59:55 UTC 93.184.220.29
mnemonic passive DNS csp-reporting.cloudflare.com (97) 8787 2022-01-10 16:52:27 UTC 2022-09-14 22:29:19 UTC 104.18.21.157
mnemonic passive DNS images.clickfunnels.com (2) 95357 2014-10-08 20:00:42 UTC 2022-09-14 14:53:01 UTC 104.16.14.194
mnemonic passive DNS status.thawte.com (1) 5123 2017-11-27 12:33:51 UTC 2022-09-14 04:48:24 UTC 93.184.220.29
mnemonic passive DNS fast.appcues.com (2) 5455 2015-02-20 11:31:09 UTC 2022-09-15 01:33:56 UTC 151.101.86.110
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-14 04:48:22 UTC 34.117.237.239
mnemonic passive DNS cmp.osano.com (1) 8763 2019-11-22 13:02:42 UTC 2022-09-14 15:07:48 UTC 143.204.55.15
mnemonic passive DNS cdn.cfptaddons.com (1) 237703 2020-10-09 14:11:19 UTC 2022-09-14 09:18:07 UTC 151.101.86.133
mnemonic passive DNS static.hotjar.com (1) 641 2014-11-01 05:14:27 UTC 2022-09-14 04:48:25 UTC 54.230.111.66
mnemonic passive DNS cdnjs.cloudflare.com (7) 235 2020-10-20 10:17:36 UTC 2022-09-14 05:00:27 UTC 104.17.24.14
mnemonic passive DNS pixel.rubiconproject.com (1) 314 2012-10-09 03:17:38 UTC 2022-09-14 04:54:32 UTC 213.19.162.80
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-09-14 04:48:25 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS dynamic.criteo.com (1) 4826 2018-04-12 10:04:05 UTC 2022-09-14 15:55:09 UTC 178.250.2.140
mnemonic passive DNS ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-09-15 02:40:34 UTC 104.18.32.68
mnemonic passive DNS dis.criteo.com (2) 660 2012-06-02 15:38:12 UTC 2022-09-14 14:30:03 UTC 178.250.2.151
mnemonic passive DNS api.segment.io (1) 1076 2020-01-31 20:17:26 UTC 2022-09-15 03:26:27 UTC 50.112.48.24
mnemonic passive DNS criteo-sync.teads.tv (1) 1786 2017-02-17 10:06:41 UTC 2022-09-14 14:30:02 UTC 23.195.255.234
mnemonic passive DNS in.hotjar.com (1) 1746 2018-10-22 17:15:59 UTC 2022-09-14 04:48:25 UTC 34.246.90.31
mnemonic passive DNS cdn.firebase.com (1) 61404 2012-12-21 18:09:50 UTC 2022-09-14 18:35:46 UTC 151.101.1.195
mnemonic passive DNS fresnel.vimeocdn.com (5) 3128 2014-12-13 09:04:00 UTC 2022-09-14 04:57:28 UTC 34.120.202.204
mnemonic passive DNS ct.pinterest.com (1) 852 2015-03-12 08:12:48 UTC 2022-09-14 04:56:00 UTC 23.38.200.197
mnemonic passive DNS cdn.segment.com (2) 1618 2016-02-25 21:39:56 UTC 2022-09-14 04:49:01 UTC 143.204.48.96
mnemonic passive DNS widget.us.criteo.com (1) 19445 2015-08-23 19:59:38 UTC 2022-09-14 14:30:01 UTC 74.119.119.150
mnemonic passive DNS exchange.mediavine.com (1) 2109 2020-11-23 01:20:19 UTC 2022-09-15 03:46:16 UTC 18.195.149.35
mnemonic passive DNS dev.visualwebsiteoptimizer.com (1) 5085 2012-05-21 13:21:05 UTC 2022-09-14 05:37:08 UTC 34.96.102.137
mnemonic passive DNS sync-t1.taboola.com (1) 1269 2020-06-29 11:52:33 UTC 2022-09-14 14:30:02 UTC 141.226.228.48
mnemonic passive DNS statics.myclickfunnels.com (2) 408156 2022-03-17 11:58:47 UTC 2022-09-14 09:18:07 UTC 104.18.18.229
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-14 04:48:23 UTC 34.215.91.121
mnemonic passive DNS use.fontawesome.com (2) 942 2017-01-30 04:43:25 UTC 2022-09-14 04:50:10 UTC 172.64.196.18
mnemonic passive DNS s3content.s3.amazonaws.com (1) 480129 2012-12-30 04:55:59 UTC 2022-09-14 09:18:36 UTC 52.217.171.17
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-14 23:16:20 UTC 142.250.74.3
mnemonic passive DNS ocsp.sca1b.amazontrust.com (5) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.100
mnemonic passive DNS ib.adnxs.com (2) 241 2012-05-23 22:36:14 UTC 2022-09-14 10:07:01 UTC 37.252.172.250
mnemonic passive DNS ad.sxp.smartclip.net (2) 2300 2017-05-16 21:17:22 UTC 2022-09-14 14:30:02 UTC 35.186.194.101
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-15 00:22:23 UTC 142.250.74.10
mnemonic passive DNS web-sdk.aptrinsic.com (1) 7232 2017-11-28 13:16:40 UTC 2022-09-15 00:02:33 UTC 35.190.35.221
mnemonic passive DNS ocsp.digicert.com (10) 86 2012-05-21 07:02:23 UTC 2022-09-14 23:46:12 UTC 93.184.220.29
mnemonic passive DNS i.vimeocdn.com (1) 3126 2014-03-27 22:24:57 UTC 2022-09-14 04:57:51 UTC 151.101.86.109
mnemonic passive DNS ag.gbc.criteo.com (1) 5925 2018-12-17 13:17:41 UTC 2022-09-14 14:03:57 UTC 185.235.84.63
mnemonic passive DNS dna8twue3dlxq.cloudfront.net (1) 0 2022-04-04 07:47:34 UTC 2022-09-15 03:52:54 UTC 54.230.111.5 Unknown ranking
mnemonic passive DNS s.pinimg.com (1) 732 2017-01-13 22:40:08 UTC 2022-09-14 23:09:05 UTC 23.38.200.197
mnemonic passive DNS csp-reporting.cloudflare.com (97) 8787 2022-01-10 16:52:27 UTC 2022-09-14 22:29:19 UTC 104.18.20.157
mnemonic passive DNS my.capibox.com (1) 340018 2020-12-28 10:54:21 UTC 2022-09-14 09:18:10 UTC 78.46.194.138
mnemonic passive DNS sslwidget.criteo.com (1) 1723 2012-05-31 02:43:28 UTC 2022-09-14 14:44:37 UTC 178.250.2.151
mnemonic passive DNS eb2.3lift.com (1) 402 2014-09-24 15:03:42 UTC 2022-09-14 11:59:42 UTC 76.223.111.18
mnemonic passive DNS ad.360yield.com (2) 657 2012-11-28 11:30:25 UTC 2022-09-14 04:54:32 UTC 35.158.33.69
mnemonic passive DNS criteo-partners.tremorhub.com (1) 2360 2017-11-20 17:11:05 UTC 2022-09-14 14:30:02 UTC 23.20.239.3
mnemonic passive DNS grillhogs.co.uk (2) 0 2019-07-31 05:36:58 UTC 2022-09-14 16:28:55 UTC 104.16.15.194 Unknown ranking
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-14 12:35:36 UTC 34.120.237.76
mnemonic passive DNS ocsp.starfieldtech.com (1) 6616 2012-06-22 18:08:50 UTC 2022-09-14 05:00:46 UTC 192.124.249.41
mnemonic passive DNS wsv3cdn.audioeye.com (3) 3722 2019-09-06 08:09:56 UTC 2022-09-14 11:50:37 UTC 104.18.25.76
mnemonic passive DNS dpm.demdex.net (1) 204 2017-01-30 04:59:39 UTC 2022-09-14 04:49:43 UTC 34.247.235.92
mnemonic passive DNS ocsp.pki.goog (19) 175 2017-06-14 07:23:31 UTC 2022-09-14 04:48:23 UTC 142.250.74.3
mnemonic passive DNS player.vimeo.com (5) 1858 2013-09-26 03:16:08 UTC 2022-09-14 04:57:17 UTC 162.159.128.61
mnemonic passive DNS 22vod-adaptive.akamaized.net (10) 133834 2019-09-12 20:30:15 UTC 2022-09-14 10:59:13 UTC 23.36.76.168
mnemonic passive DNS gum.criteo.com (3) 381 2015-01-22 10:58:57 UTC 2022-09-15 00:36:19 UTC 178.250.2.146
mnemonic passive DNS sync.outbrain.com (1) 757 2016-08-02 06:37:14 UTC 2022-09-14 04:54:32 UTC 64.202.112.191
mnemonic passive DNS app.clickfunnels.com (1) 34727 2015-03-12 08:40:23 UTC 2022-09-14 22:34:31 UTC 104.16.14.194
mnemonic passive DNS images.clickfunnel.com (1) 525844 2017-12-04 15:04:03 UTC 2022-09-14 09:18:07 UTC 104.26.2.26
mnemonic passive DNS cf2-private-production-workspaces-assets.s3.amazonaws.com (1) 0 2022-03-17 11:58:49 UTC 2022-09-14 09:18:35 UTC 52.217.171.17 Unknown ranking
mnemonic passive DNS widget.wickedreports.com (1) 35709 2018-07-31 06:06:07 UTC 2022-09-14 14:27:40 UTC 54.230.111.69
mnemonic passive DNS px.ads.linkedin.com (2) 522 2017-08-08 16:28:50 UTC 2022-09-15 02:39:54 UTC 13.107.42.14
mnemonic passive DNS ad.yieldlab.net (3) 3515 2014-05-07 00:17:56 UTC 2022-09-14 14:30:02 UTC 23.13.245.180
mnemonic passive DNS visitor.omnitagjs.com (1) 1722 2017-01-30 04:58:42 UTC 2022-09-14 14:30:02 UTC 185.255.84.152
mnemonic passive DNS 44vod-adaptive.akamaized.net (7) 112211 2019-10-02 08:08:58 UTC 2022-09-14 21:08:29 UTC 23.36.76.161
mnemonic passive DNS r.casalemedia.com (1) 1896 2012-06-24 01:17:14 UTC 2022-09-14 04:54:32 UTC 104.18.19.126
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-14 21:21:52 UTC 143.204.55.115
mnemonic passive DNS grillhogs.co.uk (2) 0 2019-07-31 05:36:58 UTC 2022-09-14 16:28:55 UTC 104.16.12.194 Unknown ranking
mnemonic passive DNS cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2022-09-14 06:59:24 UTC 151.101.85.229
mnemonic passive DNS f.vimeocdn.com (1) 3234 2014-04-09 18:24:34 UTC 2022-09-14 04:57:51 UTC 151.101.86.109
mnemonic passive DNS snap.licdn.com (1) 1044 2014-10-06 08:43:45 UTC 2022-09-14 04:47:55 UTC 23.36.76.121
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-14 04:47:56 UTC 142.251.1.154
mnemonic passive DNS www.clickfunnels.com (6) 51002 2014-10-08 20:01:35 UTC 2022-09-15 01:54:51 UTC 104.16.14.194
mnemonic passive DNS contextual.media.net (1) 513 2019-04-30 08:49:36 UTC 2022-09-14 16:15:12 UTC 23.38.200.22
mnemonic passive DNS ups.analytics.yahoo.com (2) 287 2019-05-09 15:57:40 UTC 2022-09-14 04:51:27 UTC 18.156.0.31
mnemonic passive DNS match.sharethrough.com (1) 604 2015-12-22 22:55:59 UTC 2022-09-14 04:51:27 UTC 52.57.48.124
mnemonic passive DNS beacon.krxd.net (1) 408 2012-05-22 04:25:40 UTC 2022-09-14 04:54:33 UTC 34.249.119.142
mnemonic passive DNS gem.gbc.criteo.com (1) 6039 2019-02-06 06:21:41 UTC 2022-09-14 17:58:15 UTC 178.250.6.203
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-14 04:47:59 UTC 23.36.76.226
mnemonic passive DNS dnacdn.net (2) 3760 2019-09-02 15:07:45 UTC 2022-09-14 04:58:35 UTC 178.250.0.157
mnemonic passive DNS cm.adform.net (1) 1667 2015-03-30 07:47:01 UTC 2022-09-14 14:30:02 UTC 37.157.2.237
mnemonic passive DNS simage2.pubmatic.com (1) 578 2012-07-21 03:13:48 UTC 2022-09-14 14:30:02 UTC 185.64.190.80
mnemonic passive DNS x.bidswitch.net (1) 286 2017-08-28 15:21:00 UTC 2022-09-14 04:48:29 UTC 3.126.140.73
mnemonic passive DNS wsmcdn.audioeye.com (1) 28232 2020-03-27 11:30:12 UTC 2022-09-14 14:27:47 UTC 104.18.25.76


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.16.12.194

Date UQ / IDS / BL URL IP
2022-11-29 21:55:54 +0000
0 - 0 - 1 internettenpara.biz/ 104.16.12.194
2022-11-23 13:17:41 +0000
0 - 0 - 2 eco-innovation.info/primes-chauffage?utm_sour (...) 104.16.12.194
2022-11-22 00:50:51 +0000
0 - 0 - 5 www.safierussellcpa.com/fofg/?olJ82r7=/WYyZ8X (...) 104.16.12.194
2022-11-05 09:45:43 +0000
0 - 0 - 4 www.safierussellcpa.com/fofg/?8pqld=/WYyZ8XHr (...) 104.16.12.194
2022-11-01 02:33:28 +0000
0 - 0 - 1 fortmyerscoolsculpting.com/ 104.16.12.194

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-02 11:49:27 +0000
0 - 0 - 1 storageapi.fleek.co/ea690d9d-65bc-44c7-a25e-c (...) 104.18.6.145
2022-12-02 11:49:11 +0000
0 - 0 - 2 iowin-download.net/dowl/iobit-uninstaller.exe 172.67.168.182
2022-12-02 11:48:55 +0000
0 - 0 - 2 bihancetr.net/Login/verify.php?r=1 172.67.211.22
2022-12-02 11:48:50 +0000
0 - 0 - 2 gorgeousstipulation.top/ 188.114.97.1
2022-12-02 11:46:47 +0000
0 - 0 - 5 wildfungames.com/land/rou 172.67.70.29

Last 1 reports on domain: grillhogs.co.uk

Date UQ / IDS / BL URL IP
2022-09-15 04:14:46 +0000
0 - 0 - 2 grillhogs.co.uk/ 104.16.12.194

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-23 19:43:27 +0000
0 - 0 - 1 prometheusrobot.com/ 104.16.13.194
2022-10-23 18:22:24 +0000
0 - 0 - 1 releadengine.com/ 104.16.14.194
2022-10-23 16:53:28 +0000
0 - 0 - 1 sayikropsterapi.com/ 104.16.13.194
2022-10-23 02:49:27 +0000
0 - 0 - 1 jwteam.net/ 104.16.16.194
2022-10-22 23:48:24 +0000
0 - 0 - 1 pelvichealthhub.click/ 104.16.13.194


JavaScript

Executed Scripts (95)


Executed Evals (5)

#1 JavaScript::Eval (size: 158, repeated: 1) - SHA256: aca05ffb49ee720d7fe9a00189078febd4776d745854664c1975207c62005387

                                        (function() {
    try {
        return google_tag_manager["GTM-NNWVTGK"].macro(2).replace(/\/.*-app/, "//app")
    } catch (a) {
        return google_tag_manager["GTM-NNWVTGK"].macro(3)
    }
})();
                                    

#2 JavaScript::Eval (size: 77, repeated: 1) - SHA256: caa2ab907b4a61c5029ae3060485785164a8e9d8229883e94a733da6ba54d969

                                        (function() {
    var a = document.getElementByName("email").value;
    if (a) return a
})();
                                    

#3 JavaScript::Eval (size: 63, repeated: 1) - SHA256: 28ba4481533721710b0c78f3e273481791279590f1cd9253248a3b7c936c8d46

                                        (_vwo_s().f_n_b(_vwo_s().gC('subscription_package_plan_name')))
                                    

#4 JavaScript::Eval (size: 158, repeated: 1) - SHA256: f723a4ed2f15538a005e58abf36a547b023c5723d2861b91cd2bfccd45906697

                                        (function() {
    try {
        return google_tag_manager["GTM-NNWVTGK"].macro(4).replace(/\/.*-app/, "//app")
    } catch (a) {
        return google_tag_manager["GTM-NNWVTGK"].macro(5)
    }
})();
                                    

#5 JavaScript::Eval (size: 61, repeated: 1) - SHA256: 24444e02c924076d6fe39a97d460c05be995e9d7e68814c0d33b5026fd524a96

                                        (_vwo_s().f_b(_vwo_s().gC('subscription_package_plan_name')))
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 5565, repeated: 1) - SHA256: 72fadb7ba787636891f9b136f52db57f774a01afc1203117c5633d9debd7db1f

                                        < html > < head > < title > Dising < /title><script type="text/javascript
">rD = false;function edcTimeout() {rD = true; }function cto_AI(u,n) { if (rD) {return;} var cto_ifr=document.getElementById('cto_sub_ifr_px');var cto_ifr_doc=null;if(typeof(cto_ifr)==='undefined'||cto_ifr==null)cto_ifr_doc=document;else if(cto_ifr.contentDocument)cto_ifr_doc=cto_ifr.contentDocument;else if(cto_ifr.contentWindow)cto_ifr_doc=cto_ifr.contentWindow.document;else if(cto_ifr.document)cto_ifr_doc=cto_ifr.document;else cto_ifr_doc=document;if(cto_ifr_doc.createElement){var im=cto_ifr_doc.createElement('IMG');if(im){var d=document.getElementById('cto_pc');if(d!==null && d.appendChild){d.appendChild(im)}if(n){im.onload=n;im.onerror=n;im.onabort=n}im.src=u}} }function cto_l(){if(typeof(cto_loaded)==='undefined')cto_loaded=1;else cto_loaded++;}function cto_run() {function l_i1_1(){cto_AI('https://x.bidswitch.net/sync?dsp_id=46&user_id=k-CtP7hGogSgS7CujjJa3R9iILk32Ur83AO7cxVw&expires=30', cto_l);}function l_i2_1(){cto_AI('https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-3eNchWogSgS7CujjJa3R9iILk33PS-tPsEthrw&google_cm&google_hm=ay0zZU5jaFdvZ1NnUzdDdWpqSmEzUjlpSUxrMzNQUy10UHNFdGhydw', cto_l);}function l_i3_1(){cto_AI('https://ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID', cto_l);}function l_i4_1(){cto_AI('https://r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-3uZcSWogSgS7CujjJa3R9iILk31Qe7mgotHEtQ', cto_l);}function l_i5_1(){cto_AI('https://ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-5NP97GogSgS7CujjJa3R9iILk31A0-l4KvMNVg', cto_l);}function l_i6_1(){cto_AI('https://contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-VdudnmogSgS7CujjJa3R9iILk31h6jCglF8KTw', cto_l);}function l_i7_1(){cto_AI('https://exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-92DOe2ogSgS7CujjJa3R9iILk31-oZ79BQy7ZMj4NtuWJ1qV', cto_l);}function l_i8_1(){cto_AI('https://sync.outbrain.com/cookie-sync?p=criteo&uid=k-onsvZGogSgS7CujjJa3R9iILk32z97HQdL5y2w', cto_l);}function l_i9_1(){cto_AI('https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-xbP9SmogSgS7CujjJa3R9iILk31TrIMnv-Q_rA', cto_l);}function l_i10_1(){cto_AI('https://pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-ysQv1WogSgS7CujjJa3R9iILk30ktGlcbyIPUw&expires=30', cto_l);}function l_i11_1(){cto_AI('https://match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-kTP8t2ogSgS7CujjJa3R9iILk30iej07T9UCSQ', cto_l);}function l_i12_1(){cto_AI('https://rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-xvHiNWogSgS7CujjJa3R9iILk33wEQ3EUu3HFg', cto_l);}function l_i13_1(){cto_AI('https://sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-S0BeoWogSgS7CujjJa3R9iILk31jZO-Ve--ibA', cto_l);}function l_i14_1(){cto_AI('https://criteo-sync.teads.tv/um?eid=80&uid=k-o8qAbWogSgS7CujjJa3R9iILk32q1MjNOzF_Nw', cto_l);}function l_i15_1(){cto_AI('https://eb2.3lift.com/xuid?mid=2711&xuid=k-YnODsWogSgS7CujjJa3R9iILk33E3sNSPPn3Dw&dongle=013b', cto_l);}function l_i16_1(){cto_AI('https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-wR4SM2ogSgS7CujjJa3R9iILk32yglijVu08Bw', cto_l);}function l_i17_1(){cto_AI('https://ad.yieldlab.net/m?dm_id=8666&ext_id=k-cL1GDWogSgS7CujjJa3R9iILk31ISYGd-wJjOQ', l_i17_2);}function l_i17_2(){cto_AI('https://ad.yieldlab.net/m?dt_id=8664&ext_id=k-cL1GDWogSgS7CujjJa3R9iILk31ISYGd-wJjOQ', l_i17_3);}function l_i17_3(){cto_AI('https://ad.yieldlab.net/m?dt_id=12438557&ext_id=k-cL1GDWogSgS7CujjJa3R9iILk31ISYGd-wJjOQ', cto_l);}function l_i18_1(){cto_AI('https://cm.adform.net/pixel?adform_pid=15&adform_pc=k-b7_50GogSgS7CujjJa3R9iILk32llMik7EWc8w', cto_l);}function l_i19_1(){cto_AI('https://visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-AbSxtGogSgS7CujjJa3R9iILk33RtYT_VH4hiw', cto_l);}function l_i20_1(){cto_AI('https://gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40', l_i20_2);}function l_i20_2(){cto_AI('https://gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40', l_i20_3);}function l_i20_3(){cto_AI('https://gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40', cto_l);}function l_i21_1(){cto_AI('https://ad.sxp.smartclip.net/sync?type=host&dsp=69&dspuuid=k-GaNh62ogSgS7CujjJa3R9iILk32ltm8oDCmO8A', cto_l);}function l_i22_1(){cto_AI('https://criteo-partners.tremorhub.com/sync?UICR=k-BmuMymogSgS7CujjJa3R9iILk33YyZeN5bp08g', cto_l);}function l_i23_1(){cto_AI('https://sync-criteo.ads.yieldmo.com/sync?id=k-NgscWWogSgS7CujjJa3R9iILk30DtIddbXHHUA&pn_id=criteo&ext=1', cto_l);}cto_tot = 23;l_i1_1();l_i2_1();l_i3_1();l_i4_1();l_i5_1();l_i6_1();l_i7_1();l_i8_1();l_i9_1();l_i10_1();l_i11_1();l_i12_1();l_i13_1();l_i14_1();l_i15_1();l_i16_1();l_i17_1();l_i18_1();l_i19_1();l_i20_1();l_i21_1();l_i22_1();l_i23_1();}</script></head><body><iframe id="
cto_sub_ifr_px " src="
javascript: false " style="
width: 1 px;
height: 1 px;
display: none;
"><div id='cto_pc' style='display:none'></div></iframe><script type="
text / javascript ">document.body.onload = function(){ if(window.cto_run) cto_run(); };window.setTimeout(function(){ if(typeof(cto_loaded)==='undefined' || cto_loaded<cto_tot) {edcTimeout();var redirectLocation=location.protocol+'//static.criteo.net/empty.html'; location.replace(redirectLocation);}}, 5000);</script></body></html>
                                    


HTTP Transactions (281)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 04:10:20 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cpE1oCJyIa-u0Ru9ubHPPCvjfU2Ch5Az2tWr9aMk2MBMUtbwAVzrJQ==
Age: 254


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "06AF9AE9FC72A3AEB4BE2B742128A0CB8EA4AFF348AFE2E4490D3639B3B377D9"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3738
Expires: Thu, 15 Sep 2022 05:16:52 GMT
Date: Thu, 15 Sep 2022 04:14:34 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WC7w80iVl2Lz21e2oRULHn_GoBicwyckEuNzajrTdWS5YwLYKVyVTw==
age: 85159
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET / HTTP/1.1 
Host: grillhogs.co.uk
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.16.12.194
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 15 Sep 2022 04:14:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://grillhogs.co.uk/landing-page9797316
CF-Ray: 74ae894a49afb524-OSL
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store
Vary: Accept-Encoding
CF-Cache-Status: BYPASS
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
Access-Control-Request-Method: *
Pragma: no-cache
Status: 302 Found
X-Frame-Options: ALLOWALL
X-Powered-By: Phusion Passenger Enterprise 6.0.7
X-Rack-Cache: miss
X-Request-Id: a3476b3569cbe843dad4846473b8591b
X-Runtime: 0.206972
Set-Cookie: __cf_bm=6CGIWdqjSP3O.FeL84QdSwaz_.i3CN7N9zdZ1N6gFj4-1663215274-0-AZQg7OfrjoN6u6N7QscAPd0DJhpyU+KK7vRDeOdpd9AKmaeWOE8jgabxJdtRBtWdt3S48E4i5R7nPRe+q9JMhh3dhSTYTb14eVf5H0rzrmXC; path=/; expires=Thu, 15-Sep-22 04:44:34 GMT; domain=.grillhogs.co.uk; HttpOnly; SameSite=None
Server: cloudflare
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (474)
Size:   489
Md5:    13554ac7069b13499c1d22ce11e7f5fe
Sha1:   184d6b639fe75b8b43bf52c9a9f0bc3366874c38
Sha256: dcb7f1673ec316fd57ad56613926cda084730d2514441deb4c940affcc87be40

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 15 Sep 2022 04:14:34 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 15 Sep 2022 04:03:22 GMT
Expires: Thu, 15 Sep 2022 04:49:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XmYaXdGwsg4_4d4HFjYCWdWLv9J_bI8xMfzK6kvR_Glm13d_dAmBoQ==
Age: 673


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3445
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 04:14:35 GMT
Last-Modified: Thu, 15 Sep 2022 03:17:11 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fGkSokobWNESTZFMRE/BsA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.215.91.121
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: m0BE0MLzp66QYWkYTpJdrjhSFc0=

                                        
                                            GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 15 Sep 2022 04:14:36 GMT
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 8658980
expires: Tue, 05 Sep 2023 04:14:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rlAUrwuYL59Y3nF%2B7AhKeSiOGCP7%2BnfpXOblqiOarbV%2FTlJVCtroDDiJD4VHjo8yujjt3s%2BTjHd6SzeEIJsFfk9QBlKxDYfXzVGxj%2F427YdJH6ejAugHB1XzzQK6htG3nOEAC8Yt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74ae89590842b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   27958
Md5:    4b5f47439b640180cc3450f7de05d0d8
Sha1:   5a0dc9bcab80ddc409dd35fcb00a88fe6846fee2
Sha256: 1f85e8b327f42c17c025d69849914068536d9aa95412fe473ae90ffb2f4ebd82
                                        
                                            GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 15 Sep 2022 04:14:36 GMT
content-length: 591
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-514"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1032257
expires: Tue, 05 Sep 2023 04:14:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2WrVqLnW0ytAsDVicyh8WS7V%2BeGLVfBgZrGVE%2FOy2TSuxsZiOIjNKue9ltQGQ5Gal9UqJexz%2Fa3BHeGYjQ8NwGx%2Ftvykr1ACmXWgGt%2F4%2FxfbXUktrBwE%2FQWz57NT%2BP5cK0PYk4Mz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74ae8959385ab506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1266)
Size:   591
Md5:    414869f16aa77a65b4928a018f7f1abb
Sha1:   cea521f7a2958a50239526ed6b068f0937527653
Sha256: afee364ce513c6517247b81cce5eb5eadb1dbbb35e439eb3fa97bbc15fac2cd3
                                        
                                            GET /ajax/libs/video.js/7.11.5/video-js.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
content-length: 9062
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "601c4deb-9c87"
last-modified: Thu, 04 Feb 2021 19:41:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 18090240
expires: Tue, 05 Sep 2023 04:14:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LesrLGCHpznZulrQUWbAx%2BR3zI71trEZgsrQdFQlsuWpz6ZP5VOTfkLUeAr5lfdrTaC47aagT4sC29HbOFHxq5bBGb3%2BonGivQu7GMbqWJayYcKiFLmed7p3xKJc20x3PI41mYea"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74ae8959486cb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (40067), with no line terminators
Size:   9062
Md5:    3254f042ca0979d22645398fa80be3d7
Sha1:   97a5e5b18dd600268caee9e3f1d6e4d1e4cbc34e
Sha256: fa6e06ed2a55412af4d32d9c2a749896ecb4b8e2519102e8bc7897bbf7a05d39
                                        
                                            GET /ajax/libs/lazysizes/5.3.2/lazysizes.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
content-length: 3150
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60641588-1ed1"
last-modified: Wed, 31 Mar 2021 06:24:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 951641
expires: Tue, 05 Sep 2023 04:14:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FG36bzmkABhjNBaScMGzEVI1rDbhEDeEs7BFpl37a%2Be3GnMAxapfU65OP6peoS9vBAqHSzZYld0QmEzAu0emjaFzJxHWOE7dG24OA9sy7RlCyPAwiqs7TOJzKNdquVO0D95bqt8L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74ae8959486fb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7862)
Size:   3150
Md5:    69e8daa3e28b1ac6b1fc4f678b678787
Sha1:   99bc84bbab57fa3c0f00f73bd90866680c9c857d
Sha256: a347e631a0dff734a1e5878c81a016c73ab08c2d2ec6b83643c90006c0eff585
                                        
                                            GET /ajax/libs/video.js/7.11.5/video.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
content-length: 123694
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "601c4deb-831be"
last-modified: Thu, 04 Feb 2021 19:41:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 7800002
expires: Tue, 05 Sep 2023 04:14:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mvBwPyx7F31OKToYN%2B%2FOp62OPhJQeb%2FjixCTqSjM0ciTCVlTr7OxwBwWO85oWHfXKVmjcNCP%2BQBEBFXI0Cyt2By8HCEc%2Bau7yVzLG82bndOz9t%2F2ly1Y5KrnhQev88%2FfpmSsVIkG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74ae89594869b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (47843)
Size:   123694
Md5:    c8acd0c391c3dd83609a45e2bc68879f
Sha1:   ce69fbf230de77446a44e6ae3d98a31c7d115752
Sha256: fb5b82a028361d8c65c32de4fd1863da8402ef4c7ffe3cdf453592abed75c22d
                                        
                                            GET /ajax/libs/fitvids/1.2.0/jquery.fitvids.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
content-length: 658
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5c-724"
last-modified: Mon, 04 May 2020 16:10:04 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9098916
expires: Tue, 05 Sep 2023 04:14:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Holozo1Wt0%2FVdQSBi18ryMnhyCRSBrGmTb9s3aMAyAo%2Bs40JtMtHUMqfPuN3DStPQgV%2BlbvSUuMIcUxYpNmkZOE3Thr7cGSCk2Ho0sBKxaQmlSV66tCyCohJDDgpJm4F%2F%2B%2BmHAC%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74ae89597894b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (1781)
Size:   658
Md5:    a3793fda68bf7dfa7e4bb860e8c64dcd
Sha1:   ea502f364e7fedeaf142eda0ebfe93dcbaeb04c9
Sha256: 7a6d7d82a342c5eb15937f2ce10f19e9d766b30eee0455071824d9172d4e0d4d
                                        
                                            GET /6olhDSSVLPvv1DuK/f770cba2-81ec-46b9-abd2-dba51fbd162d/osano.js HTTP/1.1 
Host: cmp.osano.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.15
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
content-length: 54018
server: CloudFront
date: Wed, 14 Sep 2022 09:18:08 GMT
etag: "ed406efaeaefc60caeda9f14fb7dcf4a"
last-modified: Mon, 23 Aug 2021 15:33:47 GMT
content-encoding: br
cache-control: public, max-age=86400, s-maxage=86400, must-revalidate, proxy-revalidate, no-transform
strict-transport-security: max-age=2592000
x-frame-options: SAMEORIGIN
x-xss-protection: mode=block
x-content-type-options: nosniff
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NW-Gu5QbvMfJJC0pXlB3HZTVsX5M_FI_L4rRp20Zirj_L-Ijl9mbKw==
age: 68189
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65413)
Size:   54018
Md5:    d146e29144f2598ce79123d53e6f48e2
Sha1:   f162e5a8af8abef4b66ac93ea01f2f24f1089fbc
Sha256: 3afd44ef8c3ad75bf8b6458e5af237ec2f003c82365aa8775662299f9c45e703
                                        
                                            GET /ajax/libs/bodymovin/5.5.3/lottie.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
content-length: 52781
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d8b-3d0a4"
last-modified: Mon, 04 May 2020 16:06:35 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 4094842
expires: Tue, 05 Sep 2023 04:14:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N%2BQHxwhZB3MrhmV9JzNlYdd7jG01xCKNU8w%2BAw%2F55PRxlLKkcHrBeIbY5lG0adoGueD2u%2FfAM0B%2BbGv2DstXXnWZ%2BDAbIju%2FLhdynTCU8RCV6vJYzjB0qE%2BvNVwAl%2BBtIVuiMLHq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74ae895a0e63b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   52781
Md5:    6d07992fb90763c5c19e9e5faf8c5099
Sha1:   a0db636fbfbe378969ff878d051a426dde2f8e6c
Sha256: 6e4e7973170ec4f623732b62421099d7ef14d5bdd8609c3bd737d77c7911f269
                                        
                                            GET /npm/@videojs/http-streaming@2.12.0/dist/videojs-http-streaming.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.12.0
x-jsd-version-type: version
etag: W/"4c8e9-F+lCUr+TzLo2aUt7zzNc326ch7U"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 15 Sep 2022 04:14:37 GMT
age: 2611576
x-served-by: cache-fra19164-FRA, cache-bma1623-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 88151
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (60658)
Size:   88151
Md5:    dc70b0b42163413d9c50aef40270720c
Sha1:   b82549d46889dd272af72694dcbb37e8352a4141
Sha256: d5b327ecc0f569eb14e336b09ce630cea99f7320f0fb47df6949b39d83717df7
                                        
                                            GET /js/client/2.3.1/firebase.js HTTP/1.1 
Host: cdn.firebase.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.1.195
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public,max-age=432000
content-encoding: br
etag: "c471381dd2e66f21f5e780deedd3ffc6848f71aa6dc8a275db39262d8f2145c7-br"
last-modified: Wed, 15 Jul 2020 22:46:44 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Thu, 15 Sep 2022 04:14:37 GMT
x-served-by: cache-bma1639-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663215277.184382,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 38932
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2251)
Size:   38932
Md5:    101041a14a95983b793e63058e1a9fe5
Sha1:   98b57a531cafd91792d04bd9e4a242003dd642aa
Sha256: 394397d4750bbed239d13fcfbb83f7968225445ec59a760264e4e7bbc7dd1bf5
                                        
                                            GET /2e07a442-7a52-4be0-b8a8-92e95fd3a29e.js HTTP/1.1 
Host: cdn.cfptaddons.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
server: Cowboy
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, public
etag: W/"c3d6454077b82a53ef43844c5a8e1dd4"
x-request-id: 3b85740f-f092-453d-bf5b-f50f2a0240ed
x-runtime: 0.013820
strict-transport-security: max-age=31536000; includeSubDomains
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Thu, 15 Sep 2022 04:14:37 GMT
age: 56
x-served-by: cache-bma1647-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1663215277.182670,VS0,VE0
content-length: 7054
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5487)
Size:   7054
Md5:    94d5551174c32c042b0c57835fbeee25
Sha1:   e6c21a6d2528ceaa658e6c73e6b53934d95c8d9f
Sha256: c3d6454077b82a53ef43844c5a8e1dd428c6d8e72b050b707a57391cf85c579c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13957
Expires: Thu, 15 Sep 2022 08:07:14 GMT
Date: Thu, 15 Sep 2022 04:14:37 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13957
Expires: Thu, 15 Sep 2022 08:07:14 GMT
Date: Thu, 15 Sep 2022 04:14:37 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff58a0d09-8340-4c32-9c0f-4a16eb02a332.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6380
x-amzn-requestid: ec42c090-3ccb-4a96-94d4-12e0ec616c12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeB6ZFeRIAMFgjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632249db-798dd3a9039c840c695c23d3;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 21:38:36 GMT
x-amz-cf-pop: DEN52-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 37VtWc_MhoHpDelmFWFJgjp5ZvFbDsTkZzxhWAx5SN1AtMRfRGwS2g==
via: 1.1 befcfd7ee847a3c890471f27612dbcde.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:43:14 GMT
age: 23483
etag: "5aa2ca4a551c811dce2c615402f3d55e8bd9af01"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6380
Md5:    651614370b644d8db7de117f63d8f201
Sha1:   5aa2ca4a551c811dce2c615402f3d55e8bd9af01
Sha256: 155b03327ab70b1bda11e54095ca9e337f4681a8202487a3eb4752efebc73bcb
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13957
Expires: Thu, 15 Sep 2022 08:07:14 GMT
Date: Thu, 15 Sep 2022 04:14:37 GMT
Connection: keep-alive

                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "8C5EB9FCABCC0A49CA1690B72402150E5F9A0334"
Expires: Thu, 15 Sep 2022 15:00:00 GMT
Last-Modified: Thu, 15 Sep 2022 03:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2697
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ae895ad8d1b515-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    31bb5b290d7198b9b35c62d6a0cf2bd0
Sha1:   4abb894f96d5488aa3472ab14c6733d09bf0dc3d
Sha256: b125d4b1eb306ce5cec642e77d1a3c4dac8e87d20cfed02790dd272782617aa8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52159404-0704-4df5-9f35-e4a1f747570b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9814
x-amzn-requestid: 9a7523fc-5b9c-449a-b9a4-493f63a1a6fa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUhGnHQFIAMFyOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e7bc3-26ddc5e62dc268832dc9c24d;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 00:22:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5Hza1jsNo902Lcr9SW8-WMSidAJKfc3lVqxqbS7d_tDZqwv_4rcMzA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:43:54 GMT
age: 23443
etag: "b17c656ba220024540ab04f8d246cafd017cf728"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9814
Md5:    f7082899e630002ee0b8c99889b989e0
Sha1:   b17c656ba220024540ab04f8d246cafd017cf728
Sha256: 15ccc20ac18b381beb84ad39f684fceea311243c9497e1d5f512aafe95cae863
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6770
x-amzn-requestid: b7c9513c-b8ba-41c7-9f9a-0a9d2266172d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FlpEVRIAMFygA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144fbd-7a4408363cdc46c9355a9f47;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fqj5PljprRruE1jwYAVwKoHkjys-RakUjzuV67_Ued6T4et99JPxPg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:04 GMT
age: 23553
etag: "f6b742549ea35a4b1345cffb937a8bbcceee08ef"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6770
Md5:    2e5f57ba37fac4e6047a9a321a8ec084
Sha1:   f6b742549ea35a4b1345cffb937a8bbcceee08ef
Sha256: f8c67c54806e47089b9ba297599e3e4cde1fd2e2e38b76acc9e8de0e99d7b77e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e20bf1d-c24c-4dc0-9796-f2f870591ff2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6484
x-amzn-requestid: cefd7270-c8ca-4ced-b9bd-52353fbefa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBIIUHOZIAMF9wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316ba35-7d4c4c53090c83ea3fadbf4e;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 03:10:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V0CJvbFSNJT2eHVOeCkdZNStr6eZg3EO0YTNyTUsmiirYMm9gfzBKg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:19 GMT
age: 23538
etag: "098d000aebd7ba0637fe420b9dfdacd2146af240"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6484
Md5:    cb7c9c7f4257ab79526157f3ba507d6e
Sha1:   098d000aebd7ba0637fe420b9dfdacd2146af240
Sha256: 74fd95bcffcaf6919e8bca4184978340bef089528f9d184e7d88e1fd4c83288b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5392f754-e2f9-4a41-bd41-e281b109c83d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5097
x-amzn-requestid: 7d0072f1-0832-4b01-9f5a-081c7d193420
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YaGbEGDiIAMFqGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320b779-2ee57a3e5641f70c00116156;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 17:01:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5TMIu7RzFcpyWKH_HSAd4LDal3PFMAa37n0SVEVDFGyz5RJeqJq5Rw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:43:12 GMT
age: 23485
etag: "96afd6daa0d13f8a05ceb77880f967d539f37702"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5097
Md5:    6fcd0641757ecb9061e0272fc9377b8a
Sha1:   96afd6daa0d13f8a05ceb77880f967d539f37702
Sha256: 8af5e3c3e524a5e3661e50a36403a5cc6c95521e77984ce954ceefd5a542abfc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F657cccbe-0328-47ca-9cb6-848236500e87.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4058
x-amzn-requestid: 6fb11d89-afcb-4dd5-8212-7eb9287abff8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeB7aGTgIAMF8Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632249e2-281221601c4edaa4105d5ba1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: psAfwga-3NPvY3OXVMFiHO4gyHzZAaUe-i_f2w-KGkemxnM6LB8fag==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:39:20 GMT
age: 23717
etag: "43b1f37e0a1893cdedec3bcb40ebb92155fa8ec2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4058
Md5:    892e3a49b60f2ce79b26cb31cc3a2b5b
Sha1:   43b1f37e0a1893cdedec3bcb40ebb92155fa8ec2
Sha256: bbb6eb180ce75debb068d66e77f97741af530039b2008e726b0daf69d0207fd3
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 507
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
server: cloudflare
cf-ray: 74ae895ad949b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 512
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
server: cloudflare
cf-ray: 74ae895ad94ab523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 504
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
server: cloudflare
cf-ray: 74ae895ad948b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   26594
Md5:    26545dddec9157c96388570a6c95b5d2
Sha1:   9bdb6f2f76401a17ad9b9bbd00dda0a24fcde419
Sha256: 0ebaca68cf151b7bca321f7e9a1ae3a8ef988aea98a3981afeb7436180d84e37
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 500
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
server: cloudflare
cf-ray: 74ae895b7999b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   82203
Md5:    7467e0ee45af65fb5ae5a227c4514745
Sha1:   413443813efb900a5af593c2e9ae3d7f7698e3d6
Sha256: 6a51c802293732a61e94424cbc90ee9d3822f8bcbc4e7122b17d62a7558ff5f3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /releases/v5.15.0/css/all.css HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.196.18
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
x-amz-id-2: NGReVATvbLwp7RgNIVpFjSKnerxuZ060BKvfL5a+Y7HjzRPh8w95EZYR8ahJueSKqjD+n00VBPA=
x-amz-request-id: FJP0PV21S9NQ75AR
last-modified: Wed, 30 Jun 2021 15:40:08 GMT
etag: W/"aea9c5d01496a6f97de6431fc3ffb6d7"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 28074740
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kn2qSbWElOvhCg%2FTxYSxtX0vkknUi%2FSqjxMOiconOvoOt%2FMHcd%2FWmFVNMPJc%2FaCd0ZrwRTF7wwRF0GsQ77HFPeZw1W%2B8ZfLqcUQr80eZbQo0EhSeQLqi39EwhMkuWUxsW3HvkdyF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ae89595e65f40b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59158)
Size:   13342
Md5:    9a6cacc831e110910e51eb248832238e
Sha1:   c07853cb6fa1318f2307bfbdd35f353a3ea564e0
Sha256: 6fc66d45f431dc1a5ff4ea3a377f093696230ca48081e9ad4fb06abf5766f64f
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 498
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
server: cloudflare
cf-ray: 74ae895ac946b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Size:   12924
Md5:    4610010f425c140b99c88b6819ce1c02
Sha1:   a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
Sha256: 7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
                                        
                                            GET /editor/closemodal-v2.png HTTP/1.1 
Host: www.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Cookie: __cf_bm=QFMvw34A6u4EHyPkjOH3HyTMweF5aO4ij2TxWIH_Lyw-1663215276-0-ARnwXFZQgKNwPrbH1gcnxo+tVIOhpdyUDBTQd9C9uA6GximO+xf8cIW4UvlpOTaLBU3DxHcFigHXE9AOUcS7B8e550L0hWlLDRMIl4Nlkm/1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.14.194
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
cf-ray: 74ae8958bf8db4f7-OSL
access-control-allow-origin: *
cache-control: private
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 404 Not Found
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 40f89f25af435f710ec6e5950596cb42
x-runtime: 0.062148
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3110
Md5:    9e97bf8222f7e9cf43f14bfa1c9628c4
Sha1:   9c669e1a1e58f6d389caa500fa9bc1157face1f5
Sha256: bdeae4949ebc5103fac1c8f75aed2adb515d56e4f2c8401326bb9e964153803a
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 522
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
server: cloudflare
cf-ray: 74ae895b799ab523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   4951
Md5:    15a492e766245019b08dee63f0349429
Sha1:   d00ac0c6601a74cf31c497211522f0d4af85751d
Sha256: 2a7a15b4f2b2e8f40176c11700edeb933142675e1a0af450ef3dc2e67e4db8a1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 519
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
server: cloudflare
cf-ray: 74ae895ac944b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size:   7816
Md5:    25b0e113ca7cce3770d542736db26368
Sha1:   cb726212d5d525021752a1d8470a0fb593e0c49e
Sha256: 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
                                        
                                            GET /clickfunnels/svg_image_data/funnelFlowImageData-v2.js HTTP/1.1 
Host: s3content.s3.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.217.171.17
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
x-amz-id-2: cwIKofCw/uTUlQBdeVNR5xzB85eLlCy56m6rHc27lUn1AaI+0Yz6eITU2NF9oJj2a2bstYRu8uE=
x-amz-request-id: G9HK9JR0CMJKSTVD
Date: Thu, 15 Sep 2022 04:14:38 GMT
Last-Modified: Mon, 18 Nov 2019 19:08:11 GMT
ETag: "bd45b4e04f993d58db0a98b7f56f494b"
Cache-Control: max-age=86400
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 57132


--- Additional Info ---
Magic:  ASCII text, with very long lines (57030)
Size:   57132
Md5:    bd45b4e04f993d58db0a98b7f56f494b
Sha1:   3601aeae69f4428f63faebfa8a9e63a63e90d0e3
Sha256: 63c718b76be7b2dfbed15c1b7f277abe9e6493d46a61b64984c40171d247072f
                                        
                                            GET /video/379117028?autoplay=0&title=0&byline=0&wmode=transparent&autopause=0 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.128.61
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 15 Sep 2022 04:14:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://backend.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*; report-uri /_csp
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Thu, 15 Sep 2022 04:16:00 GMT
x-host: player-5cc7f5c747-qggfq
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-8
x-backend-proxy: playproxy9
x-bapp-server: player-5cc7f5c747-qggfq
Age: 0
X-Served-By: cache-bma1627-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1663215277.478491,VS0,VE126
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=sunJpE7QD6QwlkQlKejMzDL6yoj0.J4jg5uRPC7TRJw-1663215277-0-ARSSQ0nPt4yDF1fD2hpKvxcd7xqw4VUa33gd9q9U8wGNBdaHV6u9UUZUdVjE59y7IdwWYeeuz8PY478BsQ9kvDw=; path=/; expires=Thu, 15-Sep-22 04:44:37 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74ae895c2965b515-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (16872)
Size:   5241
Md5:    b6e798aa6106984408f3e52affd333ec
Sha1:   a99261779d02e74199641886ba2b407e1506c332
Sha256: 274df503960b31007f2b7b587c304fd976bbc91c32d152ac750919bbd4ba6b02
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 08:31:01 GMT
expires: Wed, 13 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 157416
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /uploads/digital_asset/file/176632/clickfunnels-dark-logo.svg HTTP/1.1 
Host: images.clickfunnel.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.26.2.26
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
last-modified: Tue, 09 Feb 2016 06:46:32 GMT
etag: W/"06dbf51e97cdca22ba5b01e5c8ce6be8"
cache-control: max-age=31536000
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9b.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uT5ogiys1vISHpmu63NyMif3WO7XJz726jeYtX2APbbZe0_4-NhJlw==
age: 11325487
cf-cache-status: HIT
set-cookie: __cf_bm=VxrI2EVW6YPkchmgQyb7mdHYajWvABPclVH6ezwJAnM-1663215277-0-AZ9TvdjVAf7t3cskODFvb19HhSCt8X99ki6HgSLuxvEC6tTL9YctEky63nasu77J51AY4qUx7+csfMvI+iV2wi4=; path=/; expires=Thu, 15-Sep-22 04:44:37 GMT; domain=.clickfunnel.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9B%2FB3Fh5B5hO%2B7HS8gYGbb2xR3gRjCpGzMDcslW3zN5nomhqhnTSKOq5NdirYxN42wuKp1z20KpNGXfXz9PoHUjazZ%2Biz3WZG1uWLME7nou6gXjIxjs8Qg%2BX43lme4YNS2QmVI%2F%2Fhls%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ae895b7942b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (8643), with no line terminators
Size:   82687
Md5:    b1bde1a95fd03f889b9262e3dda47da1
Sha1:   481532ace92e7ffa86084799d723e3f09e047a53
Sha256: 3330bfaa04ea1ea9eaa10ff5588b334274c2f084d484eee10d9e88178e1014a8
                                        
                                            GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:26:57 GMT
expires: Thu, 14 Sep 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 31660
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Size:   13036
Md5:    0ad032b3d07aaf33b160ac4799dda40f
Sha1:   06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
Sha256: c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 519
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
server: cloudflare
cf-ray: 74ae895ac942b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 73892, version 1.0\012- data
Size:   73892
Md5:    635348e072c68e9688cc691f988eddd1
Sha1:   2a86c0cee213c342a68620bf3b3dde31b786637e
Sha256: 9a1f63454ea0b7caaecaeb0d801e866c6cb7d49a987d41e796976f4f00bed86a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 519
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
server: cloudflare
cf-ray: 74ae895cfa81b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   26148
Md5:    c9731d8436921677ddbb8834a7b915fe
Sha1:   f6c9ca05b81f6ddbd4250404fc0b5b18d96e14f4
Sha256: 98ec702f28d9edd38ca35d6d5e3de45d9c8f276f9fb91b21e4c721bbd01df8c0
                                        
                                            GET /cache/ffe42393bdc5493779dcb20b98c37cd7.webp?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=ASIAULXLPKYZKHYAXPDA%2F20220124%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20220124T184443Z&X-Amz-Expires=900&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEFIaCXVzLWVhc3QtMSJGMEQCIDxicyMDwm6UfUx3XZWgsm%2FYRBOX3JI0IAeAOAsGd5jbAiAzDfZDf4y4t2bqqWRwua1mCRTMxbsnqMNsj00MG%2FMVZyr6Awh7EAEaDDMwMDA2NzgwNDcyMiIM3dfZtpEO9viBxyI%2BKtcD6oJOclw%2FVaCd9Q7JN9oFN9LQ%2BuM6TWkP%2Br8EzWeenvHFLMrXp5FqOOrK1YFPZZ0MVslPiMvgHqrvfc0X%2BX4r64X2bS8r5dIleecUzuWKV7l32l32WWpvhnYgqxBpdlmSlw2VkuZW%2BOZUP%2B7ilqAjsJZHFJRRZnQh4QOR7wGjjHkHTauB4kItpCj7rE40rpetf0vvG8jOtnN9BGXkD41asPe%2F3octSdYuOtxxZxuwYM8Z%2F%2BGRTwOnL41euOgCgcY63wkTl8c%2BivgnBRMjshpzIT6RcjlOcgCeIwzNj3klPi3zbgg1%2BuHS8u7PFVvtQvNf2M3hKZNkszktOZOS6%2FP9EKu%2B586BuWqN%2FWg3q4eJQtdXFiWOSlZXlEF29RmXmRqjYRuMbM8dJOJtUa2VVRQtn93mjkBytP85gWn%2Bv7W4odwa2VYoPRFAxK1cgXErJbjgKza3bUHklVgSz4mastN5acLXujbRO8pwTlANaBD8YPfU3wPDi1wYEgukYFChLsgvwAvQFjNIO5HNe8N810ib%2Bk12Yw5DKhklOO0HVL9rwBB5gZuznmYiGoB%2BmcxveCZMJKu81Zfv0VH54MDrhvu7AIfe9UWbBd%2FDWzN24xaxEO6lH%2BrSka%2BEMLvBu48GOqYBz%2FoeCOLqXXuDyPLuUFb37vsJcjWaKd4CwrmKJAkjllaZhHdMZv%2FpZUtyD%2B7QIHEc6ctU6V%2BGAFdfZZCXCY61RXQFYki0iCxV8hdyiqNqSMXUo5NNB6ROLw9YRr4CVyplBwQFBCY6ffxJvL7xOTSncjpxgzCq3Ud9bU56hs9bfcGSSnpWnwck4XZeFEcGFBNOS9EVM89CtsXX1yUlyiSQhlV6uqrjfA%3D%3D&X-Amz-SignedHeaders=host&X-Amz-Signature=1222ebba5cd8fbe318a487e0762b157b3e586885ff9eeb3edb3cb7db23c272e7 HTTP/1.1 
Host: cf2-private-production-workspaces-assets.s3.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.217.171.17
HTTP/1.1 403 Forbidden
Content-Type: application/xml
                                        
x-amz-request-id: G9HGRAEVPWKQGKCH
x-amz-id-2: yK3yF+p5nsf9lOFBRYQOKEDSA5JY5yMIvp/fGH8uE7KarSHgjVJQXY3PC1hNKdWSfDHa+h17nFQ=
Transfer-Encoding: chunked
Date: Thu, 15 Sep 2022 04:14:37 GMT
Server: AmazonS3


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   5513
Md5:    cf649a054b8110b1e4d99fa8ee7e50a9
Sha1:   89e105804a5ed224eb0642b3a8a31f2e392cf4ec
Sha256: ee668977af138ec962334f984d7b288b084f919b988f7870fca69c2badd3dc16
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 519
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:38 GMT
server: cloudflare
cf-ray: 74ae89604c64b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3520
Md5:    0541fac683d28db9df307f02a4a6861d
Sha1:   1f62883dffdd13e4acc6bd070f92ee8a34671fa7
Sha256: 71c0c660ab1988d6f72ceb327307e851b0de04d9b1eb45f36d5a3cb58348c974
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 499
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:38 GMT
server: cloudflare
cf-ray: 74ae89606c70b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   20291
Md5:    4004ba0e2bb66b9aeaa32a8544f6eeab
Sha1:   5bf81fc199d0a7fcc805d154e33cdfc992a9689b
Sha256: 1bb8fbd867ab8d696b7ca95485fa59d154afb14213041f9d4d12bbff398da7fd
                                        
                                            GET /editor/closemodal-v2.png HTTP/1.1 
Host: www.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Cookie: __cf_bm=QFMvw34A6u4EHyPkjOH3HyTMweF5aO4ij2TxWIH_Lyw-1663215276-0-ARnwXFZQgKNwPrbH1gcnxo+tVIOhpdyUDBTQd9C9uA6GximO+xf8cIW4UvlpOTaLBU3DxHcFigHXE9AOUcS7B8e550L0hWlLDRMIl4Nlkm/1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.14.194
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
cf-ray: 74ae895be95cb4f7-OSL
access-control-allow-origin: *
cache-control: private
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 404 Not Found
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 4b8b2809bd103521be40f29b18bb0aee
x-runtime: 0.133638
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3636
Md5:    75717b1c2c6884b9993f60efe85909bc
Sha1:   d2b09c4b070a1757448b364f269ef87d03de3645
Sha256: a1d55c6f03acb9b82b5ab9be1197cfe580c8462df08f6d98a77d9031a8865ccc
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 485
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:38 GMT
server: cloudflare
cf-ray: 74ae89604c68b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Size:   1938
Md5:    9da31d2dff3fdbd4d3edf08953489d9a
Sha1:   a53a6d979e825a9738d18fbd225463e621a28e62
Sha256: 7cee1f0e7d154c3bfde85fb73a9663a5cce4ca214989249e530af89020c7268b
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 519
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:38 GMT
server: cloudflare
cf-ray: 74ae89606c75b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Size:   1613
Md5:    c485a4d8571e77d6409f892cfab8146a
Sha1:   515b46f35993fb6433a6edfc5786a0a5b7dd87c5
Sha256: 3348263a50cf631967715e8c1feef67dc48a163b60f02dcd69365e44e668aa16
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 633
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
server: cloudflare
cf-ray: 74ae895cfa7eb523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   212200
Md5:    1bf1cd7e4980bdcf6fc5f33823b2280e
Sha1:   3f9724f4a224915506d6ef7c96dc0564f2c51466
Sha256: 13d45c1b32674b0f6d60248713b74d4845ccbef7714b97799f76b3be286ca1d2
                                        
                                            GET /v2/4420/wr-051bb36b7693c10a1a1d5ce2dc1a4f6e.js HTTP/1.1 
Host: widget.wickedreports.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.69
HTTP/2 200 OK
content-type: text/javascript
                                        
content-length: 423
last-modified: Wed, 31 Aug 2022 15:52:21 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 03:53:05 GMT
etag: "052fee2b15ba47b2bd07e94d738bb3f0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UCmTVR_0OGglBfSPXz9sngN4Lz4_VqaTbFFcrr2ONkKrCsG9Hjkpcw==
age: 2270
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (423), with no line terminators
Size:   423
Md5:    052fee2b15ba47b2bd07e94d738bb3f0
Sha1:   49301d210d1ba78608ba4a9a97a23d1ac3c53f84
Sha256: e374368491681e74bcfa0243db9e7e55d58561351db134fdda588ed58cab5ea7
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "598383FE80935DC184B67BD5EAA2F88BFF92B8D83E6162C04198572D9F6E94F3"
Last-Modified: Tue, 13 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10339
Expires: Thu, 15 Sep 2022 07:06:57 GMT
Date: Thu, 15 Sep 2022 04:14:38 GMT
Connection: keep-alive

                                        
                                            GET /app/public/script/c6f367af-544a-4136-93d5-3ae34d896add HTTP/1.1 
Host: my.capibox.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         78.46.194.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Server: nginx/1.16.1
Date: Thu, 15 Sep 2022 04:14:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.25
Cache-Control: max-age=0, must-revalidate, no-cache, no-store, private
pragma: no-cache
expires: -1


--- Additional Info ---
Magic:  ASCII text
Size:   6685
Md5:    62249962b60f415fb12b887ea9478dc4
Sha1:   8aced83aabb7722eba937e80b7bac6d3769b510b
Sha256: 808f487f52ad72e801d1292f23d50c91c03efb8398f8b0be27d0e2590517aaae
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 579
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:38 GMT
server: cloudflare
cf-ray: 74ae8962eddcb523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 437
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:38 GMT
server: cloudflare
cf-ray: 74ae89635e12b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   4863
Md5:    69ebc3dafcec20ce2423594cb83bccf4
Sha1:   fdecd9c078d65c1a90a9fa37f73c190b7d5ac51d
Sha256: 41bbd5069da924831a920cce8bd8371605ab55f3eda234ee5d551e11e0a96de0
                                        
                                            GET /js/ld/ld.js?a=45125 HTTP/1.1 
Host: dynamic.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         178.250.2.140
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 15 Sep 2022 04:14:38 GMT
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin, Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (42898)
Size:   19621
Md5:    7f6d5e0c8a749fb9c81eaf4c72ca2477
Sha1:   91b0ca6c1e488d804cf0c8392cb9d8aa5be204ba
Sha256: 8712e1c310c9e7e9d9b7a2eab4de6b6ec8c9b4fb3a1a9535dd69a6deb729a347
                                        
                                            GET /video/379117028?autoplay=0&title=0&byline=0&wmode=transparent&autopause=0 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.128.61
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 15 Sep 2022 04:14:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://backend.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Thu, 15 Sep 2022 04:22:26 GMT
x-host: player-5cc7f5c747-8rzdl
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-2
x-backend-proxy: playproxy3
x-bapp-server: player-5cc7f5c747-8rzdl
Age: 0
X-Served-By: cache-bma1661-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1663215279.796492,VS0,VE119
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=_hLm7XLfAxIH_KGhdjcJZe1SYASWyhNJNMQoUxj.iHs-1663215278-0-AWiWbDnP4NrMnZjTPtwzHcDhgU32FxnLqT+kciVgzLws60lMvEIvor2HvKvGpxUjWNIvLjrkO8pkG9vgGlvRKCY=; path=/; expires=Thu, 15-Sep-22 04:44:38 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74ae89646cba0b41-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (15987)
Size:   5168
Md5:    a41000c46b41ed24f4a3fa3381189a08
Sha1:   7f4fdd776deeb69b222561e1be1711c6ed1f53d7
Sha256: 1fe547fefdfbc41cce53a4b45d025adaa7dc4f779d4aba12acd6cbc670b76cf9
                                        
                                            GET /images/closemodal.png HTTP/1.1 
Host: www.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Cookie: __cf_bm=QFMvw34A6u4EHyPkjOH3HyTMweF5aO4ij2TxWIH_Lyw-1663215276-0-ARnwXFZQgKNwPrbH1gcnxo+tVIOhpdyUDBTQd9C9uA6GximO+xf8cIW4UvlpOTaLBU3DxHcFigHXE9AOUcS7B8e550L0hWlLDRMIl4Nlkm/1; cfhoy_visit=9b7b3283-4591-4ce8-bc35-816f483492b9; cfhoy_visitor=9224797f-4082-485c-9f3d-f698928881eb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.14.194
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 15 Sep 2022 04:14:39 GMT
cf-ray: 74ae8965fedeb4f7-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 24171
cache-control: public, max-age=2678400
content-disposition: inline; filename="closemodal.webp"
etag: "630e9cfc-314"
expires: Sun, 16 Oct 2022 04:14:39 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=788
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   27382
Md5:    eb71ce72b23d8d4ec3fc17f075918053
Sha1:   3e7833897dc200e7f230b05a98f7426b4f090a8a
Sha256: ba449eed96dc8bd7bd0b7e239e279805ac5ea30c55a891c3a3a289a0788d4cdf
                                        
                                            GET /e0/641cd0cb3611e8a5efdf0f4d679b5f/playbutton.png HTTP/1.1 
Host: images.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Cookie: __cf_bm=QFMvw34A6u4EHyPkjOH3HyTMweF5aO4ij2TxWIH_Lyw-1663215276-0-ARnwXFZQgKNwPrbH1gcnxo+tVIOhpdyUDBTQd9C9uA6GximO+xf8cIW4UvlpOTaLBU3DxHcFigHXE9AOUcS7B8e550L0hWlLDRMIl4Nlkm/1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.16.14.194
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 15 Sep 2022 04:14:39 GMT
content-length: 53878
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=81347
content-disposition: inline; filename="playbutton.webp"
etag: "a1ef531f738bfbbb3f8e9ea289308b05"
last-modified: Mon, 08 Oct 2018 20:15:25 GMT
vary: Accept
x-amz-id-2: NTwkl56SroAxLQypf3fILjZLPGXBRtv4990IM2Kh4j30fOM7HfG3oRPnfv+2A980oVD/A46fO1g=
x-amz-request-id: J5Y9GDG2S1RCZBF3
cf-cache-status: HIT
age: 3348
expires: Sun, 09 Oct 2022 04:14:39 GMT
cache-control: public, max-age=2073600
accept-ranges: bytes
server: cloudflare
cf-ray: 74ae89662efeb4f7-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   53878
Md5:    722b100ec6f80eab4222d751e1a0a8b7
Sha1:   875c1efd3e19ddbee05ac83f4ab2b47dd256df23
Sha256: 5eadc9edf663f153cd1ad927276f2a9409c0b88f0b34f6cc64465412a9089d03
                                        
                                            GET /35/663790d4c411e899cbf7997697a31b/big-play-button.png HTTP/1.1 
Host: images.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Cookie: __cf_bm=QFMvw34A6u4EHyPkjOH3HyTMweF5aO4ij2TxWIH_Lyw-1663215276-0-ARnwXFZQgKNwPrbH1gcnxo+tVIOhpdyUDBTQd9C9uA6GximO+xf8cIW4UvlpOTaLBU3DxHcFigHXE9AOUcS7B8e550L0hWlLDRMIl4Nlkm/1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.16.14.194
HTTP/2 200 OK
content-type: image/webp
                                        
date: Thu, 15 Sep 2022 04:14:39 GMT
content-length: 16730
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=20462
content-disposition: inline; filename="big-play-button.webp"
etag: "357cc44bc52f2f52c2e6ee3b32b64e62"
last-modified: Sat, 20 Oct 2018 23:59:43 GMT
vary: Accept
x-amz-id-2: ZE3cUURWT0TkjmF3f16TlN8KXd4H1IanNPEmPqm9v1+MCCzbkCbKZlI0rzczuu9enjzEUrTRNXk=
x-amz-request-id: WY6M62XDWQ7G59S1
cf-cache-status: HIT
age: 1293
expires: Sun, 09 Oct 2022 04:14:39 GMT
cache-control: public, max-age=2073600
accept-ranges: bytes
server: cloudflare
cf-ray: 74ae89666f2bb4f7-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   16730
Md5:    cb31a00146496569d0dd2a9f55600743
Sha1:   3a01412644c32b929c0e48d2838cf9ba48bb85c6
Sha256: c8665200581de312ee71061fa11d45817b2fb16f92e28d717032a7a15e07a99b
                                        
                                            GET /video/1061572665-485e3adf9e84ae32bbae85f3c2da214eb914cfd22355998006bb6bbe585ed99b-d HTTP/1.1 
Host: i.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: image/avif
                                        
etag: 63a0fb69483ea04fbfe3a1e15bc0127c
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-bfqx
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Thu, 15 Sep 2022 04:14:39 GMT
age: 739444
x-served-by: cache-dfw-kdfw8210113-DFW, cache-bma1627-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663215279.194152,VS0,VE2
vary: Accept
content-length: 218204
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   218204
Md5:    63a0fb69483ea04fbfe3a1e15bc0127c
Sha1:   defdb35181f699471f711632ad91868096bd3064
Sha256: 336503356bebefe6cb04bc16dce8180d3e58f58b689367108606edc5f6e197a9
                                        
                                            POST /s/gts1d4int/S8bfnalmCqs HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:39 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 579
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:38 GMT
server: cloudflare
cf-ray: 74ae8962fde2b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   43246
Md5:    822e22501395ff75ca3f7d512c40b4b1
Sha1:   9410092b54a73ed3e190a5907d54f39569a137d0
Sha256: 6f04c3b496975379eeeceb32f2a033b0020460203280235ddafe50fb4b4db3b2
                                        
                                            GET /releases/v5.15.0/css/v4-shims.css HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.196.18
HTTP/2 200 OK
content-type: text/css
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
x-amz-id-2: IhtWSHnFSFs3Mus4whEBxsP9GWAceS4gdhxN5WfxRMMAfANfW+CRCdrIvyZ4Pxzk6f5xtEHZdL8=
x-amz-request-id: 4YXM454ZB34JYEHK
last-modified: Wed, 30 Jun 2021 15:40:08 GMT
etag: W/"5a9dcb2fa7b210eac0921a39b90798e4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 27982236
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QuTU%2Fj2BWb4E9lX5JIqBnp7nK%2FXjYi%2FygUNONpupbLEDKE97PpEZOD2FyUN3EXNja35bZ7zirpFMytmJ%2B2v%2BkkFGsFGwyY3JGjQvcFpAFN63QznUIrDoBFmMdBZ4taWG4Opu7vXP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ae89595e67f40b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26516)
Size:   6053
Md5:    af7df6f7c25e3fe0d896025864b44638
Sha1:   6f1593f59e9107517d513be240e7d80282b8004e
Sha256: f4db01e4a0f8fee037b8a052cfa54e6a490db103c56d997cf3cb830431fdbb01
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 499
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:38 GMT
server: cloudflare
cf-ray: 74ae89609c9fb523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 579
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:38 GMT
server: cloudflare
cf-ray: 74ae8960ccb8b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   16827
Md5:    c3efd811a142c2a77a02566476048da2
Sha1:   625941fe3113cbbc8f728223d36dcfca65f83a60
Sha256: 2eecf381f1c91040016db807bbb8d319d2b2ecc63eec00f156a31187e77d4416
                                        
                                            GET /p/4.10.0/js/module/sentry.js HTTP/1.1 
Host: f.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 15 Sep 2022 04:14:39 GMT
age: 552785
x-served-by: cache-iad-kiad7000062-IAD, cache-bma1682-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 13662
x-timer: S1663215280.558195,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
content-length: 18787
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (50848)
Size:   18787
Md5:    4dc70b9b557ca8c79f297fbfba442427
Sha1:   d96ad931b8f34a3af61241a7c8ecb18d42467658
Sha256: c8820405ee78804703fb058593abd91c3b9182efd4598d263f4235bb5140295b
                                        
                                            GET /exp=1663219178~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=a3da9141e29c8ed0526db739c2993d39426d698786b8c62fff922d60e4212e5e/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/sep/video/8b85d74b,7fc34c59,e0804459,9f9d0c89,303adf91/audio/0ebf24e1,32f5b81a/master.json?query_string_ranges=1&base64_init=1 HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.168
HTTP/1.1 200 OK
Content-Type: application/json
                                        
origin-retrieved-hour: 1658289600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 4797
Aka-c-hit: cache-hit
Cache-Control: max-age=26613082
Date: Thu, 15 Sep 2022 04:14:39 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.a44c2417.1663215279.285a201
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.168
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (22441)
Size:   4797
Md5:    303a850b758cc938aecfe5da1b5f82c4
Sha1:   637ae1888c8852c8f4f0be6600502905d5f23e3a
Sha256: 0aff687cb804e0d9e4f5bfbcbf008e22322a21e9df5daa7c1b1f8bc75c5c9d0c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2980
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 04:14:39 GMT
Last-Modified: Thu, 15 Sep 2022 03:24:59 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 312

                                        
                                            GET /dna HTTP/1.1 
Host: dnacdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         178.250.0.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:39 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=tVPCg180M0RITmhlJTJCZkMwOUJGQlhaMUN2czY2dUc3NSUyQjg0OFFJQzhKSTNzRnpSTjd3V3VOSFZsRXFlNUMwbTFDalZndQ; expires=Tue, 10 Oct 2023 04:14:39 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 146334
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 928
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 04:14:39 GMT
Last-Modified: Thu, 15 Sep 2022 03:59:11 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 313

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 928
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 04:14:39 GMT
Last-Modified: Thu, 15 Sep 2022 03:59:11 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 313

                                        
                                            POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:39 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /exp=1663219178~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=a3da9141e29c8ed0526db739c2993d39426d698786b8c62fff922d60e4212e5e/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/sep/audio/e0804459/chop/segment-1.m4s?r=dXM%3D HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.168
HTTP/1.1 200 OK
Content-Type: video/mp4
                                        
Content-Length: 96272
using-starlord: true
origin-retrieved-hour: 1658610000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=26931400
Date: Thu, 15 Sep 2022 04:14:39 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.a44c2417.1663215279.285a202
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.168
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  data
Size:   96272
Md5:    59affa340baacb47f39f3c5cb1fdfc18
Sha1:   5e5266378cfdd3ac284a63f6bd977d3b06ea8084
Sha256: e25c8f8c200c6a2ca547a103f79d5ee97fdc60dd948b8de6bdb93f27d06f73a6
                                        
                                            POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:39 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /exp=1663219178~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=a3da9141e29c8ed0526db739c2993d39426d698786b8c62fff922d60e4212e5e/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/parcel/video/7fc34c59.mp4?r=dXM%3D&range=1021-232868 HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.168
HTTP/1.1 200 OK
Content-Type: video/mp4
                                        
Accept-Ranges: bytes
Content-Length: 231848
Last-Modified: Thu, 15 Jul 2021 16:22:58 GMT
Server: parcel
Timing-Allow-Origin: *
Origin-Retrieved-Hour: 1626364800
Aka-c-hit: cache-hit
Cache-Control: private, max-age=25014656
Expires: Sat, 01 Jul 2023 16:45:35 GMT
Date: Thu, 15 Sep 2022 04:14:39 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.a44c2417.1663215279.285a20b
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.168
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.168~requestid:285a20b~time:1663215279~ghostforwardip:~edgecache:cache-hit~rtt:0~region:NO-; path=/; domain=.akamaized.net;


--- Additional Info ---
Magic:  data
Size:   231848
Md5:    8c3c933a50fa0a02c33c46d16e88e9fb
Sha1:   1bf6db0ad6191ace02472142bc89735f45ca5f4e
Sha256: 9628bc204b6681ff75d9f89fbb04278addc48b783d84935f9d41e476ba82952a
                                        
                                            POST /add/player-test-impression?beacon=1 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Thu, 15 Sep 2022 04:14:39 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST /add/player-stats?beacon=1&session-id=28646e3fcfa8bb945e21d8baea418feb4c1be9851663215278 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1435
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Thu, 15 Sep 2022 04:14:39 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 437
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:40 GMT
server: cloudflare
cf-ray: 74ae896c1bbfb523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

                                        
                                            POST /add/player-test-impression?beacon=1 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Thu, 15 Sep 2022 04:14:40 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST /add/player-stats?beacon=1&session-id=4573deb3decbf49b0e984c8b1688f98c239c80301663215278 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1437
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Thu, 15 Sep 2022 04:14:40 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST /add/player-test-impression?beacon=1 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Thu, 15 Sep 2022 04:14:40 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            GET /newidsd HTTP/1.1 
Host: ag.gbc.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         185.235.84.63
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Thu, 15 Sep 2022 04:14:39 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 119431
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1325)
Size:   20045
Md5:    7340a0183886564d2010311cb66822af
Sha1:   a6d2310230dbfec06804744eee55aa50f37a91e6
Sha256: 2a8560d2488389f8e94be1f8cab3f7fca47ea310584c5cb50b12993f77647dd0
                                        
                                            GET /js/profitwell.js HTTP/1.1 
Host: dna8twue3dlxq.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.5
HTTP/2 200 OK
content-type: application/x-javascript
                                        
last-modified: Tue, 28 Jun 2022 18:43:42 GMT
x-amz-version-id: Wa8rEL0sgfJJ468C6RWZ8GSg57cuV9EE
server: AmazonS3
content-encoding: gzip
date: Thu, 15 Sep 2022 04:14:40 GMT
cache-control: public,max-age=86400
etag: W/"f3710cf44008e9509cf9d74fde8cff1f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7kjlg6gFNeXz13qAjdnCUP2-PsM2hAjI0aY9PDWVzmlcu2owpMXxPA==
age: 6883
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   9819
Md5:    76ef9f3124b0d8ec5ce7dc0b3c622702
Sha1:   a4320f48b7a592c75be9c37be8a7fd3f9db128e8
Sha256: e549673158814908d8086a309353932d231d6888570a274a27e2752b2bc24ca2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.starfieldtech.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.41
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Thu, 15 Sep 2022 04:14:40 GMT
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 14 Sep 2022 21:44:33 GMT
Expires: Thu, 15 Sep 2022 21:44:33 GMT
ETag: "08afee0795ded875540d7bacd479ac6ca22fb1c1"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1845
Md5:    77ce74beb4be2acc4c78c124eb9c2e94
Sha1:   08afee0795ded875540d7bacd479ac6ca22fb1c1
Sha256: a241c91d41f9a808a3032ce8f82842b6370162bd6b6cc4183e16c33e600104cd
                                        
                                            GET /exp=1663219178~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=a3da9141e29c8ed0526db739c2993d39426d698786b8c62fff922d60e4212e5e/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/sep/audio/e0804459/chop/segment-2.m4s?r=dXM%3D HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.168
HTTP/1.1 200 OK
Content-Type: video/mp4
                                        
Content-Length: 95017
using-starlord: true
origin-retrieved-hour: 1658610000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=26931370
Date: Thu, 15 Sep 2022 04:14:40 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.a44c2417.1663215280.285a20f
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.168
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  data
Size:   95017
Md5:    f2be6a325c4dafec87c37fd8138376dd
Sha1:   5671400df4578f49c64354f1e0ae6a7fb56d57a8
Sha256: a54f370feb17d632d53ebd7cb862dbc1ab5fde9557db79c68c53cbbd01ab682c
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 665
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:40 GMT
server: cloudflare
cf-ray: 74ae896edd87b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   209771
Md5:    c6b754893014a45c0a198c8794da90f1
Sha1:   49c4689471fea264fdddddc669cef0cbfd045716
Sha256: 9ad3461c1dc17147262325bc5d6af9571f86db9d32b5ee4b3b92746e4d8cf0e6
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 519
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
server: cloudflare
cf-ray: 74ae895d5ac2b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   10962
Md5:    ffe47a030f0da73cb559cc649602c0e4
Sha1:   5a6b55f7c640a955a7afad97d90074dc6ae6ff9f
Sha256: fefbd637b8ac985994bd2d334425aeafb58e3813186eb9808b9f8cf7d233b4ff
                                        
                                            GET /ct/core.js HTTP/1.1 
Host: s.pinimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.197
HTTP/2 200 OK
content-type: application/javascript
                                        
etag: "7cac7e5d9e2b15cdc4ae76549dde174b"
cache-control: max-age=7200
accept-ranges: bytes
content-length: 1182
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1182), with no line terminators
Size:   1182
Md5:    7cac7e5d9e2b15cdc4ae76549dde174b
Sha1:   41a5b48387aef7bef116d52da64af00c504c7f86
Sha256: d8261c0f4ae314e710ac7b15aa6bd0cf371de5b1cec41331ca12a1c392742ce6
                                        
                                            GET /api/player.js HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.159.128.61
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=utf-8
                                        
Date: Thu, 15 Sep 2022 04:14:40 GMT
Content-Length: 6136
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: default-src 'none'; style-src 'unsafe-inline'
x-content-type-options: nosniff
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Thu, 15 Sep 2022 04:23:53 GMT
x-host: player-5cc7f5c747-jls8v
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-0
x-backend-proxy: playproxy1
x-bapp-server: player-5cc7f5c747-jls8v
Accept-Ranges: bytes
Age: 1247
X-Served-By: cache-bma1681-BMA
X-Cache: HIT
X-Cache-Hits: 552
X-Timer: S1663215281.561953,VS0,VE0
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=_2i9.FL3ybusav3KtdMeLaXoKj7BjbXJXYVao6IopRs-1663215280-0-AausbqFl0cfBC/NkAHmJRE1AFsPc1IpSVEfqL5tooNZW5Ob4DbFjux6oa2w9uk64et9btOd8zTNYPvQ52uN3T3w=; path=/; expires=Thu, 15-Sep-22 04:44:40 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74ae896f6d5eb515-OSL


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (20390)
Size:   6136
Md5:    517096278768b4afc862e5816d65a0cd
Sha1:   efb337f1d1c369be5b5fa5fb34c3742d54dcb87d
Sha256: e39f4bcf8422e05cf4600c00ec36a02ee3ef772f947874272456534c6bffbe13
                                        
                                            GET /li.lms-analytics/insight.min.js HTTP/1.1 
Host: snap.licdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.121
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
                                        
last-modified: Fri, 12 Aug 2022 20:23:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=44644
date: Thu, 15 Sep 2022 04:14:40 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7751)
Size:   3063
Md5:    57efbbeb3e1d23c82b677511c67c8b0e
Sha1:   f927ba115ef4be362694c22850ddbdd1c1b054d1
Sha256: 873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 655
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:37 GMT
server: cloudflare
cf-ray: 74ae895d9aecb523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   39790
Md5:    5b71ae8d8bebde9f9e3cde8a5b250cf6
Sha1:   8c0d47f474ef943d9d09f2df233f173085be67a9
Sha256: 1eac88a6438b1d91a23af17a50dd411ec25e5ed55ff40ba6addcddd160158673
                                        
                                            GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XJMXXSCP9Q&cid=1748256063.1663215266&gtm=2oe9e0&aip=1&z=402503817 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 15 Sep 2022 04:14:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /exp=1663219178~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=a3da9141e29c8ed0526db739c2993d39426d698786b8c62fff922d60e4212e5e/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/parcel/video/7fc34c59.mp4?r=dXM%3D&range=442640-658494 HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.168
HTTP/1.1 200 OK
Content-Type: video/mp4
                                        
Accept-Ranges: bytes
Content-Length: 215855
Last-Modified: Thu, 15 Jul 2021 16:22:58 GMT
Server: parcel
Timing-Allow-Origin: *
Origin-Retrieved-Hour: 1626364800
Aka-c-hit: cache-hit
Cache-Control: private, max-age=26860689
Expires: Sun, 23 Jul 2023 01:32:49 GMT
Date: Thu, 15 Sep 2022 04:14:40 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.a44c2417.1663215280.285a221
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.168
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.168~requestid:285a221~time:1663215280~ghostforwardip:~edgecache:cache-hit~rtt:3~region:NO-; path=/; domain=.akamaized.net;


--- Additional Info ---
Magic:  data
Size:   215855
Md5:    c1ff52a72500ca380286ddd04493da52
Sha1:   24ffe3a3935f9e990ad37a4573d7e9ffeeddb0ac
Sha256: d1a51f6042adc538582b3f3778f3d70f2e3dfbf69f5bd3813683d3b894b6003e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-36443564-3&cid=1748256063.1663215266&jid=1675948762&uid=user_ID&gjid=56391424&_gid=1614892465.1663215266&_u=YGBACEAABAAAAC~&z=1252982458 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.154
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.clickfunnels.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 15 Sep 2022 04:14:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /collect?v=2&fmt=js&pid=537730&time=1663215265945&url=https%3A%2F%2Fwww.clickfunnels.com%2F HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.42.14
HTTP/2 302 Found
                                        
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D537730%26time%3D1663215265945%26url%3Dhttps%253A%252F%252Fwww.clickfunnels.com%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJXtuXxPcfTJAAAAYM_WyJ2HVMp7o5jeSbnt8dxBhnwlYHENLy39Wk0eZr22QJ2e5Fb2CnzloRRHQ; Max-Age=2592000; Expires=Sat, 15 Oct 2022 04:14:40 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure AnalyticsSyncHistory=AQIwR3hdbFt5CgAAAYM_WyJ2tpf5_xAVGynSNKWAGjGioWPGe9TJJAnTHBo26WPMNqmXXXqUzjIXH2C9nhHJiw; Max-Age=2592000; Expires=Sat, 15 Oct 2022 04:14:40 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&b4a1239f-8e49-4f4c-8366-85f15b1e2079"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 15-Sep-2023 04:14:40 GMT; SameSite=None lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2384:u=1:x=1:i=1663215280:t=1663301680:v=2:sig=AQGbNx3MMguyxTMPtSZo76UzrnWLN_vQ"; Expires=Fri, 16 Sep 2022 04:14:40 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXor3v+bn08NK78TiGswQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5BEA375691234C4493677813C3E1DC0E Ref B: OSL30EDGE0421 Ref C: 2022-09-15T04:14:40Z
date: Thu, 15 Sep 2022 04:14:40 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 820
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:40 GMT
server: cloudflare
cf-ray: 74ae896edd84b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 579
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:40 GMT
server: cloudflare
cf-ray: 74ae89712eefb523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 630
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:40 GMT
server: cloudflare
cf-ray: 74ae8971cf47b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   65532
Md5:    74e062f975f5935c93ae5aff80efbd87
Sha1:   ae469032d7d943122a1e4ec7ce6dc73d185d9a76
Sha256: 1c4c3d71f8112224bad72285ac70e083b30a4573ac413fb3b05a0749d144ceaf
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:14:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 666
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:40 GMT
server: cloudflare
cf-ray: 74ae896fce28b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1011
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:40 GMT
server: cloudflare
cf-ray: 74ae8971ff5fb523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

                                        
                                            GET /event?a=45125&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvp%26p%3D1&p2=e%3Ddis&adce=1&bundle=W7q0719EeUhVbk8zMk5aWkNLMHFJTHh6WEZaVjFtRHBGZ2FORDh6NXU4cG9aaUI0UlB5c2dVcCUyQlBBS0tyJTJGVVNQa1clMkY1RkJxcVp0RTN2TzI3QUlOVWR4MktQQm1rMFdpRmIlMkY2bmlhdUZ5QWFGdWZJZzA0NG5GTEMwc2R3ODl5dWxhTjQxb3RpQXRpMkg5JTJCOHA1ZUtESW5OVnlBJTNEJTNE&tld=clickfunnels.com&dy=1&fu=https%253A%252F%252Fwww.clickfunnels.com%252F&dtycbr=94862 HTTP/1.1 
Host: sslwidget.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         178.250.2.151
HTTP/2 302 Found
                                        
date: Thu, 15 Sep 2022 04:14:40 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=45125&v=5.12.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvp%26p%3D1&p2=e%3Ddis&adce=1&bundle=W7q0719EeUhVbk8zMk5aWkNLMHFJTHh6WEZaVjFtRHBGZ2FORDh6NXU4cG9aaUI0UlB5c2dVcCUyQlBBS0tyJTJGVVNQa1clMkY1RkJxcVp0RTN2TzI3QUlOVWR4MktQQm1rMFdpRmIlMkY2bmlhdUZ5QWFGdWZJZzA0NG5GTEMwc2R3ODl5dWxhTjQxb3RpQXRpMkg5JTJCOHA1ZUtESW5OVnlBJTNEJTNE&tld=clickfunnels.com&dy=1&fu=https%253A%252F%252Fwww.clickfunnels.com%252F&dtycbr=94862
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 11607877
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

                                        
                                            GET /video/512712952?title=0&byline=0&wmode=transparent&autopause=0&autoplay=1&muted=1 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.128.61
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 15 Sep 2022 04:14:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://backend.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Thu, 15 Sep 2022 04:15:48 GMT
x-host: player-5cc7f5c747-xv58j
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-2
x-backend-proxy: playproxy3
x-bapp-server: player-5cc7f5c747-xv58j
Age: 0
X-Served-By: cache-bma1658-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1663215281.003240,VS0,VE117
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=h4.NGUh8qjxePx.PZ6P_jN8ZASOuGXpyjgvx3AdcajI-1663215281-0-AcCDuz7z8Q9sCKlp7vKBRWsfRZd92DjtIFUYBdi4QnSqebwW+skOvSOznsg5Oyst58iiZJsJqO7ETiyywXHrxX8=; path=/; expires=Thu, 15-Sep-22 04:44:41 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74ae89722ebeb515-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14534)
Size:   4872
Md5:    e24b58ddafdd747dfb0ad71c1c0c21f5
Sha1:   93084eb31dc30882cfbcf1a344ef80369eb8d1d2
Sha256: bf257147609254d4a70fc8c4dabdcf796a0d187206868213dcb99b753ad0d835
                                        
                                            GET /video/379115978?title=0&byline=0&wmode=transparent&autopause=0&autoplay=1&muted=1 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.128.61
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 15 Sep 2022 04:14:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://backend.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Thu, 15 Sep 2022 04:19:03 GMT
x-host: player-5cc7f5c747-bg9wk
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-5
x-backend-proxy: playproxy6
x-bapp-server: player-5cc7f5c747-bg9wk
Age: 0
X-Served-By: cache-bma1675-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1663215281.009835,VS0,VE121
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=fwotCJcmdUImdez3O3iXwz6Xjp4tM2Nl03WeyUlSPNI-1663215281-0-AYnAfMlHI/aAWMncBR0vgmikDEIX81mFt1lrV/u/8IrBdXAdXwRDmR35dobmBpp3RHbxOInpSIJpCLhCW/i+0uw=; path=/; expires=Thu, 15-Sep-22 04:44:41 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74ae89723aea0b41-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (15532)
Size:   4916
Md5:    cbb85040e5dd766f7feab7506ccfa170
Sha1:   2b1de4fa1010be9905719f5c23879d1d1d59e45d
Sha256: 44e1ce0ffe77caa3546e86b2e123c7cecb4d674b9db2897f875cf216662c6a93
                                        
                                            GET /i18n/pixel/identify.js HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 20220915041441984218B08A2F98EAA81A
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61e994a190024d025f18fc8569a0758eed9b2716d5acaf1db34af7f3369c60f798504138df4c415d02639d05b73dfaeb7a34043530cff64c61db084ced62fc013b4bdda3621e65eff74479b726ab96dcaf0
content-encoding: gzip
x-origin-response-time: 7,104.78.78.69
x-akamai-request-id: efe70216.83bf4fb0
expires: Thu, 15 Sep 2022 04:14:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 15 Sep 2022 04:14:41 GMT
x-cache: TCP_MISS from a104-84-152-230.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a104-78-78-69.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=113, origin; dur=7, inner; dur=3
x-parent-response-time: 120,104.84.152.230
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   58283
Md5:    18636cc94b7ff1b75898c0e1f9bf3a02
Sha1:   c62eab40b77a7eabfab9f18bce3d4e8f7bbb9c5b
Sha256: 4df807ffd20eb0f12c705c8290d4d5d03e9f5d1bcd7f87169b592bedb3797ebf
                                        
                                            GET /collect?v=2&fmt=js&pid=537730&time=1663215265945&url=https%3A%2F%2Fwww.clickfunnels.com%2F&liSync=true HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.clickfunnels.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.42.14
HTTP/2 200 OK
content-type: application/javascript
                                        
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&8f629318-3864-4099-8457-13d8d5e7d2b8"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 15-Sep-2023 04:14:41 GMT; SameSite=None lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2384:u=1:x=1:i=1663215281:t=1663301681:v=2:sig=AQEGGLjA9ZJ9KT1_E1U5D4NsjuPqTTCN"; Expires=Fri, 16 Sep 2022 04:14:41 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXor3wHmOwkAbAk5fDK6w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 8237269D8FC1442E8C16FD1B04312113 Ref B: OSL30EDGE0421 Ref C: 2022-09-15T04:14:41Z
date: Thu, 15 Sep 2022 04:14:40 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 617
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:41 GMT
server: cloudflare
cf-ray: 74ae8973484db523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, was "main.1feae7a5.js", last modified: Fri Sep 9 20:37:14 2022, from Unix\012- data
Size:   18775
Md5:    d71950c126ac31081855340c334b3ee1
Sha1:   2a43ce857bf8879bf2169e61b71b199456facd8f
Sha256: 7352539c85c7cd46e99d65b1243f92bc394b7dbd0ab6c49510ab5f53c48df0cb
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 437
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:41 GMT
server: cloudflare
cf-ray: 74ae8972dfedb523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 688
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:40 GMT
server: cloudflare
cf-ray: 74ae896efd9bb523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3712
Md5:    792137c388430fbb2d8619a6e52e9f2c
Sha1:   254d7af6fa6041fc166051f857269c2ec54cf2d8
Sha256: 71bb1ce430434c57db6bd8ae7b28da01305059dfd457bb02b62ad57dee32337f
                                        
                                            GET /bootstrap.js?h=60a4a8cb9dce5c1b934f4aec32f25052 HTTP/1.1 
Host: wsv3cdn.audioeye.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.25.76
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Thu, 15 Sep 2022 04:14:41 GMT
etag: W/"f6d5930dd0d8e0764232b9b29cd4400b"
cache-control: max-age=120
cache-tags: 60a4a8cb9dce5c1b934f4aec32f25052
surrogate-keys: 60a4a8cb9dce5c1b934f4aec32f25052
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ae89747c720b45-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (21350), with LF, NEL line terminators
Size:   26326
Md5:    716d96543c65de119cd9ef66e5e2cd77
Sha1:   1cd6abd74560d541b7adfc11022e68f1ae27cebd
Sha256: 8ca16c0000d2a026afc408369ab71da0c111884127d40e59657267db6cd76804
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 437
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:40 GMT
server: cloudflare
cf-ray: 74ae8971bf3ab523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

                                        
                                            GET /user/?tid=2614147906150&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%22em%22%5D%7D&cb=1663215266985 HTTP/1.1 
Host: ct.pinterest.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.197
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpEZzNZemN4TXpFdE56Z3hOeTAwWm1VeExUbGxNV1l0WVRVNE9UTXlPR1l3TWpJMQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.clickfunnels.com
content-encoding: gzip
content-length: 382
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 7795623057965136
date: Thu, 15 Sep 2022 04:14:41 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1663215281.115d0852
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (539), with no line terminators
Size:   382
Md5:    4133ff14bfae835ba7a2976dd28e0b9b
Sha1:   16163c58f272d772629605e987cdcc02fc1d78a2
Sha256: c887dfff8fa67dd6fa30fae875db0c94ff1ad8ae8fc48a81ef2e1d262dfb44a4
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 608
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:41 GMT
server: cloudflare
cf-ray: 74ae8975d9d3b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    9b8d19f4310c758344e40bf17fbc7e85
Sha1:   2290ef058812d5f5e398736e2316cba8cf8093cf
Sha256: 37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 615
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:41 GMT
server: cloudflare
cf-ray: 74ae89748923b523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   34745
Md5:    d988095a0e35c2fcb5fb9586e521200d
Sha1:   88edc39f36451fed04eb44d2a99ca3a043e78970
Sha256: 9eecff1c3f31b7c55a749d6c0287e8dca2d046470b85c1d64f15514ca85dff4f
                                        
                                            GET /exp=1663219181~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=937cb71573d3b4af3e1d31a770a6e1472d2084da40d68395315fcda3e690b785/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/sep/video/8b85d74b,7fc34c59,e0804459,9f9d0c89,303adf91/audio/0ebf24e1,32f5b81a/master.json?query_string_ranges=1&base64_init=1 HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.168
HTTP/1.1 200 OK
Content-Type: application/json
                                        
origin-retrieved-hour: 1658289600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 4797
Aka-c-hit: cache-hit
Cache-Control: max-age=26613080
Date: Thu, 15 Sep 2022 04:14:41 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.a44c2417.1663215281.285a222
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.168
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (22441)
Size:   4797
Md5:    303a850b758cc938aecfe5da1b5f82c4
Sha1:   637ae1888c8852c8f4f0be6600502905d5f23e3a
Sha256: 0aff687cb804e0d9e4f5bfbcbf008e22322a21e9df5daa7c1b1f8bc75c5c9d0c
                                        
                                            GET /exp=1663219181~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=937cb71573d3b4af3e1d31a770a6e1472d2084da40d68395315fcda3e690b785/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/sep/audio/e0804459/chop/segment-1.m4s?r=dXM%3D HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.168
HTTP/1.1 200 OK
Content-Type: video/mp4
                                        
Content-Length: 96272
using-starlord: true
origin-retrieved-hour: 1658610000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=26931398
Date: Thu, 15 Sep 2022 04:14:41 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.a44c2417.1663215281.285a240
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.168
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  data
Size:   96272
Md5:    59affa340baacb47f39f3c5cb1fdfc18
Sha1:   5e5266378cfdd3ac284a63f6bd977d3b06ea8084
Sha256: e25c8f8c200c6a2ca547a103f79d5ee97fdc60dd948b8de6bdb93f27d06f73a6
                                        
                                            GET /exp=1663219181~acl=%2Fab71b475-0e35-43da-b723-64893b792f2b%2F%2A~hmac=0ebc263481c98ceb04fda8b32a5b26c470601b04c79a2656a90fc712a97563e9/ab71b475-0e35-43da-b723-64893b792f2b/sep/video/d9eabe33,30e8219e,a5b84d84,f0f3943f,ccfe2c94/master.json?base64_init=1 HTTP/1.1 
Host: 44vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.161
HTTP/1.1 200 OK
Content-Type: application/json
                                        
origin-retrieved-hour: 1656165600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 5897
Aka-c-hit: cache-hit
Cache-Control: max-age=26821617
Date: Thu, 15 Sep 2022 04:14:41 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.9d4c2417.1663215281.3ae3a1e
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.161
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (33971)
Size:   5897
Md5:    273ea4d49628854ef18f0e5a47014836
Sha1:   f138ef84192443aa051e0f30acb4b49296b13a8a
Sha256: 791838f3d748877785117a1a3d6bd982a0afe071f586ece8d82bbcd9026b20d1
                                        
                                            GET /i18n/pixel/config.js?sdkid=C96CKN3C77U7KEOR4D80&hostname=www.clickfunnels.com HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.84.152.234
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 202209150414419DA579B9597868C66A85
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61e3b5abc4166c8e729682c4aeb7a9b45fa88c99e9909b57dd0e40b5e1b61faee27fa45c47dbffc904ec6e15f31e780a8b547f1bd097cfc5de424a88a434e6cde3b82f9fda0f5787f8a249026b411addd7d
content-encoding: gzip
x-origin-response-time: 6,23.32.16.93
x-akamai-request-id: 32911106.83bf4f2e
expires: Thu, 15 Sep 2022 04:14:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 15 Sep 2022 04:14:41 GMT
x-cache: TCP_MISS from a104-84-152-230.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
vary: Accept-Encoding
set-cookie: _ttp=2Emyv9HqMIuN3vrxFi1EEchImvy; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-32-16-93.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=6, inner; dur=3
x-parent-response-time: 107,104.84.152.230
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   251556
Md5:    6f3d595907fd339b9ac271842e3b7c80
Sha1:   59f34a172c3f7541e501015428ef1301cf21a22f
Sha256: c774d2044dd36d06c9c499dcfe174b6d2144140b068735f770a17e8a08656aaf
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 611
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.21.157
HTTP/2 200 OK
                                        
date: Thu, 15 Sep 2022 04:14:41 GMT
server: cloudflare
cf-ray: 74ae8973181cb523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Size:   323
Md5:    b49b45b63051915a8c657060651eb07f
Sha1:   acaddf8021f220d0e4d30e7c8b3d8330ff781af9
Sha256: 4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
                                        
                                            GET /exp=1663219181~acl=%2Fab71b475-0e35-43da-b723-64893b792f2b%2F%2A~hmac=0ebc263481c98ceb04fda8b32a5b26c470601b04c79a2656a90fc712a97563e9/ab71b475-0e35-43da-b723-64893b792f2b/sep/audio/30e8219e/chop/segment-1.m4s?r=dXM%3D HTTP/1.1 
Host: 44vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.161
HTTP/1.1 200 OK
Content-Type: video/mp4
                                        
Content-Length: 47994
using-starlord: true
origin-retrieved-hour: 1656169200
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=26825633
Date: Thu, 15 Sep 2022 04:14:42 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.9d4c2417.1663215282.3ae3a1f
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.161
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  data
Size:   47994
Md5:    a5850128d5ed6e9c47d1b9ef922db34f
Sha1:   143affda373672a195fa6917e724cf517b812944
Sha256: 77738a797453332714fe51e02b53b113352c113d4d8b5611c614b8687a43f239
                                        
                                            POST /cdn-cgi/script_monitor/report?m=TkH0v50D0PzF84q.uk3zqCZ2zcFyPMykBOLjPycxfPw-1663215276-0-AXdNC9s-wnsYzvBnkNpKX07NBkndGtm_o-5CaL8OR-0OK8ooqZYkP1-pghaOq1U8kKR9zGd11PrlFUKJ5w_uAhGNBQsbfUplC9UPsF2D9Ox5 HTTP/1.1 
Host: csp-reporting.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*