Overview

URL w1.msssnv.com/prod/2dc56081-9453-451c-b161-86b0ebee474a/3b46a78e-d61b-48f2-9174-2c6a9c5a5ae7
IP3.223.208.36
ASNAMAZON-AES
Location United States
Report completed2022-09-12 23:58:21 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-12 2 w1.msssnv.com/prod/2dc56081-9453-451c-b161-86b0ebee474a/3b46a78e-d61b-48f2- (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (47)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-12 04:51:48 UTC 142.251.1.155
mnemonic passive DNS ocsp.sca1b.amazontrust.com (5) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
mnemonic passive DNS api.hubapi.com (1) 4102 2013-06-05 22:03:49 UTC 2022-09-12 09:56:12 UTC 104.17.200.204
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-12 05:38:13 UTC 143.204.55.110
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-12 04:53:23 UTC 34.117.237.239
mnemonic passive DNS js-agent.newrelic.com (1) 378 2017-01-30 05:00:15 UTC 2022-09-12 05:15:47 UTC 151.101.86.137
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-09-12 14:32:52 UTC 216.58.211.2
mnemonic passive DNS snap.licdn.com (1) 1044 2014-10-06 08:43:45 UTC 2022-09-12 04:56:38 UTC 2.22.244.73
mnemonic passive DNS js.hscollectedforms.net (1) 5697 2017-03-02 10:33:31 UTC 2022-09-12 10:48:44 UTC 104.17.127.171
mnemonic passive DNS js.hs-analytics.net (1) 2411 2013-09-26 02:22:44 UTC 2022-09-12 06:56:08 UTC 104.17.70.176
mnemonic passive DNS js.hsadspixel.net (1) 3795 2017-07-25 13:13:14 UTC 2022-09-12 08:39:44 UTC 104.17.116.176
mnemonic passive DNS www.cardoneventures.com (1) 0 2019-06-05 19:04:31 UTC 2022-09-01 08:33:41 UTC 54.194.170.100 Unknown ranking
mnemonic passive DNS fast.wistia.net (37) 8009 2013-01-09 23:10:46 UTC 2022-09-12 06:17:58 UTC 151.101.86.110
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-12 12:46:20 UTC 34.120.237.76
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-12 05:49:45 UTC 216.239.32.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS forms.hsforms.com (1) 5160 2018-03-07 15:21:13 UTC 2022-09-12 08:39:45 UTC 104.16.87.5
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-09-12 04:51:47 UTC 95.101.11.115
mnemonic passive DNS 10x.cardoneventures.com (21) 0 2022-01-07 22:36:32 UTC 2022-08-30 12:20:15 UTC 104.16.16.194 Unknown ranking
mnemonic passive DNS use.fontawesome.com (2) 942 2017-01-30 04:43:25 UTC 2022-09-12 04:57:45 UTC 104.21.63.54
mnemonic passive DNS fhlnft.com (1) 0 2022-02-23 22:53:17 UTC 2022-09-12 22:53:19 UTC 104.16.12.194 Unknown ranking
mnemonic passive DNS embedwistia-a.akamaihd.net (4) 8967 2015-09-29 16:24:07 UTC 2022-09-12 08:54:34 UTC 2.22.244.88
mnemonic passive DNS js.hs-scripts.com (1) 2571 2016-08-09 10:18:36 UTC 2022-09-12 06:56:07 UTC 104.17.213.204
mnemonic passive DNS fonts.gstatic.com (3) 0 2014-08-29 13:43:22 UTC 2022-09-12 04:51:32 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS bam.nr-data.net (1) 630 2015-02-10 00:06:27 UTC 2022-09-12 05:03:26 UTC 162.247.241.14
mnemonic passive DNS app.clickfunnels.com (3) 34727 2015-03-12 08:40:23 UTC 2022-09-12 10:45:15 UTC 104.16.12.194
mnemonic passive DNS embed-ssl.wistia.com (15) 22795 2017-01-29 17:01:09 UTC 2022-09-12 06:28:49 UTC 151.101.86.133
mnemonic passive DNS js.hsleadflows.net (1) 4609 2017-02-22 10:43:00 UTC 2022-09-12 06:56:08 UTC 104.17.232.204
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-12 22:27:22 UTC 142.250.74.3
mnemonic passive DNS w1.msssnv.com (1) 0 2022-06-22 16:27:10 UTC 2022-09-12 13:18:41 UTC 34.204.222.45 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2022-09-12 16:45:27 UTC 93.184.220.29
mnemonic passive DNS ocsp.pki.goog (13) 175 2017-06-14 07:23:31 UTC 2022-09-12 04:51:36 UTC 142.250.74.3
mnemonic passive DNS www.upwvirtual.com (1) 0 2020-06-15 19:58:33 UTC 2022-07-23 11:16:20 UTC 104.16.15.194 Domain (upwvirtual.com) ranked at: 60129
mnemonic passive DNS pipedream.wistia.com (4) 6958 2017-01-30 04:30:40 UTC 2022-09-12 05:58:30 UTC 52.44.213.33
mnemonic passive DNS distillery.wistia.com (5) 6708 2012-09-30 02:46:15 UTC 2022-09-12 06:07:23 UTC 44.197.44.53
mnemonic passive DNS js.hs-banner.com (1) 2426 2020-03-26 17:45:21 UTC 2022-09-12 06:56:08 UTC 104.18.33.171
mnemonic passive DNS track.hubspot.com (1) 2528 2012-12-25 23:30:42 UTC 2022-09-12 11:23:26 UTC 104.19.154.83
mnemonic passive DNS px.ads.linkedin.com (1) 522 2017-08-08 16:28:50 UTC 2022-09-12 13:43:22 UTC 13.107.42.14
mnemonic passive DNS www.linkedin.com (1) 608 2014-04-09 13:16:08 UTC 2022-09-12 05:45:06 UTC 13.107.42.14
mnemonic passive DNS fonts.googleapis.com (3) 8877 2014-07-21 13:19:55 UTC 2022-09-12 17:48:33 UTC 142.250.74.10
mnemonic passive DNS fast.wistia.com (12) 5153 2012-07-04 00:34:57 UTC 2022-09-12 05:58:28 UTC 151.101.86.110
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-09-12 04:53:50 UTC 157.240.200.14
mnemonic passive DNS www.facebook.com (1) 99 2017-01-30 05:00:00 UTC 2022-09-12 04:52:07 UTC 157.240.200.35
mnemonic passive DNS forms.hubspot.com (1) 3593 2014-03-21 07:12:37 UTC 2022-09-12 08:39:45 UTC 104.19.154.83
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-12 17:57:11 UTC 143.204.55.115
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-12 06:04:57 UTC 52.43.61.95
mnemonic passive DNS static.cloudflareinsights.com (1) 1294 2019-09-24 14:34:56 UTC 2022-09-12 07:05:51 UTC 104.18.47.230
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-12 17:33:32 UTC 142.250.74.174


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 3.223.208.36

Date UQ / IDS / BL URL IP
2022-11-18 17:04:59 +0000
0 - 0 - 1 tracking.revamedia.dk/ 3.223.208.36
2022-11-18 05:32:31 +0000
0 - 0 - 1 w1.msswol.com/prod/cdcf8e28-c59b-412c-84af-8e (...) 3.223.208.36
2022-11-16 13:55:54 +0000
0 - 0 - 1 w1.msscnw.com/prod/3977917c-1c6f-4aa9-9c02-5c (...) 3.223.208.36
2022-11-15 02:52:28 +0000
0 - 0 - 1 tracking.revvanaplan.com/prod/90a6d0d4-d411-4 (...) 3.223.208.36
2022-11-14 23:14:17 +0000
0 - 0 - 1 w1.mssdps.com/prod/unsubscribe-confirm/655b04 (...) 3.223.208.36

Last 5 reports on ASN: AMAZON-AES

Date UQ / IDS / BL URL IP
2022-11-28 11:45:53 +0000
0 - 0 - 2 44.199.52.214/ 44.199.52.214
2022-11-28 11:44:35 +0000
0 - 0 - 7 simplereward.net/go/to/j84hf8/key/fc55d7b70a0 (...) 54.161.23.57
2022-11-28 11:09:43 +0000
22 - 0 - 4 t3rd.qpoe.com/53Bank/login.php?s4FXJTxvPQQW6T (...) 18.204.206.254
2022-11-28 11:09:41 +0000
22 - 0 - 4 t3rd.qpoe.com/53Bank/login.php?WqPSVTmMSJ0Ilt (...) 18.204.206.254
2022-11-28 10:28:27 +0000
0 - 0 - 0 delixx-s-school-058e.thinkific.com 35.169.200.225

Last 5 reports on domain: msssnv.com

Date UQ / IDS / BL URL IP
2022-11-22 04:59:24 +0000
0 - 0 - 1 w1.msssnv.com/prod/c497ff60-1500-4916-9b73-fd (...) 44.198.6.24
2022-11-22 01:58:17 +0000
0 - 0 - 1 w1.msssnv.com/prod/c497ff60-1500-4916-9b73-fd (...) 44.198.6.24
2022-09-27 21:07:16 +0000
0 - 0 - 1 w1.msssnv.com/prod/unsubscribe-confirm/0f2623 (...) 3.223.208.36
2022-09-16 17:40:55 +0000
0 - 0 - 1 w1.msssnv.com/prod/53391947-c110-40ff-869d-ad (...) 34.204.222.45
2022-09-14 02:58:24 +0000
0 - 0 - 1 w1.msssnv.com/prod/158ed2e6-dd78-4830-ade3-62 (...) 34.204.222.45

Last 2 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-22 04:59:24 +0000
0 - 0 - 1 w1.msssnv.com/prod/c497ff60-1500-4916-9b73-fd (...) 44.198.6.24
2022-09-12 22:53:28 +0000
0 - 0 - 1 w1.msssnv.com/prod/29d0f711-ba61-47b2-9e4e-72 (...) 34.204.222.45


JavaScript

Executed Scripts (85)


Executed Evals (2)

#1 JavaScript::Eval (size: 120, repeated: 1) - SHA256: 1619016722375b5b605a82e35c84b842d7eeb5deb5308c5ff7a93f1e3e444ef4

                                        createCookie('is_eu', false);
createCookie('fdu337owcgx3pldh', true, 365);
createCookie('11772561_viewed_2', '44', 365);
                                    

#2 JavaScript::Eval (size: 0, repeated: 1) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                    

Executed Writes (0)



HTTP Transactions (177)


Request Response
                                        
                                            GET /prod/2dc56081-9453-451c-b161-86b0ebee474a/3b46a78e-d61b-48f2-9174-2c6a9c5a5ae7 HTTP/1.1 
Host: w1.msssnv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         34.204.222.45
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Date: Mon, 12 Sep 2022 23:58:09 GMT
Content-Length: 204
Connection: keep-alive
X-Powered-By: Express
Location: https://www.cardoneventures.com/growth?msID=3b46a78e-d61b-48f2-9174-2c6a9c5a5ae7
Vary: Accept


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   204
Md5:    33d16dc9b07ff57f90c2fbbd326eeab8
Sha1:   91442d087692775213fd298768dd08fccf9303da
Sha256: dfe1817566d98a0e31edcecb0157867e0eaeb0703c70d6105d887b98946ec7ee

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 12 Sep 2022 23:30:03 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _sHYnqeZg_PCYNn92RLr2lL-zh7xlb3UjjkI3Hhe1w28LljIGlPjrQ==
Age: 1686


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2977
Expires: Tue, 13 Sep 2022 00:47:46 GMT
Date: Mon, 12 Sep 2022 23:58:09 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oYxNOjjzeXYyQSVPYcnCR6RCYhoFfMhFBsogft3yUZeGdw2UmMh8Ug==
age: 60057
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 12 Sep 2022 23:58:09 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4403A43A4342EDE5BC6C06359CE5CB677F4178F247DCD9B90C4D9309B608F8B4"
Last-Modified: Sun, 11 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 13 Sep 2022 05:58:09 GMT
Date: Mon, 12 Sep 2022 23:58:09 GMT
Connection: keep-alive

                                        
                                            GET /growth?msID=3b46a78e-d61b-48f2-9174-2c6a9c5a5ae7 HTTP/1.1 
Host: www.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         54.194.170.100
HTTP/2 301 Moved Permanently
content-type: text/html
                                        
server: openresty
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 166
cache-control: private
location: https://10x.cardoneventures.com/growth-testimonialslel75vvg
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
x-served-by: cache-iad-kcgs7200084-IAD, cache-dub4328-DUB
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1663027090.007810,VS0,VE118
vary: x-wf-forwarded-proto
x-cluster-name: eu-west-1-prod-edge-blue
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   166
Md5:    3ea1c8d079b38532a6e01a96216ba5e2
Sha1:   598d3ff91d3e252f1e13df8cf0348b270ff2da3f
Sha256: 87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 12 Sep 2022 23:56:07 GMT
Expires: Tue, 13 Sep 2022 00:55:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8QY1DkCs5s6k6jC-q5CVTmfDJC1fRawGpacOYAKDVx4Ulm4CD6HAmQ==
Age: 123


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 84
Cache-Control: 'max-age=158059'
Date: Mon, 12 Sep 2022 23:58:10 GMT
Last-Modified: Mon, 12 Sep 2022 23:56:46 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /hosted/images/8d/829e2f65e1497399d2caaf5e001c25/Untitled-design---2022-07-05T160240.455.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 7346
cf-ray: 749c96f4ce190b61-OSL
accept-ranges: bytes
age: 3891
cache-control: max-age=31536000
etag: "3118a2631748803c9f20ad30018b8046"
last-modified: Tue, 05 Jul 2022 20:02:48 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=7904
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1050 x 120, 8-bit colormap, non-interlaced\012- data
Size:   7346
Md5:    b40c3ddeec2340ef3fb0fb6f297c3685
Sha1:   7d3366d213691703d2c5d0eefa940fdc7b7cff73
Sha256: a70f439df190113dd184d869e9b860d42848fbc6febddb4c9aadb67c03cf8bd6
                                        
                                            GET /hosted/images/6c/04b1d454e2452a8fe3d277d8f57e6a/Untitled-design---2022-07-05T170627.526.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 28251
cf-ray: 749c96f4ce170b61-OSL
accept-ranges: bytes
age: 3891
cache-control: max-age=31536000
etag: "cbd516d68ed7166979bdfaf93a886bc2"
last-modified: Tue, 05 Jul 2022 21:06:45 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=28750
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 2175 x 120, 8-bit colormap, non-interlaced\012- data
Size:   28251
Md5:    b19097cad5d76ab7f7ef37b8786641f0
Sha1:   0538761fd04de91d871b0291ae2276ee88ee1dd2
Sha256: b9d29e77601d5891f53f3a74a8a88328c2ab3554be58eb75ad45f8bf31114f30
                                        
                                            GET /hosted/images/46/1cf427a52c473f965dc674cf5d6bda/giphy.gif HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/gif
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 67635
cf-ray: 749c96f4ce150b61-OSL
accept-ranges: bytes
age: 3892
cache-control: max-age=31536000
etag: "0f1aad00fdf3ad50213054664dd48bd3"
last-modified: Sat, 09 Apr 2022 01:50:16 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 480 x 432\012- data
Size:   67635
Md5:    0f1aad00fdf3ad50213054664dd48bd3
Sha1:   abf08cab0f5217d6426db27b28e0378f4763f4ea
Sha256: 442025698b951d3c5650480f23e8151e643aad52427624549f879505e36f825d
                                        
                                            GET /hosted/images/34/0bb5b9ec8f4c6d89a0fc64b57afd8f/Untitled-design---2022-07-05T163000.260.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 11137
cf-ray: 749c96f4de200b61-OSL
accept-ranges: bytes
age: 3891
cache-control: max-age=31536000
etag: "bae90047c05a0be22f7f492c6d821c1d"
last-modified: Tue, 05 Jul 2022 20:30:11 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11695
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1050 x 120, 8-bit colormap, non-interlaced\012- data
Size:   11137
Md5:    7bee5f91be6938a6fda46bdf9cc13c81
Sha1:   f255cea2653c4f9ddfc3056711865c9d2aece5b4
Sha256: afd771c578b4cd4fa086229ba8a2ef95ac33ba298a48e0e5ce0d0423ce4bd371
                                        
                                            GET /hosted/images/94/f9e5b090ce4e46b64492cd29bf1293/Untitled-design---2022-07-05T161731.169.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 5605
cf-ray: 749c96f4de1f0b61-OSL
accept-ranges: bytes
age: 3891
cache-control: max-age=31536000
etag: "389a129c35c84e5401094ee67ad74b51"
last-modified: Tue, 05 Jul 2022 20:17:41 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=6164
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1050 x 120, 8-bit colormap, non-interlaced\012- data
Size:   5605
Md5:    096a82af8379d09e975f9d6113a99895
Sha1:   514f884757d51ef8e56211a62f4bdc86c9a662ab
Sha256: 7fc383977a78c655049eccf4f7f8ddfc84c5d5ad1998f8c6e00b344a89c09bf2
                                        
                                            GET /hosted/images/39/93329ebd2d40d09ed3e3dc62ec0441/Circle-Headshots-04-1-.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 259405
cf-ray: 749c96f4ce180b61-OSL
accept-ranges: bytes
age: 3891
cache-control: max-age=31536000
etag: "e74c32ed58f0a435d908ba25186d2f6a"
last-modified: Thu, 07 Jul 2022 21:12:58 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=259426
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 854 x 899, 8-bit colormap, non-interlaced\012- data
Size:   259405
Md5:    91d0919f385b3da50e56bfb918bab1d8
Sha1:   0ead0285b1b901b11236d8dffa4ceb429cc13055
Sha256: 4055560a4c0e21b0a4f3964e356d86fb93e8136b3fdfc8ce671d437187f846fc
                                        
                                            GET /hosted/images/35/c7fb823b264ea3a2fd5e7ab26e2fc2/Untitled-design---2022-07-05T160410.488.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 5442
cf-ray: 749c96f4de1e0b61-OSL
accept-ranges: bytes
age: 3891
cache-control: max-age=31536000
etag: "a18f300b1132924717917ef3d3d1c058"
last-modified: Tue, 05 Jul 2022 20:04:22 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=6001
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1050 x 120, 8-bit colormap, non-interlaced\012- data
Size:   5442
Md5:    780b3018c08e35e18aa049e4f51a148f
Sha1:   a2141fef5bb8b5ff3f83b611ae6c8025ed7ec2cb
Sha256: 2f6fa0f7761a68573ee7b0f55818c363f819d26186e90f84831c18966a702673
                                        
                                            GET /hosted/images/91/b7b95d5c4c4bb9a73db72fb1ccd90e/CardoneVentures-Horizontal-Logo-White.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 30232
cf-ray: 749c96f4ee2b0b61-OSL
accept-ranges: bytes
age: 3892
cache-control: max-age=31536000
etag: "9fb6e72b243b86c2e741435ffb51cef3"
last-modified: Sat, 31 Jul 2021 01:25:49 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=30406
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 2738 x 726, 8-bit colormap, non-interlaced\012- data
Size:   30232
Md5:    e9d844c5d349a7944c0f52c9af2480e9
Sha1:   71e3427ebac8a5998fd461c189340c80f43eb1eb
Sha256: 60ce489b1444c86f7f30909785aabd4fcefeb879892d6891240c7b291f020cf3
                                        
                                            GET /hosted/images/28/ebdd85a2cc484e803052a122a822ad/BD-Glasses-1-.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 696940
cf-ray: 749c96f4de230b61-OSL
accept-ranges: bytes
age: 3891
cache-control: max-age=31536000
etag: "fd429b5983519d4012ffeb24873a5ad1"
last-modified: Mon, 11 Jul 2022 15:03:30 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=696961
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1431 x 1672, 8-bit colormap, non-interlaced\012- data
Size:   696940
Md5:    a0ffe4898869e46cfc9df1c491187c4c
Sha1:   eb90aefb24f174b94bcd1d22c427c546ae028730
Sha256: f35cd33755c3d26a129c94720def882af8f630ccf346ff6e743a650f86969969
                                        
                                            GET /hosted/images/bc/06f27f5571408ea3ee903d7a0e771d/jdd8d.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 456702
cf-ray: 749c96f4ce160b61-OSL
accept-ranges: bytes
age: 3892
cache-control: max-age=31536000
etag: "3aafb317f317f57cf4bfb628e64ecd5b"
last-modified: Fri, 01 Jul 2022 21:34:56 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=457414
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1160 x 1365, 8-bit colormap, non-interlaced\012- data
Size:   456702
Md5:    1bddc4fbc8f55a8f7601cb1ae204278f
Sha1:   a71b28b0c3baf7e13538609b1249df8a87a322d6
Sha256: 45e688c5120985bbd5eca6edb297b73f2691b8b2dbfe0c33b62f642ef87c4d60
                                        
                                            GET /hosted/images/0c/1ede9839594690acc9803bda0782dd/dddddd.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 597924
cf-ray: 749c96f4de220b61-OSL
accept-ranges: bytes
age: 3892
cache-control: max-age=31536000
etag: "d5f8da26afbee0e376ff5c7e31c1a0ec"
last-modified: Fri, 01 Jul 2022 21:00:14 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=598637
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1480 x 1434, 8-bit colormap, non-interlaced\012- data
Size:   597924
Md5:    584f949ed04e625b7ee1b3d842de3c3d
Sha1:   05fd6b3ba292de9f1f0f0058d74aa8826819e331
Sha256: 0baa1569cc30917541c784080ed675d5ae4c07673333360c56a17c3060980fed
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TqQgYT8NXXac2KitKScDFA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.43.61.95
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pcz+dgkASFZAlpE3ufXrFHH4+0M=

                                        
                                            GET /hosted/images/4f/07a0c55c744dabaf04992020e98de3/GC1.png HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
content-length: 510264
cf-ray: 749c96f4ee2c0b61-OSL
accept-ranges: bytes
age: 3892
cache-control: max-age=31536000
etag: "3d6f3cb865f68315db7965185c192c7a"
last-modified: Wed, 06 Apr 2022 18:34:49 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=513805
x-amz-cf-pop: OSL50-C1
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1432 x 1997, 8-bit colormap, non-interlaced\012- data
Size:   510264
Md5:    de5b2284533de4844e393a0628a4f0ef
Sha1:   5c3c08800368be8a638819ae893af2d89634c54e
Sha256: 67b608db6449286a2982dc24b146e6dc5779e294ea78271173844e6be8ae97e9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /embed/iframe/v8n9jc5d3a?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"08df6587033507f61ceffaa91ce8a932"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 1d33d441090e10d7d452d33a4294df26
x-runtime: 0.066468
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 31415
x-served-by: cache-iad-kiad7000140-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.094657,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2583
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5870)
Size:   2583
Md5:    ccfe20fb4fa7e94d1ca860999980e4e7
Sha1:   8337cf11a2bbd47e823e0f86d7a71236eee6ea53
Sha256: b5f2f43f9217f9b6d100b1f03d8971dc12a9aced57fefd6fe3ef9b9089c71a85
                                        
                                            GET /embed/iframe/6zeqgrooi4?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"a66746deef1e9233efd86f910a0e041c"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 6b205edf30703525b1ba3375869b7eed
x-runtime: 0.063507
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 31415
x-served-by: cache-iad-kcgs7200177-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.094568,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2608
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5887)
Size:   2608
Md5:    2bbc63db528b19e32f7d1b61722d6e93
Sha1:   911896f7fb53f7cf6f7ec4fa7c5f775fa9ed2935
Sha256: 60e1153a9bbe24f74f4f7257bca64d7309cf6376e3c4fae4c9e3224391f3fc26
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.63.54
HTTP/2 200 OK
content-type: text/css
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
x-amz-id-2: 29dQf2WVNOHot5Ay8pBeGC9Jp0pul03AFXB61uD4zFysCnT6qW6VHySxi6MC8oLZjApsDY/NPq0=
x-amz-request-id: B6FTANBTWNEFCW5M
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 432849
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=66GFYmJZII8BpdV8wRkhOzW6FGk28QNU0Wxw9Z2L7g0o6grgwFx%2B%2B0PdmgamCdP7pDCU3dUPuWhB%2BrWlLUTIV4SYj3iEEf898%2Faj1GRPQqdvqf0lZzjTDpXwJFtINHkHp7u2GNMU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 749c96f4fd43b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26440)
Size:   79627
Md5:    b043af87d3206afa8e934dfa8aafd923
Sha1:   4ccd0ab4ede69e05e84834ea129c5847ea13c88d
Sha256: bb53f8b3ab21b259c1d53447a9fe9db0ae0c977b53026b791197a360f8c66b22
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /embed/iframe/wtel0q0jxe?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"b152419342fef4e02df6e079e967af78"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 8b8f2a967ddd49bb4e70019d8da2cb4a
x-runtime: 0.069931
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kcgs7200035-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.092363,VS0,VE92
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2631
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5930)
Size:   2631
Md5:    984654f401c74525cd0bc68764057f09
Sha1:   7039ed42b87fdc5e75fe8c7635ef1db05f31fa96
Sha256: 095e01f8e9b78fa9680af97770bb96191110fba9e03c195f3815eaea11f96aae
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1 
Host: static.cloudflareinsights.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.47.230
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 749c96f63da3b503-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   80316
Md5:    6081b3053c85d2424f122a736c0c3c1f
Sha1:   0f307df6a8d4a4fd906b8d87554301ea7da6e5f3
Sha256: 5c46dcf0a2a2c2da284d0a3d404d3eda4cbe09215455875109a98ef2fee71b7a
                                        
                                            GET /assets/userevents/application.js HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
cf-ray: 749c96f4ce0f0b61-OSL
access-control-allow-origin: *
age: 694
cache-control: public, max-age=1200
etag: W/"630e9cfc-1353"
expires: Tue, 13 Sep 2022 00:18:10 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=E4PB8YXCg8E.x5v6lH1mxB_gloA.VpLtLQDHrgpM_5s-1663027090-0-ATv8V8lLjmhJ8pZCGY8Mv7ggsqV_oA4W6AAZcJv1NqOjDjv4idnpzLKASN680Zedr6O7yZDHLhzgTP8g3RARMhOsNlby8FzmzcupY-KuujEg"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=E4PB8YXCg8E.x5v6lH1mxB_gloA.VpLtLQDHrgpM_5s-1663027090-0-ATv8V8lLjmhJ8pZCGY8Mv7ggsqV_oA4W6AAZcJv1NqOjDjv4idnpzLKASN680Zedr6O7yZDHLhzgTP8g3RARMhOsNlby8FzmzcupY-KuujEg; report-to cf-csp-endpoint
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4947), with no line terminators
Size:   4353
Md5:    dd9a09c009d853b086d947b980b0e096
Sha1:   9e4cef9c94350e102d63dda09714e0e6a2156156
Sha256: 2953db3fa3d2e9a0ab17e2596a570bee77ad5f5af1018a3bf106e76fbde4dadb
                                        
                                            GET /hosted/images/dd/f8d6c444df4580b1253b408535851e/dark-bg-bar1.png HTTP/1.1 
Host: www.upwvirtual.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.15.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:11 GMT
content-length: 3325
cf-ray: 749c96f7bb130b55-OSL
accept-ranges: bytes
age: 3892
cache-control: max-age=31536000
etag: "2fc97fddf06b945e3a4af76fe677b1be"
last-modified: Thu, 28 Apr 2022 11:24:46 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=3346
x-amz-cf-pop: OSL50-C1
set-cookie: __cf_bm=tsMA3o6GYejFjB2R1WbDBRIGwDLQkPoUG9ig8KM0XXc-1663027091-0-AaWwvMmI8tpBtThDsuJmuB4ainAYx+a+Osuw4cTP0DWwiAaqLLmlSN2kKsNRy4+IAJeU0pli88ft8jC47jf4nI4T85VUSohy+V+krZTHfAYQ; path=/; expires=Tue, 13-Sep-22 00:28:11 GMT; domain=.www.upwvirtual.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1920 x 520, 2-bit colormap, non-interlaced\012- data
Size:   3325
Md5:    9bebf5af99458b9a9d2074cc6ea57596
Sha1:   d9176ec2a9e53639cf36652ecb6448306dac60e9
Sha256: 949cbc2ec5cb100d2ea36cf943839fb9ac67440b5aea111264e596c8a9eec74b
                                        
                                            GET /hosted/images/32/c048f3e284408c8baee44f56e72a96/Square_background1-min.png HTTP/1.1 
Host: fhlnft.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/png
                                        
date: Mon, 12 Sep 2022 23:58:11 GMT
content-length: 62388
cf-ray: 749c96f7dbc2b523-OSL
accept-ranges: bytes
age: 3892
cache-control: max-age=31536000
etag: "df7ee574ec9f90f22b5929f1239c3cff"
last-modified: Wed, 23 Feb 2022 23:14:53 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:85,h2pri
cf-polished: origSize=62568
x-amz-cf-pop: OSL50-C1
set-cookie: __cf_bm=bUcapC49a9Of1Ad0szqaUAVi3jzLSLohxRm.TI5L5yE-1663027091-0-AW5GH5RKUsOL0FEUp7dmCgbKgIS2qbcn+0eEINLu3SVMd3vMtjeep6NwXivKZZjdkoIFYVUj/eyzqtzJk/dYyjvymupJTsxBGf3XaZ3vd4uU; path=/; expires=Tue, 13-Sep-22 00:28:11 GMT; domain=.fhlnft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 2342 x 1221, 8-bit colormap, non-interlaced\012- data
Size:   62388
Md5:    06867e603120a244c092d5702b865b2c
Sha1:   d50c77e178a288911d95ec0d13a19c62b36b3dc9
Sha256: fbb5522f19a1b499a67c78e2e6fe17fbfda921c74b1884e1b6878ad60e892645
                                        
                                            GET /embed/iframe/0u8ee6hghh?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"592e24f0d1465e2c9fa56ca0f7555788"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 5cf8fa5fe2d9f1452caccf3fb98f6db8
x-runtime: 0.082882
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kjyo7100051-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.092989,VS0,VE92
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2528
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5316)
Size:   2528
Md5:    97fadddd1ac1825b8d3a0dda40e4b82b
Sha1:   597d64f2bc5af87c199bdde17705aafb63852886
Sha256: 24edba9585c5f228aa9c7cdd4fc81c4a75d2b7718b2355bd5232618dbb53e639
                                        
                                            GET /embed/iframe/44h10j64gp?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"65aaec388b0c466ed717cf50b90cc6ac"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 2f7ee8597f4d3d873a74ecc3b0e67ab9
x-runtime: 0.069400
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kjyo7100179-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.093125,VS0,VE92
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2654
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5897)
Size:   2654
Md5:    a2422ed38e7104e9dc96e69c53f02651
Sha1:   3c60ee0586983dc9c8b63b0327cca374d60792cc
Sha256: d71923fcc9ade09a2ca1cb021ea7f7545b2f225c3079da1f2f8fa76dce6d39fd
                                        
                                            GET /embed/iframe/v5yg2m28cw?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"2cc6784c1fa816a1d51a5417522cde23"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 0dac912eb412f1d365d9825aeadaf40d
x-runtime: 0.075265
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 1443
x-served-by: cache-iad-kiad7000174-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1663027091.092183,VS0,VE95
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2662
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5913)
Size:   2662
Md5:    27cfe29ad55223c2f11b6d7362dd08ca
Sha1:   fe4f40a15efddfd8de58e8fede0feb1bc545999b
Sha256: 7d20d6cffcf2e0e055beacbea9ca981748bf536a4e1a38c6f15d5604ccbadb0b
                                        
                                            GET /releases/v5.9.0/css/all.css HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.63.54
HTTP/2 200 OK
content-type: text/css
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
x-amz-id-2: 5R63sGXcq2LptVgWp1Hbu23fLcn6t7yox4MdVDD4fYkPpwwpE0tP8nap3nE7BUsLxb2kn6BawAQ=
x-amz-request-id: FW5J89H89QA35JM6
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 511275
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4Ti0L0UDIkXVzCvtkTC8kKh5XaqBCyT5kTCOkOMkhLuNjrtM7ADmO7UmRdKE5uFhnrFIWl7DA%2FUzve40tHA7swYo48AHurcuT8fBKFG%2FmplwBW%2FL%2B95Aj7swjeo4GaEATeurCUmo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 749c96f50d47b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (55782)
Size:   14832
Md5:    f04503a2ab048f0e1b3691fe7df98bd9
Sha1:   9c7b40c7d92b7a1c867c52a9c5fda6aa6822c308
Sha256: 98010bdfc1cac37517d76d583148a3e4b10cbc98bede96a5b1d52e1479fd4d31
                                        
                                            GET /embed/iframe/jk58jp1mni?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"3119ab4c882e9612e3b433c96ee4ca9d"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: b38ad002ac5953f4cea4cd160c8fd5fb
x-runtime: 0.103814
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kjyo7100072-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.100010,VS0,VE91
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2580
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5870)
Size:   2580
Md5:    f9f1dabd90515e058d7bcb340602c59b
Sha1:   193c69ad94bc87486c992bb1fdde446d76819f32
Sha256: 8e409d5014a41bb643550d2eb055eeb9b29274f65fa5c4c6523a8627f0ca932c
                                        
                                            GET /embed/iframe/u4jrcon248?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"e94741dc05d778b69f84d397cb6304fd"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 79b9ce30da83b002cf10956a891ffe2e
x-runtime: 0.078434
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kiad7000026-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.099992,VS0,VE93
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2600
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5860)
Size:   2600
Md5:    e5ae0df72a47a58390a1f10d9ab3086f
Sha1:   ba4f89daea058b65f18c87acfa4f2a4056786ee0
Sha256: 61a50f8b730e683ce9654f33c2e88b56d3324bda06d70eaf49c57a0c4046c3c4
                                        
                                            GET /embed/iframe/1qv93y6nq5?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"43421b7d9cf439d9a4a49c579462fae7"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: b46d81a6b29aa3f494b1ed47c3e39b81
x-runtime: 0.056131
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kiad7000131-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.094478,VS0,VE100
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2560
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5318)
Size:   2560
Md5:    ac161d9c2146a29612d50d27bdea46f0
Sha1:   462ed01d2f84849813ebc895683cc3383bd59b6e
Sha256: 446fb5fffcbdf74069e266b6854186c4bcf4f255d65ef43f9f2cb664bf83ba96
                                        
                                            GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 06:06:20 GMT
expires: Fri, 08 Sep 2023 06:06:20 GMT
cache-control: public, max-age=31536000
age: 409911
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Size:   12708
Md5:    b4a68b1e743ee317eaaf0bbadd131571
Sha1:   f24f7823d4e3830c7cfa5bcb33733d2897c00f13
Sha256: ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
                                        
                                            GET /embed/iframe/2r2aotnlh4?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"79dbd07c17f2665f41db0a0131cb8ddc"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 510580b85a089c77dbc53ef1982057e2
x-runtime: 0.063805
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kcgs7200039-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.099976,VS0,VE100
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2585
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5869)
Size:   2585
Md5:    dc3924b24e18a6b55b99568bf0d1d6a1
Sha1:   228e6471af52a5ac3b2238dda68c3b16a14d2ecd
Sha256: b2a54b650738ab5eda881582e548526fd99f9d0cbdf49aa19921c4e3603dee88
                                        
                                            GET /embed/iframe/gfqf2p7jrc?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"5412973afbc978a5f6be55e1f6cdd146"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 4ba174e0e3845f2ab9138d2d4cb860e7
x-runtime: 0.069934
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kiad7000151-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.100028,VS0,VE102
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2589
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5927)
Size:   2589
Md5:    3e8c797a4f180be359daf53bff8866b0
Sha1:   3a49688dc2bf4b3c6fd7a39d4c0e2838ecd08f01
Sha256: 3fd6eaa3da0ed77ea3c91498b783b93d34bf905c69134d3e6787b7f165008e57
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 447843
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /assets/lander.js HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
cf-ray: 749c96f4ee310b61-OSL
access-control-allow-origin: *
age: 712
cache-control: public, max-age=1200
etag: W/"630e9d40-238fd1"
expires: Tue, 13 Sep 2022 00:18:10 GMT
last-modified: Tue, 30 Aug 2022 23:29:04 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32752)
Size:   680373
Md5:    f48f4b5856b7f85b5caf240d1d908c5b
Sha1:   4133939ac77f929f548b94b882864e69e27a4206
Sha256: 7f6ab52bd15a627449cfa98158af5516d955bf55c582c98a7c72f5c72ebf973b
                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 16:40:18 GMT
expires: Fri, 08 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 371873
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size:   30928
Md5:    ac0d2859ea5f8fd6bcb3c305c08ec184
Sha1:   7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
Sha256: ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /embed/iframe/troz3pmk2x?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"63bbefd1f9d5d5667d1a8933dc8c1922"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: bae90da67c0899d381eb1d14971d2d24
x-runtime: 0.064176
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kcgs7200094-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.162464,VS0,VE92
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2610
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5881)
Size:   2610
Md5:    ca36f8855a503d387676e1ef27908b70
Sha1:   a14b51345ee677142cc99359cd04c1969664ff10
Sha256: a22a81c760e391b32a06eef41b88a21ca07343619bc4510955ebcb5ebff08cc7
                                        
                                            GET /embed/iframe/rculh6y9bw?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"be11712ab625f51a016be73d05e87fe4"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: cf1fa2befcf5fbac76ced3d948503f34
x-runtime: 0.079281
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kjyo7100120-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.162630,VS0,VE94
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2595
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5875)
Size:   2595
Md5:    ee99213e093d1752649d644ae9435670
Sha1:   b56c599fa9019642e1af3220366540065cda5881
Sha256: 5b019bc450e8665684f3d0499e6ed0c0cf7d3b0a478f801e3ff424ee4de50226
                                        
                                            GET /embed/iframe/jxcd8tntsu?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"9b937efce21c241306fff9d6c36f7db7"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 8f259fb2ef9eb75697befb30539560aa
x-runtime: 0.076993
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kjyo7100046-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.162754,VS0,VE112
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2600
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5888)
Size:   2600
Md5:    1d0d934906440fadf6b4a884ad9b97b3
Sha1:   b9118f83cd26eee04aecff5813a59aa7ac53b22a
Sha256: f583f82a23867d6e8172cd31e641d5f0b87aeebb9304ac14b840214ff84f7879
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /vendor.js HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 12 Sep 2022 23:58:11 GMT
cf-ray: 749c96fa18500b61-OSL
access-control-allow-origin: *
cache-control: max-age=900, public
etag: W/"7422e50efbaea439fda7ef3b0eb54ee1"
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: REVALIDATED
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: 581e49c9b7bdd06dab54c00931f4256b223e620e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: stale, valid, store
x-request-id: 1af3ec9baa95fe7a06d36e95928859ac
x-runtime: 0.017421
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=GEGQbAaBYdlazkKhG.u1YYMZjn.zdrnOt6CfW1WEi08-1663027091-0-AY2IeVZ1skHDBKRO7dBVrHDF1XQR_UCnUXahlM26YjxBpac8JcydeJSrz4QccwFELpzzR78zR2RWt8MAczSrG88PXte9CgJNX25KJjq0Lk70"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=GEGQbAaBYdlazkKhG.u1YYMZjn.zdrnOt6CfW1WEi08-1663027091-0-AY2IeVZ1skHDBKRO7dBVrHDF1XQR_UCnUXahlM26YjxBpac8JcydeJSrz4QccwFELpzzR78zR2RWt8MAczSrG88PXte9CgJNX25KJjq0Lk70; report-to cf-csp-endpoint
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   8092
Md5:    fc24a9c828fae23327b4599fdd4b872d
Sha1:   cb1a15d860d3c1b28666c0a3113f4cb2f529388a
Sha256: e2d770f628b60d88c60c73b9fc8e7351dd7da41147bc62451998f160f08971a2
                                        
                                            GET /embed/iframe/8gykc7c1rc?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"333da3427c7cb549d1a9ef5f5b4d58e2"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: bc23706e2a77e665661eb68db6c5ad5f
x-runtime: 0.073626
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kiad7000173-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.739202,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2605
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5886)
Size:   2605
Md5:    6daecc332b133aedcd36dba312715142
Sha1:   01323a634b947cebba9df47a8f62d8e7c8fe8b2d
Sha256: d73314fe910d48b048f0f976b189ca72d85d6db7df5b7233de4260baf056cffa
                                        
                                            GET /embed/iframe/troz3pmk2x?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"63bbefd1f9d5d5667d1a8933dc8c1922"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: bae90da67c0899d381eb1d14971d2d24
x-runtime: 0.064176
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kcgs7200094-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.740716,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2610
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5881)
Size:   2610
Md5:    ca36f8855a503d387676e1ef27908b70
Sha1:   a14b51345ee677142cc99359cd04c1969664ff10
Sha256: a22a81c760e391b32a06eef41b88a21ca07343619bc4510955ebcb5ebff08cc7
                                        
                                            GET /embed/iframe/8gykc7c1rc?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"333da3427c7cb549d1a9ef5f5b4d58e2"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: bc23706e2a77e665661eb68db6c5ad5f
x-runtime: 0.073626
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 0
x-served-by: cache-iad-kiad7000173-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027091.160497,VS0,VE102
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2605
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5885)
Size:   2602
Md5:    92eb2d855d34aaa87370579a3378beb2
Sha1:   955dcdfd0e0307fe190a1d1537e4d41c592d8769
Sha256: ef91c5e1617a76b3f25107cc7503176909f1faff893584d4442d7840e3371aaa
                                        
                                            GET /embed/iframe/rculh6y9bw?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"be11712ab625f51a016be73d05e87fe4"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: cf1fa2befcf5fbac76ced3d948503f34
x-runtime: 0.079281
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 1
x-served-by: cache-iad-kjyo7100120-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.770718,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2595
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5875)
Size:   2595
Md5:    ee99213e093d1752649d644ae9435670
Sha1:   b56c599fa9019642e1af3220366540065cda5881
Sha256: 5b019bc450e8665684f3d0499e6ed0c0cf7d3b0a478f801e3ff424ee4de50226
                                        
                                            GET /css?family=Montserrat:700,900 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 12 Sep 2022 23:58:10 GMT
date: Mon, 12 Sep 2022 23:58:10 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3122
Md5:    5f403a1a912bd790a2407a0ffdb44cef
Sha1:   990cdb79781bc04a054747c256ecc01300337f5a
Sha256: def8537295a7b7a0564ed05674420607ba593f9877f1c835c387c2ce9a7c9259
                                        
                                            GET /embed/iframe/lnjd82cdm5?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"388562ebad63a1ffa977c2d919ab3aaf"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: afa10526d650424d8b9f9c8c219b853e
x-runtime: 0.078332
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 1
x-served-by: cache-iad-kjyo7100165-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.774535,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2636
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5918)
Size:   2636
Md5:    509edaef4c3e5e712d9587673149e3be
Sha1:   c79b81b5f0ed3dce036a700800ef50efc3b8344d
Sha256: 8ed877801e4b820b65433bf252382f5fb9edb56e2831325a8a3bda8e0b1e588a
                                        
                                            GET /embed/iframe/jhj25fczq3?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"2ff419216403d68e0744fd8d8892af9f"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 93eb79464ffa58c71b7bcdaa342a5b27
x-runtime: 0.079832
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 1
x-served-by: cache-iad-kiad7000074-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.776112,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2613
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5910)
Size:   2613
Md5:    bbed81f1905f1c19989207c6e3e3eb0e
Sha1:   4ca9fe78126c8267676cd4ec5459a45f8893f191
Sha256: 7c8d3f47e849a2ea918ef6fa9d4a41d55ae80b017d8e3c8746ddfa040b7c4857
                                        
                                            GET /embed/iframe/0u8ee6hghh?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"592e24f0d1465e2c9fa56ca0f7555788"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 5cf8fa5fe2d9f1452caccf3fb98f6db8
x-runtime: 0.082882
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 1
x-served-by: cache-iad-kjyo7100051-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.778243,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2528
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5316)
Size:   2528
Md5:    97fadddd1ac1825b8d3a0dda40e4b82b
Sha1:   597d64f2bc5af87c199bdde17705aafb63852886
Sha256: 24edba9585c5f228aa9c7cdd4fc81c4a75d2b7718b2355bd5232618dbb53e639
                                        
                                            GET /embed/iframe/44h10j64gp?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"65aaec388b0c466ed717cf50b90cc6ac"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 2f7ee8597f4d3d873a74ecc3b0e67ab9
x-runtime: 0.069400
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 1
x-served-by: cache-iad-kjyo7100179-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.779453,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2654
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5897)
Size:   2654
Md5:    a2422ed38e7104e9dc96e69c53f02651
Sha1:   3c60ee0586983dc9c8b63b0327cca374d60792cc
Sha256: d71923fcc9ade09a2ca1cb021ea7f7545b2f225c3079da1f2f8fa76dce6d39fd
                                        
                                            GET /embed/iframe/1qv93y6nq5?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"43421b7d9cf439d9a4a49c579462fae7"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: b46d81a6b29aa3f494b1ed47c3e39b81
x-runtime: 0.056131
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 1
x-served-by: cache-iad-kiad7000131-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.785599,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2560
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5318)
Size:   2560
Md5:    ac161d9c2146a29612d50d27bdea46f0
Sha1:   462ed01d2f84849813ebc895683cc3383bd59b6e
Sha256: 446fb5fffcbdf74069e266b6854186c4bcf4f255d65ef43f9f2cb664bf83ba96
                                        
                                            GET /embed/iframe/6zeqgrooi4?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
If-None-Match: W/"a66746deef1e9233efd86f910a0e041c"
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 304 Not Modified
                                        
date: Mon, 12 Sep 2022 23:58:11 GMT
via: 1.1 varnish
cache-control: public, no-cache
etag: W/"a66746deef1e9233efd86f910a0e041c"
age: 31416
x-served-by: cache-bma1680-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1663027092.787264,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
X-Firefox-Spdy: h2

                                        
                                            GET /embed/iframe/v8n9jc5d3a?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
If-None-Match: W/"08df6587033507f61ceffaa91ce8a932"
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 304 Not Modified
                                        
date: Mon, 12 Sep 2022 23:58:11 GMT
via: 1.1 varnish
cache-control: public, no-cache
etag: W/"08df6587033507f61ceffaa91ce8a932"
age: 31416
x-served-by: cache-bma1680-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1663027092.791198,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
X-Firefox-Spdy: h2

                                        
                                            GET /embed/iframe/gfqf2p7jrc?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"5412973afbc978a5f6be55e1f6cdd146"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 4ba174e0e3845f2ab9138d2d4cb860e7
x-runtime: 0.069934
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 1
x-served-by: cache-iad-kiad7000151-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.794676,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2589
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5927)
Size:   2589
Md5:    3e8c797a4f180be359daf53bff8866b0
Sha1:   3a49688dc2bf4b3c6fd7a39d4c0e2838ecd08f01
Sha256: 3fd6eaa3da0ed77ea3c91498b783b93d34bf905c69134d3e6787b7f165008e57
                                        
                                            GET /embed/iframe/jk58jp1mni?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"3119ab4c882e9612e3b433c96ee4ca9d"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: b38ad002ac5953f4cea4cd160c8fd5fb
x-runtime: 0.103814
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 1
x-served-by: cache-iad-kjyo7100072-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.798730,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2580
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5870)
Size:   2580
Md5:    f9f1dabd90515e058d7bcb340602c59b
Sha1:   193c69ad94bc87486c992bb1fdde446d76819f32
Sha256: 8e409d5014a41bb643550d2eb055eeb9b29274f65fa5c4c6523a8627f0ca932c
                                        
                                            GET /embed/iframe/u4jrcon248?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"e94741dc05d778b69f84d397cb6304fd"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 79b9ce30da83b002cf10956a891ffe2e
x-runtime: 0.078434
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 1
x-served-by: cache-iad-kiad7000026-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.801336,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2600
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5860)
Size:   2600
Md5:    e5ae0df72a47a58390a1f10d9ab3086f
Sha1:   ba4f89daea058b65f18c87acfa4f2a4056786ee0
Sha256: 61a50f8b730e683ce9654f33c2e88b56d3324bda06d70eaf49c57a0c4046c3c4
                                        
                                            GET /embed/iframe/2r2aotnlh4?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"79dbd07c17f2665f41db0a0131cb8ddc"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 510580b85a089c77dbc53ef1982057e2
x-runtime: 0.063805
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 1
x-served-by: cache-iad-kcgs7200039-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.808137,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2585
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5869)
Size:   2585
Md5:    dc3924b24e18a6b55b99568bf0d1d6a1
Sha1:   228e6471af52a5ac3b2238dda68c3b16a14d2ecd
Sha256: b2a54b650738ab5eda881582e548526fd99f9d0cbdf49aa19921c4e3603dee88
                                        
                                            GET /embed/iframe/wtel0q0jxe?autoplay=0&wmode=transparent HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
etag: W/"b152419342fef4e02df6e079e967af78"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 8b8f2a967ddd49bb4e70019d8da2cb4a
x-runtime: 0.069931
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:11 GMT
age: 1
x-served-by: cache-iad-kcgs7200035-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.810565,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 2631
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5930)
Size:   2631
Md5:    984654f401c74525cd0bc68764057f09
Sha1:   7039ed42b87fdc5e75fe8c7635ef1db05f31fa96
Sha256: 095e01f8e9b78fa9680af97770bb96191110fba9e03c195f3815eaea11f96aae
                                        
                                            GET /userevents/?funnel_id=M0tPMDNEdGlVeFNmMW9RTDhlb3RpUT09LS1BcWdzWlQ3b05IWXhNTDd5bGloSHl3PT0%3D--dde30f3557c150a7945af452b3bffe90ca0c4d81&page_id=Z09xWUxKUXNIRTUxWmZXbGVKV29wQT09LS0wQnVDSnlmeHo5Uml3Q3dlZnlwaCtBPT0%3D--cd4a0a819c94222bc49194da4e8d52f3ca43341c&funnel_step_id=R3Z4MXFxT3BVRlFTNGtJRExiRjNUQT09LS1mV0lBRGJWdTA0MkU5cWVYNnJZMVJRPT0%3D--10d0b2c98c638a35a7779bea84c827e712319e6f&user_id=MG5hZkVtdXViNVZzSkJyVFMzaXpidz09LS10akJJL2xyTmhzeTV2ajIwWXFrdk5RPT0%3D--ae79ea509003ca3f5df9ad85bed3b43ff25a371b&account_id=cEZqVWdkMTRmRFlOcjFhdGNwYm9udz09LS12L05DWjhXNmExQ2UyMWxNdUNsWmt3PT0%3D--9f1f8ae8abe8fedc9c9bd6b8ca753986334ff73b&page_code=NTUyODIxMjQ%3D&mode_id=1&time_zone=America%2FLos_Angeles&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=57e7c0fa-a219-4f7b-ba1c-2a4867a2f9da&url=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess HTTP/1.1 
Host: app.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.12.194
HTTP/2 202 Accepted
content-type: text/html
                                        
date: Mon, 12 Sep 2022 23:58:11 GMT
cf-ray: 749c96fac9b7b4fd-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 878c756e35e73dbc97292faf9da6b91a
x-runtime: 0.027671
set-cookie: __cf_bm=2S0sSY12TtwSguPC17tzEwz5o1dX8kvEDQvwGfUwddg-1663027091-0-AdZj4JYYd1M1l4e7Oi39DNY2WLL7n3Hb5XWD7tYFDiRJzixXC1Jj0mMnnGZOi2P43h+aywf36vssmD/sjn5VoHe7lCf17q52vKhVvf8yx9uO; path=/; expires=Tue, 13-Sep-22 00:28:11 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   155097
Md5:    e087934c57bf60fcb622bee3013aba31
Sha1:   17fac55c517f3ac3d56a9db844232e190150a748
Sha256: 546ad9a6d9d1b1526189cdd66c7235eaa2cee7eb2e6db1631c022bcc6dc2f99a
                                        
                                            GET /assets/external/insideIframe.js HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/embed/iframe/v5yg2m28cw?autoplay=0&wmode=transparent
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "631f51b5-2e72"
last-modified: Mon, 12 Sep 2022 15:35:17 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:12 GMT
age: 1561
x-served-by: cache-iad-kjyo7100176-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.033821,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 11890
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (45733), with no line terminators
Size:   11890
Md5:    14b80e600231e9af7999e6dfb3800fbd
Sha1:   c7fd59358696daa41061bd3fda539e9057f30466
Sha256: 04957ea1030b333697d3105d8df605b122b2745ce26e067823b2852f169ba02b
                                        
                                            GET /assets/external/E-v1.js HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/embed/iframe/v5yg2m28cw?autoplay=0&wmode=transparent
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "631f51b5-1c558"
last-modified: Mon, 12 Sep 2022 15:35:17 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:12 GMT
age: 1560
x-served-by: cache-iad-kiad7000176-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027092.042753,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 116056
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   116056
Md5:    1e07902a555778087d61192f4e0c7472
Sha1:   b6db5f3dd3318865584a315d3d45697208a023a1
Sha256: b684dc4088d08162df35ee0879027d8f67888c0b40ea6c4d0dd38dbee5f7a84b
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4824
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 23:58:12 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4824
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 23:58:12 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4824
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 23:58:12 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4824
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 23:58:12 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4824
Expires: Tue, 13 Sep 2022 01:18:36 GMT
Date: Mon, 12 Sep 2022 23:58:12 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d3b6b9b-146c-4409-9d90-4b60cad37e27.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7430
x-amzn-requestid: 7898b8eb-60e3-47b4-980e-061036ac8c4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXbepFinIAMFoqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa5f7-3a120c0143cdf1051f94e142;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eKSciYj4WbRzV_M0LpmWpgrEvYLDfi2haM-slQw4EXm371JAq-pd6Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:58:18 GMT
etag: "722607d59e2fa7de70b7b24daebc0ef74903f272"
age: 7194
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7430
Md5:    bade06e72a416ba31c658e41c341a175
Sha1:   722607d59e2fa7de70b7b24daebc0ef74903f272
Sha256: 16033840bfe31372b193a545f5aae57fd865a5e786d12705d67b18dfdbb31388
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106eeeca-4365-4ffc-b701-f952d0b09dcb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7965
x-amzn-requestid: c0ddd7c6-9709-4251-8e7b-4a551f9a7d2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBro8EjxIAMFi0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316f305-26023e0714937dca063dcbfa;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 07:13:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: M8hApWUPiRtGNRAjsaGnjo2w9myX6knC1Rk0-reejbUO7aVqYPttRw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 23:23:42 GMT
age: 2070
etag: "7a1f13d32de956fd50fccba0f813fb71bda79f63"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7965
Md5:    47e1f64348aa12d707bf070f39877c7e
Sha1:   7a1f13d32de956fd50fccba0f813fb71bda79f63
Sha256: 9b3cee8039a2adb1291006a9ad55cd5032a2a6c10de3c5f57222692b02c0faac
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e0f3eee-c6ea-4181-897c-ab998b1e8a08.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6741
x-amzn-requestid: f1373ac4-6b9a-49bc-8f07-6f85baa0f92c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FC8GmQIAMF7Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144edf-68fa8db9336e27e923066ee1;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:08:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6JTPbEGBm4EN5-7fI0oCDp65BKlTD3kx_6JzNbBaEegvtVuc_TklfQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:18:18 GMT
age: 5994
etag: "35814ff49d8309281c2cf8153688bb32b3f835c2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6741
Md5:    f61e17a6a82bd58058fa3d2a0122207a
Sha1:   35814ff49d8309281c2cf8153688bb32b3f835c2
Sha256: 78cb7d05097cbb8f4b03e554af0e665bac92e46231a144cc05848a3f54560d9b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6844ead0-eb8f-4f28-a75b-063b2a4c1d53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7976
x-amzn-requestid: c09b1947-9386-4436-8b91-5930224dbdc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXbxcE4BIAMFuiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa66f-50a7fafb3baea1005f0a884a;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:36:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fxThQX5EQazGQlqnDNELicWNhlXJ5mwkIvOEIyUPVxm_tYhCn2VWIA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:57:16 GMT
age: 7256
etag: "ac3f912583cb076153a1bba5ad12d8eaf5024c91"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7976
Md5:    b851054b8d56a45bf361c894883a4cfd
Sha1:   ac3f912583cb076153a1bba5ad12d8eaf5024c91
Sha256: 5e204f7d5a3294fc2ee35a02d573c8144bd59fddb80638856ac8c733d5953871
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F898fa8c6-1f06-4fa4-88d0-333a32c1a7a8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10245
x-amzn-requestid: 20d58a44-c942-46a8-9136-a824d775275c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLNZPFsjoAMFv7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ac2a1-24d2272a61fd0f39088251b4;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 04:35:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2E2yaVqFHLXdfuJns8hs9DNomHNQWVNVSeZSCMdD2W7bGMMgA0QoZQ==
via: 1.1 024f97192fe648974da2251fbcc71f38.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:17:59 GMT
age: 6013
etag: "ec2e96359ef3a236514cab21af80ea5b9420e9c3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10245
Md5:    019416755742a78ddf35671ba5eaccc7
Sha1:   ec2e96359ef3a236514cab21af80ea5b9420e9c3
Sha256: a6b0e0ec56c2ce2f94dae8032e0deb297236c35f7a8928a14a254e3fdb2a255a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69e8f1cd-31bf-4844-9738-9405f7d06c28.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8881
x-amzn-requestid: bb64b6ca-90e4-42b0-93cd-6d2a63b92c80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLAqWG76oAMFwDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631aae42-55583af101f8ec380c0d1026;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 03:08:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dCmXSCw6BLyu3glIdrXkehroMpiUX5CSQmEVme7jrt0RPn4zbMjQ4w==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 09:01:55 GMT
age: 53777
etag: "5e4d409aa55bb8682b1accbbc9608f627d2f0eb0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8881
Md5:    2046dcdfa0a6c46d8d18b54cadfd2cf1
Sha1:   5e4d409aa55bb8682b1accbbc9608f627d2f0eb0
Sha256: 677bb5de367bb264121fea40e8b7c97867b543c56844f52907064671e8749aa2
                                        
                                            GET /assets/lander.css HTTP/1.1 
Host: 10x.cardoneventures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/success
Cookie: __cf_bm=k_KpY0i48j_0gbJjOMUInjZjtZ6aydyBS5QLiWD9.4M-1663027090-0-AU1+3UKDDIThn9+ECe76vuAkS3EbQaytU8q6dhTmamg9a6e9ANr9SAoW61FL+edlMZiwODp+Ny494Re2NKwTuYmOaw5p14n+S9NG76nctTId
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: text/css
                                        
date: Mon, 12 Sep 2022 23:58:10 GMT
cf-ray: 749c96f4be0b0b61-OSL
access-control-allow-origin: *
age: 712
cache-control: public, max-age=1200
etag: W/"630e9cfc-6a514"
expires: Tue, 13 Sep 2022 00:18:10 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (53232)
Size:   71621
Md5:    621882d0d1d73eeaf616f0785520f758
Sha1:   d83b1e2b4888835d6ae4260231d3f5019d4558c1
Sha256: fe5b91229d88bf5ead7a260bf942c206cdfcc164ca2b29b8ea622b9216fe3960
                                        
                                            GET /assets/external/wistia-mux.js HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/embed/iframe/8gykc7c1rc?autoplay=0&wmode=transparent
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "631f51b5-7e6e"
last-modified: Mon, 12 Sep 2022 15:35:17 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:13 GMT
age: 1563
x-served-by: cache-iad-kcgs7200147-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2
x-timer: S1663027094.706636,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 32366
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   32366
Md5:    4e0bd02908384de7517dc6ce2d132a92
Sha1:   e5be3ef18fddb02671eb704d34e3493cdfcb80ae
Sha256: da3f40915f30cc7863ae44e57acfbc344682d22cba4f29159e2fd5896574b8c6
                                        
                                            GET /nr-1216.min.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8=
x-amz-request-id: 4AV5AVKCCR961CNG
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8"
x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:13 GMT
via: 1.1 varnish
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 462
x-timer: S1663027094.725150,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 14391
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32022)
Size:   14391
Md5:    b7c09cc097b2847f9edc784adba62dcb
Sha1:   5aa648623cf5e3b4b215fe5d068a7904c59f2925
Sha256: 6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa
                                        
                                            GET /1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=4538&ck=1&ref=https://10x.cardoneventures.com/success&ap=452&be=1196&fe=4117&dc=2173&perf=%7B%22timing%22:%7B%22of%22:1663027077020,%22n%22:0,%22f%22:1026,%22dn%22:1026,%22dne%22:1026,%22c%22:1026,%22s%22:1026,%22ce%22:1026,%22rq%22:1029,%22rp%22:1162,%22rpe%22:1164,%22dl%22:1175,%22di%22:2120,%22ds%22:2172,%22de%22:2422,%22dc%22:4117,%22l%22:4117,%22le%22:4229%7D,%22navigation%22:%7B%7D%7D&fcp=2088&jsonp=NREUM.setToken HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Mon, 12 Sep 2022 23:58:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 749c970949b10b41-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=60829ca68b51700c; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   72
Md5:    107d93e382e2c9b00fbf9fb0edc65d86
Sha1:   77e750e3ebf9706f4f6dd253785602d70be17c6c
Sha256: a1ee50b689ea433a0acdccbf4ee4629e9ea3f9c4bcdd21effb334359a2f9e937
                                        
                                            GET /userevents/?funnel_id=M0tPMDNEdGlVeFNmMW9RTDhlb3RpUT09LS1BcWdzWlQ3b05IWXhNTDd5bGloSHl3PT0%3D--dde30f3557c150a7945af452b3bffe90ca0c4d81&page_id=Z09xWUxKUXNIRTUxWmZXbGVKV29wQT09LS0wQnVDSnlmeHo5Uml3Q3dlZnlwaCtBPT0%3D--cd4a0a819c94222bc49194da4e8d52f3ca43341c&funnel_step_id=R3Z4MXFxT3BVRlFTNGtJRExiRjNUQT09LS1mV0lBRGJWdTA0MkU5cWVYNnJZMVJRPT0%3D--10d0b2c98c638a35a7779bea84c827e712319e6f&user_id=MG5hZkVtdXViNVZzSkJyVFMzaXpidz09LS10akJJL2xyTmhzeTV2ajIwWXFrdk5RPT0%3D--ae79ea509003ca3f5df9ad85bed3b43ff25a371b&account_id=cEZqVWdkMTRmRFlOcjFhdGNwYm9udz09LS12L05DWjhXNmExQ2UyMWxNdUNsWmt3PT0%3D--9f1f8ae8abe8fedc9c9bd6b8ca753986334ff73b&page_code=NTUyODIxMjQ%3D&mode_id=1&time_zone=America%2FLos_Angeles&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=9f6e41b3-de96-4cbf-9dc5-165edc3ff04b&url=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess HTTP/1.1 
Host: app.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.12.194
HTTP/2 202 Accepted
content-type: text/html
                                        
date: Mon, 12 Sep 2022 23:58:11 GMT
cf-ray: 749c96fac9b9b4fd-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: a14a202da22d2252a88ee6bd45a45a47
x-runtime: 0.043786
set-cookie: __cf_bm=f.lMmpQ8mvHyOqxAGImEgTt37Sll0.lsfPIcK1i1BKE-1663027091-0-AT3wSgXBYh00DxwlDQ690xTMy4Hkhw1LQNcyktZGWHptea507exWOLjnuMgniP8qETqdkWdv4Yh5qrbs24pfpLemW4s+1FCWD1kevnLELY6w; path=/; expires=Tue, 13-Sep-22 00:28:11 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   74872
Md5:    379176146e0ffaa87356e15e306936d0
Sha1:   72b6e806e377e2c0c0d7b3b15ebe2f496669e8d2
Sha256: f5439e9c11ee5237b56d7a4484aaebe7ce85fa6e3e07c81affb255b3e877d65b
                                        
                                            GET /assets/external/playPauseLoadingControl.js HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/embed/iframe/8gykc7c1rc?autoplay=0&wmode=transparent
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "631f51b5-3e0b"
last-modified: Mon, 12 Sep 2022 15:35:17 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:14 GMT
age: 1563
x-served-by: cache-iad-kiad7000119-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1663027094.440649,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 15883
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59748), with no line terminators
Size:   15883
Md5:    a22b08be272e88f9f9cb5d36931404ad
Sha1:   df957da8dc2886427064cac808d96b37f7455b1c
Sha256: ca8ce25c2122efedb3dd68f8975f03bc0efde2f7e0e678c6c8d45c9b24ec7cc4
                                        
                                            GET /assets/external/videoThumbnail.js HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/embed/iframe/v5yg2m28cw?autoplay=0&wmode=transparent
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "631f51b5-4cee"
last-modified: Mon, 12 Sep 2022 15:35:17 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:14 GMT
age: 1563
x-served-by: cache-iad-kjyo7100072-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027095.535571,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 19694
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   19694
Md5:    dcb8534d8a404a8a07fe9623e92fe5a5
Sha1:   e3171449329180b85891948c53bf14bc11c02382
Sha256: 856af8dbae45c432258df905a17abb0ce366a1c770ebb3fd37b17491fce57040
                                        
                                            GET /deliveries/b9e950042eb9c0bb957ac34097a7ee4e.webp?image_crop_resized=640x357 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: b9e950042eb9c0bb957ac34097a7ee4e
last-modified: Mon, 14 Feb 2022 14:13:17 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:14 GMT
age: 2430249
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000055-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027095.539957,VS0,VE1
content-length: 20564
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x357, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   20564
Md5:    8a96e06aeef9027eb9853c6a844f3801
Sha1:   9cf469d4d8e990fc797f290bcc112a4542f7626b
Sha256: 0fa017a7b7a87476a6aefd71d94aa5f51d87c81dd9a875db6287afedea0aea05
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3721
Cache-Control: 'max-age=158059'
Date: Mon, 12 Sep 2022 23:58:14 GMT
Last-Modified: Mon, 12 Sep 2022 22:56:13 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 12 Sep 2022 22:41:12 GMT
expires: Tue, 13 Sep 2022 00:41:12 GMT
cache-control: public, max-age=7200
age: 4622
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: VTIZ1SgrJGqg2XE/iHrbnENuUNYRnPSZevS0wshs4KUvRlThHsBTbkiAaJvSrvOIF4Q3i+2A9G3wLVAFxqmnGw==
content-length: 26737
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 23:58:14 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   26737
Md5:    8e7e24fb3539746aa8b869558f589615
Sha1:   d8086d86bbd5cfacc3b6a5ef14aa917830e137dd
Sha256: 7304497ee417a664bdea67d7307ca36a36013556b927c3ea5bca6c04b66236ef
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3721
Cache-Control: 'max-age=158059'
Date: Mon, 12 Sep 2022 23:58:14 GMT
Last-Modified: Mon, 12 Sep 2022 22:56:13 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /deliveries/7ea054bb6854d5f7d3a090400ddd3ff1.webp?image_crop_resized=640x359 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: 7ea054bb6854d5f7d3a090400ddd3ff1
last-modified: Tue, 22 Feb 2022 20:08:50 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:14 GMT
age: 1052754
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000123-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027095.636534,VS0,VE1
content-length: 19604
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x359, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   19604
Md5:    b4a69bf02f86d655dca90c38f48047f8
Sha1:   d60dcb2080e7173587e4fd2ae239c8258a14f99c
Sha256: 126e214d4c3993099abd1c28fe723045dea61b94a427f3df8499994b81eba61d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3552
Cache-Control: 'max-age=158059'
Date: Mon, 12 Sep 2022 23:58:14 GMT
Last-Modified: Mon, 12 Sep 2022 22:59:02 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /deliveries/a604b2573fcb1ee9a7f64a1067a65bfb.webp?image_crop_resized=640x361 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: a604b2573fcb1ee9a7f64a1067a65bfb
last-modified: Tue, 01 Mar 2022 14:29:23 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:14 GMT
age: 2261841
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000165-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027095.839239,VS0,VE1
content-length: 22166
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x361, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   22166
Md5:    6dc9c8e1020bbe9a09b5a4bef2c01dd9
Sha1:   2a03b848a69751e724feab6252aedd2264888e8b
Sha256: 5dfa5456ee94bd7967b53fad9e53d5876deb6c55a9819ce72fa8545189354af9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /deliveries/ac1584a95a93925248e82f2e43742ef4.webp?image_crop_resized=640x354 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: ac1584a95a93925248e82f2e43742ef4
last-modified: Thu, 03 Mar 2022 15:15:07 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:15 GMT
age: 2261841
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kcgs7200153-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027095.042760,VS0,VE1
content-length: 17966
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x354, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   17966
Md5:    336c1696f2bd9405a38a48177662b792
Sha1:   bfeadb6611253146a88b136af33e3e25e6993bed
Sha256: 4732ed96f6fed48120a502ea0b09afed81dd65f48b0363c21145aac3dbdf7054
                                        
                                            GET /deliveries/7fe790a07fa1fe6ae9bc293316bea427.webp?image_crop_resized=640x360 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: 7fe790a07fa1fe6ae9bc293316bea427
last-modified: Tue, 01 Mar 2022 14:38:18 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:15 GMT
age: 1161373
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kcgs7200088-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027095.168526,VS0,VE1
content-length: 15306
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   15306
Md5:    6a07741261a7083fdc5cf5c6ce3937c8
Sha1:   a7f580a6babd0dee1dd7498d26f4eb6b7b4699c3
Sha256: 035e0e4f60d99749b0297b91e1884f8512593eb3faa5e3314d3fb0959953d143
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/viewthroughconversion/10861364251/?random=1663027082703&cv=9&fst=1663027082703&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa970&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess&tiba=10X%20Your%20Business&auid=1712511873.1663027082&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.2
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Sep 2022 23:58:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1041
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 13-Sep-2022 00:13:15 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2272), with no line terminators
Size:   1041
Md5:    9fd964a146320deacc01a0d33a18c474
Sha1:   724aa93a5c89c22431456ddb9b35dda35bd1bbee
Sha256: 192d4735288e1974c45b7d07cfcc441a7c7ff9883c5a9f18fc3c90906522d645
                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-165034806-1&cid=1639759351.1663027082&jid=639229390&gjid=2103513433&_gid=1384985307.1663027083&_u=YADAAEAAAAAAAC~&z=1852731602 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.155
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://10x.cardoneventures.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 12 Sep 2022 23:58:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 12 Sep 2022 23:58:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /deliveries/a79222f621eaf84a96302ddc36bdaec1.webp?image_crop_resized=640x360 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: a79222f621eaf84a96302ddc36bdaec1
last-modified: Fri, 04 Feb 2022 17:44:06 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:15 GMT
age: 3893
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kjyo7100034-IAD, cache-bma1647-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 1
x-timer: S1663027095.263985,VS0,VE1
content-length: 23368
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   23368
Md5:    2c54c17d13c873b232b149925a1930ad
Sha1:   a871b3d1b13cad43eebfa6b8c4247a11174a8d9e
Sha256: 5f31905ec25a0183cdf20a480ce01c1e082f6229bc49e2d8ad859a657e8c31f1
                                        
                                            GET /deliveries/c1152f762fa91a8d28fa68ad81806adb.webp?image_crop_resized=640x360 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: c1152f762fa91a8d28fa68ad81806adb
last-modified: Fri, 04 Feb 2022 17:49:10 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:15 GMT
age: 1052755
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000054-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027095.358106,VS0,VE1
content-length: 12172
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   12172
Md5:    7e3596636e01974a41cb0a82b00f3a8d
Sha1:   4070a10dcda78aa399cf257274373d3450aac0d8
Sha256: 20227dfc63a7502aa45ff691439b1842550e66aa4878cb62fc3e702de530b4f2
                                        
                                            GET /leadflows.js HTTP/1.1 
Host: js.hsleadflows.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.232.204
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 12 Sep 2022 23:58:14 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 06 Sep 2022 03:53:55 UTC
etag: W/"6ec4f161716a8da5c8c95cda1e89dc05"
x-amz-server-side-encryption: AES256
x-amz-version-id: Ur8e8LShl3Q9Sr_qgQx0CQrFz7yEnpM5
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 0c482288431692a08571c47359ca2c80.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P3
x-amz-cf-id: 9OypiiF5CIRooyCDPJmVqfezycT7-bhmPUvxEpfEXdLZod4477i7hw==
cache-control: s-maxage=86400, max-age=0
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=lead-flows-js/static-1.1110/bundle/main/lead-flows-release.js&cfRay=749c3805fbafb4f9-IAD
x-hs-target-asset: lead-flows-js/static-1.1110/bundle/main/lead-flows-release.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 3892
server: cloudflare
cf-ray: 749c970dcfe3b529-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   89774
Md5:    2687f14a5b2e0947da9a47a97a752cfa
Sha1:   047c70b81a5eaf6562b7646920d57559b7e1d98d
Sha256: 3507d5d48cf7f258a0bea39959b398d532ee1c1be7213f39a5420503cb42a79a
                                        
                                            GET /pagead/1p-user-list/10861364251/?random=1663027082703&cv=9&fst=1663023600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa970&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess&tiba=10X%20Your%20Business&async=1&fmt=3&is_vtc=1&random=1683725746&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Sep 2022 23:58:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /6592891.js HTTP/1.1 
Host: js.hs-banner.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.33.171
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
date: Mon, 12 Sep 2022 23:58:15 GMT
x-amz-id-2: Rq7DlrsjKZNfvOi0DO0ohR79xVENKsC0MYEiBHIuj+LI7gPtZdt+sj0iIuK5ZguoubLn6bFTtis=
x-amz-request-id: WMFP2W1PJRQQBMPF
last-modified: Tue, 30 Aug 2022 21:32:04 GMT
etag: W/"74e159e3d1eeb7270c4f9d45b577c324"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: 5keH4Vrj_TktXJOCG43fyv6xx1XPQ940
access-control-allow-origin: https://meetings.cardoneventures.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
expires: Tue, 13 Sep 2022 00:03:15 GMT
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 749c970dbfdfb529-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (60657)
Size:   15346
Md5:    306654f64f5bb565c180c03f27e259d7
Sha1:   8106eab6675f4379e29b75c938dd15454da21ba7
Sha256: b6f5944ac5996e45836b60591d95dd2d368d634e8e508b8aab5d8c8a3f0a18f4
                                        
                                            GET /deliveries/ed21cd8f2006eff69f4a706b94c800d4.webp?image_crop_resized=640x360 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: ed21cd8f2006eff69f4a706b94c800d4
last-modified: Fri, 04 Feb 2022 17:41:24 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:15 GMT
age: 3892
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000166-IAD, cache-bma1647-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 1
x-timer: S1663027095.496776,VS0,VE1
content-length: 23244
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   23244
Md5:    08189ea4a9eb37dc09db675de6a261e4
Sha1:   02cd38d7f25337f49702a0ab485d5ba359005541
Sha256: 81da2e7a01ee2c364a2fa499718e8b6fddcb23606dc4c57a8f02772089ff64a4
                                        
                                            POST /g/collect?v=2&tid=G-4RP0SQD838&gtm=2oe970&_p=262179448&cid=1639759351.1663027082&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663027082&sct=1&seg=0&dl=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess&dt=10X%20Your%20Business&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.32.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://10x.cardoneventures.com
date: Mon, 12 Sep 2022 23:58:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /tr/?id=753847818429594&ev=PageView&dl=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess&rl=&if=false&ts=1663027083141&sw=1280&sh=1024&v=2.9.79&r=stable&a=tmgoogletagmanager&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22799735181461304%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22770695854378496%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%222111207249034838%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%221189061705276372%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[4]=%7B%22extractorID%22%3A%22444493090906883%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[5]=%7B%22extractorID%22%3A%22314884243777768%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1663027083139.69357242&it=1663027082571&coo=false&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: image/gif
                                        
date: Mon, 12 Sep 2022 23:58:15 GMT
expires: Mon, 12 Sep 2022 23:58:15 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   44
Md5:    b798f4ce7359fd815df4bdf76503b295
Sha1:   f8cc6addf1707ad236ad9970b0a48f9733d07da5
Sha256: 10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
                                        
                                            GET /li.lms-analytics/insight.min.js HTTP/1.1 
Host: snap.licdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         2.22.244.73
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
                                        
last-modified: Fri, 12 Aug 2022 20:23:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=49289
date: Mon, 12 Sep 2022 23:58:15 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7751)
Size:   3063
Md5:    57efbbeb3e1d23c82b677511c67c8b0e
Sha1:   f927ba115ef4be362694c22850ddbdd1c1b054d1
Sha256: 873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
                                        
                                            GET /collectedforms.js HTTP/1.1 
Host: js.hscollectedforms.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://10x.cardoneventures.com
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.127.171
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 12 Sep 2022 23:58:14 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 18 Jul 2022 02:17:32 UTC
etag: W/"877e5f54a66a69786dec54038d0864c4"
x-amz-server-side-encryption: AES256
x-amz-version-id: gdKWpz_yvObw8s97wY_QgOhrdmJzIElp
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 a97f872e6a14f227f3c3ea78467c0330.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P3
x-amz-cf-id: B7m7G5YhQz0jaKBUwcaxN2aA6-NSmGSxTw0l-ZxdCCE1bI9mKxHK0g==
cache-control: s-maxage=86400, max-age=0
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.285/bundles/project.js&cfRay=749c3805f89e0afa-ARN
x-hs-target-asset: collected-forms-embed-js/static-1.285/bundles/project.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 3892
server: cloudflare
cf-ray: 749c970dbd8bb524-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size:   39165
Md5:    0c2be7838c653e8c3bbddeca5fd0a5ac
Sha1:   58f1193db200e83d1dafb50fb0ab1fb519a4bf89
Sha256: cd6dc8b655485fa17f946ca515013a230c74eaae4887a7692df9bf89bac44c68
                                        
                                            GET /deliveries/4818c180a60051261f32de16f4b1fa42.webp?image_crop_resized=640x360 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: 4818c180a60051261f32de16f4b1fa42
last-modified: Fri, 04 Feb 2022 21:43:05 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:15 GMT
age: 383122
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kcgs7200131-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027096.819935,VS0,VE1
content-length: 9242
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   9242
Md5:    3dec2e23f187d333c6c984d2ab1813d9
Sha1:   bac53bb2d04a2f35dd04c43f7ca8f9076a813e8e
Sha256: 15531aa47b8062cf4b172cdf7392f78d1e2de400fb170c4be8a36cb8073ca1c0
                                        
                                            GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=931822577&v=1.1&a=6592891&rcu=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess&pu=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess&t=10X+Your+Business&cts=1663027083460&vi=f8bcdc71eb7046d8f0bec341b8db52d6&nc=true&u=189466868.f8bcdc71eb7046d8f0bec341b8db52d6.1663027083455.1663027083455.1663027083455.1&b=189466868.1.1663027083456&cc=15 HTTP/1.1 
Host: track.hubspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.19.154.83
HTTP/2 200 OK
content-type: image/gif
                                        
date: Mon, 12 Sep 2022 23:58:16 GMT
content-length: 45
cf-ray: 749c97153b781c0e-OSL
cache-control: no-cache, no-store, no-transform
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
p3p: CP="NOI CUR ADM OUR NOR STA NID"
x-hubspot-correlation-id: fc53f038-a0d7-4ebe-929a-3dda01548f11
x-robots-tag: none
set-cookie: __cf_bm=LCAhFH.cRxHi9ZHFtYQftzZJROaqREVYL5WdBq.L3MY-1663027096-0-AdcXZgrGXrgfdCXmepRGSeMIzMQ2x9k0V9ZUVeNxLQfJsNB0iCFzCg/f4hGsi8LUPs4nw07ica+iCmEbEOttDTU=; path=/; expires=Tue, 13-Sep-22 00:28:16 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Meaj1bVeLoP%2Few%2Byqn2XQPeDkoe9w0ma8XWGCtqMEvpqjdzC47OjesLfW%2FRqj2peS3Dbikbl7pibFeamnM0MnORXHLWDfTnQPYuy88poYCZtpVTfK2y1mrdq6Xb%2FJsXMA58s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   45
Md5:    c8817d472077ebfc04593c1fa019d32d
Sha1:   e1e86f41c86c7b9cd2e8b76c6a925a1a3e7e3247
Sha256: dc111a70984a9eda00752b06277113029ef288f1125c31eff2477413e15e8aa4
                                        
                                            GET /deliveries/3d310671ad3d27182ef9352f40f3a5b8.webp?image_crop_resized=640x354 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: 3d310671ad3d27182ef9352f40f3a5b8
last-modified: Fri, 11 Feb 2022 16:37:53 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:16 GMT
age: 1161373
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000054-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027096.177154,VS0,VE1
content-length: 9068
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x354, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   9068
Md5:    f21295159e086b8779d2cec617b71061
Sha1:   5d76439444ff20bd0ace8ce1b965adbea5272de8
Sha256: 9edc764ab8cdf14bb1dc23ceaa73d6425ee49c74ae4d3e70a037c13e1d9d136c
                                        
                                            GET /collect?v=2&fmt=js&pid=2069236&time=1663027083604&url=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.42.14
HTTP/2 302 Found
                                        
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2069236%26time%3D1663027083604%26url%3Dhttps%253A%252F%252F10x.cardoneventures.com%252Fsuccess%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQLgdOvbOkNgTAAAAYM0I6pIaCz08MzAP3aAGiOsHonLoMNxPT-GGRRrTj9qOwPWphYqsThT78uCTQ; Max-Age=2592000; Expires=Wed, 12 Oct 2022 23:58:16 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure AnalyticsSyncHistory=AQLufh6hW_eksQAAAYM0I6pINDyD8ctmPl-YUFPJfYzSOGbjauYNSi1yo7Dnc6dWuQJSmeBR2LxM_cWQKqqETA; Max-Age=2592000; Expires=Wed, 12 Oct 2022 23:58:16 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&430399ae-6e4a-4de3-84aa-c358f2fef36c"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 12-Sep-2023 23:58:16 GMT; SameSite=None lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2341:u=1:x=1:i=1663027096:t=1663113496:v=2:sig=AQHXvttC9sqyF6tBpPeyTRCFSNKKDon8"; Expires=Tue, 13 Sep 2022 23:58:16 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-source-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXog6tQl7GW1zxyx8Sk8g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5D8F069948B2422783D2672E612AC5CD Ref B: OSL30EDGE0312 Ref C: 2022-09-12T23:58:16Z
date: Mon, 12 Sep 2022 23:58:16 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /deliveries/a1e14ba03d06198f519e4313f7ffd72b.webp?image_crop_resized=640x360 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: image/webp
                                        
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: a1e14ba03d06198f519e4313f7ffd72b
last-modified: Fri, 04 Feb 2022 17:39:50 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:16 GMT
age: 1052755
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000109-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027096.262561,VS0,VE1
content-length: 15416
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   15416
Md5:    3a124758356485475120ab32f1cb1c17
Sha1:   0a2bd6fb22a4e655e78e7e932e4ac673e03173d4
Sha256: b9507457c29de3159f5b987b952397c662a9e49a94d7f8f57fa62e07975852f9
                                        
                                            GET /assets/external/externalPlayer.js HTTP/1.1 
Host: fast.wistia.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/embed/iframe/u4jrcon248?autoplay=0&wmode=transparent
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.86.110
HTTP/2 200 OK
content-type: application/javascript
                                        
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "631f51b5-5a59"
last-modified: Mon, 12 Sep 2022 15:35:17 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Sep 2022 23:58:16 GMT
age: 1565
x-served-by: cache-iad-kjyo7100178-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663027096.299087,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 23129
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   23129
Md5:    7ff7cc715d484f93b368d7b50a3bc641
Sha1:   a9eecdf6cc6e8a9e1b7883bf84429a5c376eae16
Sha256: 7068b63a663648717387f2309d67e5541fee1b1308d0c6c7964df37c5c259cb8
                                        
                                            GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2069236%26time%3D1663027083604%26url%3Dhttps%253A%252F%252F10x.cardoneventures.com%252Fsuccess%26liSync%3Dtrue HTTP/1.1 
Host: www.linkedin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://10x.cardoneventures.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.42.14
HTTP/2 302 Found
                                        
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=2069236&time=1663027083604&url=https%3A%2F%2F10x.cardoneventures.com%2Fsuccess&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None bcookie="v=2&298a030d-2dca-44fa-81f1-2362846c90e4"; Domain=.linkedin.com; Expires=Tue, 12-Sep-2023 23:58:16 GMT; Path=/; Secure; SameSite=None bscookie="v=1&2022091223581603e56b7d-6628-4b81-8a93-656822fc8028AQEDyutq23oiyvnrH-Xf6x6YHuvwvdZg"; Domain=.www.linkedin.com; Expires=Tue, 12-Sep-2023 23:58:16 GMT; Path=/; HttpOnly; Secure; SameSite=None li_gc=MTswOzE2NjMwMjcwOTY7MjswMjFNEaex05hDbdDjw+LK/Ro1QbFvmTib8u+xVNO2RMXX9w==; Domain=.linkedin.com; Expires=Sat, 11 Mar 2023 23:58:16 GMT; Path=/; Secure; SameSite=None lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2380:u=1:x=1:i=1663027096:t=1663113496:v=2:sig=AQGEMZs0X7twCsSLtC9FuqzxrxIgqRzH"; Expires=Tue, 13 Sep 2022 23:58:16 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXog6tVRv5t0gWObMJA0Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 49E7C131C2454519B4843214FD77E15E Ref B: OSL30EDGE0312 Ref C: 2022-09-12T23:58:16Z
date: Mon, 12 Sep 2022 23:58:16 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /analytics/1663026900000/6592891.js HTTP/1.1 
Host: js.hs-analytics.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10x.cardoneventures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.70.176
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Mon, 12 Sep 2022 23:58:15 GMT
x-amz-id-2: ct7dv77zs+8UuuDF+p+q4z1Wo1SvNNOlFIpMQXU4HIH3XNiLX8nX7Kn1eHd77vm2oyUwI6lv+g8=
x-amz-request-id: TSDHHT3VCQKA2BHH
last-modified: Wed, 31 Aug 2022 12:18:35 GMT
etag: W/"9f937344c4f7ab9b4e1e2b8ee6e917be"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
expires: Tue, 13 Sep 2022 00:03:15 GMT
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 749c970ececefac8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (63804)
Size:   20051
Md5:    7d03d50d14a07015a8647b96ae540135
Sha1:   96be2065945296bb982fd2c69b6501f5872ea13f
Sha256: 4a0e740e8c279bbb81ca83fd73fe528b21f7aabeb6a732666474586658e83754
                                        
                                            GET /deliveries/cfd9e941248c7dc8d1020ee39d2cb7e2.webp?image_crop_resized=640x361 HTTP/1.1 
Host: embed-ssl.wistia.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fast.wistia.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers