urlquery - report: giveway033.blogspot.com.ee/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
d26b395fwzu5fz.cloudfront.net (1)	0	2014-10-30 06:57:09 UTC	2023-02-03 21:29:26 UTC	54.230.245.176	Unknown ranking
r3.o.lencr.org (6)	344	2020-12-02 08:52:13 UTC	2023-02-03 04:09:16 UTC	23.36.77.32
firefox.settings.services.mozilla.com (2)	867	2020-05-25 20:06:39 UTC	2023-02-03 04:09:22 UTC	35.241.9.150
classic.clickfunnels.com (2)	0	2022-10-26 18:44:01 UTC	2023-02-03 01:26:54 UTC	104.16.13.194	Domain (clickfunnels.com) ranked at: 14979
ocsp.digicert.com (8)	86	2012-05-21 07:02:23 UTC	2023-02-03 10:45:54 UTC	93.184.220.29
www.clickfunnels.com (2)	51002	2014-10-08 20:01:35 UTC	2023-02-03 22:20:45 UTC	104.18.39.181
fonts.gstatic.com (3)	0	2014-04-02 10:51:04 UTC	2023-02-03 09:42:29 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
images.clickfunnels.com (3)	95357	2014-10-08 20:00:42 UTC	2023-02-03 05:10:21 UTC	104.16.13.194
ocsp.sca1b.amazontrust.com (1)	1015	2016-02-14 02:37:56 UTC	2019-03-27 04:05:54 UTC	54.230.245.100
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2023-02-03 04:10:06 UTC	34.160.144.191
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2023-02-03 04:10:34 UTC	34.117.237.239
giveway033.blogspot.com (2)	0	2023-01-20 01:31:47 UTC	2023-01-30 07:27:42 UTC	142.250.74.1	Unknown ranking
fonts.googleapis.com (2)	8877	2012-05-23 12:41:44 UTC	2023-02-03 08:46:20 UTC	142.250.74.106
use.fontawesome.com (2)	942	2017-01-30 04:43:25 UTC	2023-02-03 04:11:53 UTC	172.64.133.15
assets.clickfunnels.com (1)	64830	2014-10-08 20:00:20 UTC	2023-02-03 10:23:05 UTC	104.16.13.194
app.clickfunnels.com (3)	34727	2015-03-12 08:40:23 UTC	2023-02-03 14:55:27 UTC	104.16.13.194
static.cloudflareinsights.com (1)	1294	2019-09-24 14:34:56 UTC	2023-02-03 04:11:45 UTC	104.16.56.101
giveway033.blogspot.com.ee (1)	0	No data	No data	142.250.74.1	Unknown ranking
ocsp.pki.goog (8)	175	2017-06-14 07:23:31 UTC	2023-02-03 04:10:37 UTC	216.58.211.3
img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2023-02-03 04:09:24 UTC	34.120.237.76
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2023-02-03 04:10:07 UTC	52.40.49.56
api.keen.io (1)	16589	2013-07-27 19:58:01 UTC	2023-02-03 14:25:11 UTC	52.88.132.217
www.logo.wine (1)	693345	2019-12-03 02:24:48 UTC	2023-01-31 05:08:30 UTC	188.114.97.1

Scan Date	Severity	Indicator	Comment
2023-02-04	2	giveway033.blogspot.com/	Phishing
2023-02-04	2	giveway033.blogspot.com/	Phishing

Date	UQ / IDS / BL	URL	IP
2023-03-23 23:56:05 +0000	0 - 0 - 2	2010-kpss.blogspot.com/search/label/Spagetti	142.250.74.1
2023-03-23 22:58:36 +0000	0 - 0 - 2	silvamorenomaneironikit.blogspot.com/search/l (...)	142.250.74.1
2023-03-23 22:56:35 +0000	0 - 2 - 3	best-proxylist.blogspot.nl/2011_09_26_archive.html	142.250.74.1
2023-03-23 21:57:24 +0000	0 - 3 - 2	grasakfuckaudio.blogspot.com/2012/02/coming-s (...)	142.250.74.1
2023-03-23 21:21:01 +0000	0 - 0 - 3	sdfgsdfgsdfgsdgf.blogspot.ca/search/label/varste	142.250.74.1

Date	UQ / IDS / BL	URL	IP
2023-03-24 00:11:53 +0000	0 - 3 - 0	r1---sn-5goeenes.gvt1.com/edgedl/release2/chr (...)	74.125.108.230
2023-03-24 00:09:32 +0000	0 - 1 - 3	1w3bc6.ozld0r.qnw2jk.3wa9x2.76452.exea41.dfah (...)	35.205.61.67
2023-03-24 00:08:49 +0000	0 - 0 - 2	tee4engineers-s2.blogspot.com/p/combat-engine (...)	142.250.74.65
2023-03-24 00:07:58 +0000	0 - 0 - 2	go.redirectingat.com/?id=92X363&xcust=trdpro_ (...)	35.190.25.30
2023-03-24 00:07:53 +0000	0 - 0 - 2	go.redirectingat.com/?id=92X363&xcust=trdpro_ (...)	35.190.25.30

Date	UQ / IDS / BL	URL	IP
2023-02-04 05:14:52 +0000	0 - 0 - 2	giveway033.blogspot.com.ee/	142.250.74.1

Date	UQ / IDS / BL	URL	IP
2023-03-17 21:12:35 +0000	0 - 0 - 3	cashmoney365.blogspot.jp/	172.217.21.161
2023-03-12 16:25:08 +0000	0 - 0 - 2	givealwyes.blogspot.am/	142.250.74.1
2023-03-11 18:13:03 +0000	0 - 0 - 3	bingobash32.blogspot.is/	172.217.21.161
2023-03-11 16:53:20 +0000	0 - 0 - 2	awaygivees.blogspot.lu/	142.250.74.65
2023-03-11 14:53:03 +0000	0 - 0 - 3	cashmoney621.blogspot.cz/	172.217.21.161

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14141 Expires: Sat, 04 Feb 2023 09:10:22 GMT Date: Sat, 04 Feb 2023 05:14:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: e935ea42be4feaed61a824b0b903913e Sha1: f966cfa80d65a805cb9d7c6a53b3340865d7c51a Sha256: eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF" Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16320 Expires: Sat, 04 Feb 2023 09:46:41 GMT Date: Sat, 04 Feb 2023 05:14:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 81713f952b51a865ad9764cde68e3fdb Sha1: 278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a Sha256: c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 35.241.9.150 HASH: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e 35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sat, 04 Feb 2023 04:43:35 GMT age: 1866 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 30db107dcf4380cef05efea409c2e6a3 Sha1: 96e6a306fbc07299aba64e5c14e2bfca35872fa9 Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C" Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15983 Expires: Sat, 04 Feb 2023 09:41:04 GMT Date: Sat, 04 Feb 2023 05:14:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 7d2222d41721947297aaeb5a6e3d0714 Sha1: 04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065 Sha256: de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: KitouZSWMehj4IWpiX1DUFv6fmMGa/OR3dyDxaGaaIP/FYtHLaCop5oaLJtvsuh1QH236hFssrM= x-amz-request-id: TPAD7PPW1ASKFE28 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 04 Feb 2023 04:23:51 GMT age: 3050 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 7b922915ebf1fa3639b333f994c74f24 Sha1: 144a3f80b98fd0652d4614f24cf6cbbee40f8938 Sha256: adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Sat, 04 Feb 2023 05:14:41 GMT content-length: 12 access-control-allow-credentials: true access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET / HTTP/1.1 Host: giveway033.blogspot.com.ee User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: giveway033.blogspot.com.ee/ FQDN: giveway033.blogspot.com.ee IP: 142.250.74.1 HASH: b65be9981790783f043fc2a212a45df9e26bfb9302080d907c35de7db76cb04f 142.250.74.1 HTTP/1.1 302 Moved Temporarily Content-Type: text/html; charset=UTF-8 Location: http://giveway033.blogspot.com/ Content-Encoding: gzip Date: Sat, 04 Feb 2023 05:14:42 GMT Expires: Sat, 04 Feb 2023 05:14:42 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN Content-Security-Policy: frame-ancestors 'self' X-XSS-Protection: 1; mode=block Content-Length: 179 Server: GSE --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text Size: 179 Md5: dab80bb8f45d61f7ed1c6fc5619d1b08 Sha1: 809e57ed705d37a753bc3aec93a56b1ba7ad6d9a Sha256: b65be9981790783f043fc2a212a45df9e26bfb9302080d907c35de7db76cb04f
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 35.241.9.150 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sat, 04 Feb 2023 05:07:19 GMT age: 443 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698" Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14912 Expires: Sat, 04 Feb 2023 09:23:14 GMT Date: Sat, 04 Feb 2023 05:14:42 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dedf9c519ac38c4bece9c5bc895787d7 Sha1: 4911175c3f8a435978c5301c33c7a99a5e00a1d5 Sha256: bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 0dfMEKYKZRGzAbYNgp4TGQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 52.40.49.56 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.40.49.56 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: PI/oNQo4anM3LVZsFEb8q3480Oo= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1 Host: giveway033.blogspot.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: giveway033.blogspot.com/ FQDN: giveway033.blogspot.com IP: 142.250.74.1 HASH: 314f2f20926b98ede24dc9b555d80270d0b19067d63b655f1dee454b84341bd4 142.250.74.1 HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=UTF-8 Location: https://giveway033.blogspot.com/ Content-Encoding: gzip Date: Sat, 04 Feb 2023 05:14:42 GMT Expires: Sat, 04 Feb 2023 05:14:42 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN Content-Security-Policy: frame-ancestors 'self' X-XSS-Protection: 1; mode=block Content-Length: 180 Server: GSE --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text Size: 180 Md5: 20ab919db84d7d9dc115003a8fc042b8 Sha1: d05220501e549daf7e6c877357768127f0eac7bc Sha256: 314f2f20926b98ede24dc9b555d80270d0b19067d63b655f1dee454b84341bd4 Alerts: Blocklists: - fortinet: Phishing
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 216.58.211.3 HASH: 906f154760200d54a0409b9f229b3c2f8e9d96ca751e44228bb92c29468fd371 216.58.211.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 05:14:43 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 8ed0aa8323e751dd1b26751a5bbc08b7 Sha1: 1dc77046253b2642a7def68c7a7d33f4a4a47f47 Sha256: 906f154760200d54a0409b9f229b3c2f8e9d96ca751e44228bb92c29468fd371
GET / HTTP/1.1 Host: giveway033.blogspot.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: giveway033.blogspot.com/ FQDN: giveway033.blogspot.com IP: 142.250.74.1 HASH: 15c11ee3a442c566f3f7627a4845a906e7739d0958cf5d80fe0b9ee0fa2b51c0 142.250.74.1 HTTP/2 200 OK content-type: text/html; charset=UTF-8 expires: Sat, 04 Feb 2023 05:14:43 GMT date: Sat, 04 Feb 2023 05:14:43 GMT cache-control: private, max-age=0 last-modified: Fri, 23 Dec 2022 13:44:46 GMT etag: W/"1a827a8f68d2f11b13ad34a2762008876ad8a2f82eaa0efbbb730a1039af963b" content-encoding: gzip x-content-type-options: nosniff x-xss-protection: 1; mode=block content-length: 12325 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1971) Size: 12325 Md5: c3de839bb7416f5b2476cd76667a67aa Sha1: b40241d49f5f6588a60290ef9f9959f9d883261e Sha256: 15c11ee3a442c566f3f7627a4845a906e7739d0958cf5d80fe0b9ee0fa2b51c0 Alerts: Blocklists: - fortinet: Phishing
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 216.58.211.3 HASH: 906f154760200d54a0409b9f229b3c2f8e9d96ca751e44228bb92c29468fd371 216.58.211.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 05:14:43 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 8ed0aa8323e751dd1b26751a5bbc08b7 Sha1: 1dc77046253b2642a7def68c7a7d33f4a4a47f47 Sha256: 906f154760200d54a0409b9f229b3c2f8e9d96ca751e44228bb92c29468fd371
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 216.58.211.3 HASH: b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d 216.58.211.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 05:14:43 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: c181c51a9326d56e60915a792c306c2c Sha1: de1cc0ce1384905e65a9fa9575743091d785e528 Sha256: b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: bc1467d19e8dea3983161468af524eb7c479b9e9e4f30df5f971f6816a8f4f85 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4208 Cache-Control: 'max-age=158059' Date: Sat, 04 Feb 2023 05:14:43 GMT Last-Modified: Sat, 04 Feb 2023 04:04:35 GMT Server: ECS (ska/F6FD) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: 5adf2c0a4b0cb0102bb2a801db222019 Sha1: 987b0d000fef5f238e256af039503019a60bb4f3 Sha256: bc1467d19e8dea3983161468af524eb7c479b9e9e4f30df5f971f6816a8f4f85
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: c58d1c1b40196c6f2728fc9bdedae7e035add02a756bf679cf98ba4d9d0e89a9 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3237 Cache-Control: max-age=109670 Date: Sat, 04 Feb 2023 05:14:43 GMT Etag: "63dce684-117" Expires: Sun, 05 Feb 2023 11:42:33 GMT Last-Modified: Fri, 03 Feb 2023 10:48:36 GMT Server: ECS (ska/F6FD) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: 0b8cd87caa26f8a830efa61297e828f7 Sha1: 51e578f1eac9f26cf1118c8f3d0f9c7938d88a6c Sha256: c58d1c1b40196c6f2728fc9bdedae7e035add02a756bf679cf98ba4d9d0e89a9
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 216.58.211.3 HASH: b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d 216.58.211.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 05:14:43 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: c181c51a9326d56e60915a792c306c2c Sha1: de1cc0ce1384905e65a9fa9575743091d785e528 Sha256: b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 7e5341915ce1bd9cc013d1804930d4947f57aa0f926235e6e7fbd89c6eb54b3d 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4235 Cache-Control: max-age=89453 Date: Sat, 04 Feb 2023 05:14:43 GMT Etag: "63dc93a5-117" Expires: Sun, 05 Feb 2023 06:05:36 GMT Last-Modified: Fri, 03 Feb 2023 04:55:01 GMT Server: ECS (amb/6BBE) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: b1bbf406e5d473071d96311ed8c8dd33 Sha1: bab2d439cc487bf682273fc2efc9a50bcbc9096f Sha256: 7e5341915ce1bd9cc013d1804930d4947f57aa0f926235e6e7fbd89c6eb54b3d
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 7e5341915ce1bd9cc013d1804930d4947f57aa0f926235e6e7fbd89c6eb54b3d 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 659 Cache-Control: max-age=85877 Date: Sat, 04 Feb 2023 05:14:43 GMT Etag: "63dc93a5-117" Expires: Sun, 05 Feb 2023 05:06:00 GMT Last-Modified: Fri, 03 Feb 2023 04:55:01 GMT Server: ECS (amb/6B7F) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: b1bbf406e5d473071d96311ed8c8dd33 Sha1: bab2d439cc487bf682273fc2efc9a50bcbc9096f Sha256: 7e5341915ce1bd9cc013d1804930d4947f57aa0f926235e6e7fbd89c6eb54b3d
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3763 Expires: Sat, 04 Feb 2023 06:17:27 GMT Date: Sat, 04 Feb 2023 05:14:44 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d719402de0cd695e55dab2767247da49 Sha1: f12f4795987a284820f6785ec16b5032b9861d79 Sha256: 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.77.32 HASH: 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba 23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3763 Expires: Sat, 04 Feb 2023 06:17:27 GMT Date: Sat, 04 Feb 2023 05:14:44 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d719402de0cd695e55dab2767247da49 Sha1: f12f4795987a284820f6785ec16b5032b9861d79 Sha256: 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 8ba7b6e9b3fa28f6fd27f5f006cedac10f50d7da6c109155a2476cf04f4df932 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8909 x-amzn-requestid: 29f57721-99ae-4927-b324-b0a40668e2f6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyDqqEPuIAMFqpg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd7fdd-156c25027894630b61e5770c;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 6-RtedWR4ubEBwe85bNcobzqb2Cy9aEUzyT3tlhJ95zD5SgiuS7coA== via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:11:43 GMT age: 25381 etag: "a0573916c3d72f0554928963c0a74413fdcb3558" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8909 Md5: a032104cf4ccc6ea31f163ca16386487 Sha1: a0573916c3d72f0554928963c0a74413fdcb3558 Sha256: 8ba7b6e9b3fa28f6fd27f5f006cedac10f50d7da6c109155a2476cf04f4df932
GET /assets/lander.js HTTP/1.1 Host: www.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.clickfunnels.com/assets/lander.js FQDN: www.clickfunnels.com IP: 104.18.39.181 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 104.18.39.181 HTTP/2 302 Found date: Sat, 04 Feb 2023 05:14:44 GMT content-length: 0 location: https://classic.clickfunnels.com/assets/lander.js set-cookie: __cf_bm=D2CEW53xG6u_7ekJHT.L48Z_6SrohmdNpjq5XYVFqOg-1675487684-0-ARn2d4vtoqQEkhojZo1le4izoIX23mPdDK31bWUsYh7oCT2bctRNtwAgQ8AGyU2mSXFnDi5t0cyGbGVGG51byF0=; path=/; expires=Sat, 04-Feb-23 05:44:44 GMT; domain=.www.clickfunnels.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare cf-ray: 7940eca9190fb4ee-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1 Host: use.fontawesome.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: use.fontawesome.com/releases/v5.9.0/css/v4-shims.css FQDN: use.fontawesome.com IP: 172.64.133.15 HASH: b980916055812ced1659b77ace148ab08662d096ed683a46afa1fc311b59bd52 172.64.133.15 HTTP/2 200 OK content-type: text/css date: Sat, 04 Feb 2023 05:14:43 GMT x-amz-id-2: Txapr/ufTkVDw/YvyQL0z+i3Z1k8XFYPX+D3ustfZuiEDXVNAbgfzDTZjdsppkN1G7zgmmIhcfc= x-amz-request-id: J2XW272F55Q8XMWG last-modified: Wed, 30 Jun 2021 15:48:06 GMT etag: W/"e140a7d32f343530f016095df3cc2ae4" cache-control: max-age=31556926 cf-cache-status: HIT age: 2591566 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=npl0eyohf8yHF9gedYIN6djvstRcNkcAypaLQW2kZgiISO8GP1aHfn0177pZyVtW0IzlaDzGuLsW7c3dXvdXEqhstkXDjgT88ep3YWibTz4OI1Ln%2BN6mlRJAHz8Ek1bgYRJJwcjG"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7940eca89ed223ec-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (26440) Size: 4690 Md5: 3f76b69507d985263b194b2d2a22340a Sha1: 4d93aac9421487896746d87c4f85cfb6302bcf6a Sha256: b980916055812ced1659b77ace148ab08662d096ed683a46afa1fc311b59bd52
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 216.58.211.3 HASH: b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d 216.58.211.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 05:14:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: c181c51a9326d56e60915a792c306c2c Sha1: de1cc0ce1384905e65a9fa9575743091d785e528 Sha256: b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9500 x-amzn-requestid: 8fe94388-e8d9-4329-b73a-e9a356df76bb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyD9QEA1IAMF3Ug= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8054-51f954ac4bec16d1055e38f5;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:52 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: FkTJ6wQ4eFYBPDyS0l5vLeWvHHiQIx-cYyFzT4ggHJ8M5Gg3dozFxQ== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 21:59:51 GMT age: 26093 etag: "bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9500 Md5: 3ac51fd6789cbe19c2d484c9022b0e39 Sha1: bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9 Sha256: 300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 13065 x-amzn-requestid: 20c6f462-0f1f-44d1-9b6b-6afbc4e79e8b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fpYpcELtIAMFvFg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63da07d5-44cd803c0feba28919b0a9ec;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 06:33:57 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: T3PhGRcHX1X2hn8K_4587fXBrEyuY5Em-b9Jg41uH4uyQXeFoRBIYg== via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 21:55:01 GMT age: 26383 etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13065 Md5: cf80667db0c35c9c6139eca4ba5d12fd Sha1: 4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590 Sha256: d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: b2d93ba6c0ed2c858d91afba1c81251afbffa41c779be2e9203994dcfb7bbc9d 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7249 x-amzn-requestid: 007ce521-ed5c-4074-a314-684ad0df2e22 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyD9GH5goAMF_ag= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8053-7060f02b767c90371991a190;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:51 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 5fTV_e56nzjiXo4Guu67WXDDvp3nrjB0Yfyy6ByjcDSx23J-8r0fmQ== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:10:21 GMT age: 25463 etag: "afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7249 Md5: d7afd5ce8fb9ec7b62e528bf97705e49 Sha1: afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3 Sha256: b2d93ba6c0ed2c858d91afba1c81251afbffa41c779be2e9203994dcfb7bbc9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 8463155faca74f13ec4500fed98289d8bfbdc4a989d1cb7580736018eadf1000 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7992 x-amzn-requestid: ba4f95d9-6081-4b34-955c-bbe8e7b2335c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyEEjGsdIAMF84w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8083-7666baa66ccdec9b5fec8736;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:39 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: A3c6sSs_b8KkREPa26a8X9NTEZpHGDjElR9hT-NXwg6dYpeuRNZXfA== via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:10:21 GMT age: 25463 etag: "a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7992 Md5: 65cd12302c9ca5468dbc9a98155970e0 Sha1: a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1 Sha256: 8463155faca74f13ec4500fed98289d8bfbdc4a989d1cb7580736018eadf1000
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5174 x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyD7EFAHIAMFQQQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:00:26 GMT age: 26058 etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5174 Md5: e5b4e4f15da3323c73974c3f1cdb5d74 Sha1: 1f14971d0cf979cc34ff191849dc43d86e8ac463 Sha256: 5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 7e5341915ce1bd9cc013d1804930d4947f57aa0f926235e6e7fbd89c6eb54b3d 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4236 Cache-Control: max-age=89453 Date: Sat, 04 Feb 2023 05:14:44 GMT Etag: "63dc93a5-117" Expires: Sun, 05 Feb 2023 06:05:37 GMT Last-Modified: Fri, 03 Feb 2023 04:55:01 GMT Server: ECS (ska/F6FD) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: b1bbf406e5d473071d96311ed8c8dd33 Sha1: bab2d439cc487bf682273fc2efc9a50bcbc9096f Sha256: 7e5341915ce1bd9cc013d1804930d4947f57aa0f926235e6e7fbd89c6eb54b3d
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 17b8d3d568b7ccdf1c9bd7dc334cb0610e07d12a34c0cb4d6b2e0e94e8b47069 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Cache-Control: max-age=171640 Date: Sat, 04 Feb 2023 05:14:44 GMT Etag: "63dde53c-118" Expires: Mon, 06 Feb 2023 04:55:24 GMT Last-Modified: Sat, 04 Feb 2023 04:55:24 GMT Server: nginx Content-Length: 280 --- Additional Info --- Magic: data Size: 280 Md5: d61d4aecbe6446a1b586aa3209deef29 Sha1: 248d12e0dd71e82b4a94ed61c6857203b2bec4a6 Sha256: 17b8d3d568b7ccdf1c9bd7dc334cb0610e07d12a34c0cb4d6b2e0e94e8b47069
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 216.58.211.3 HASH: da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034 216.58.211.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 05:14:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 23287a0337047631e479bb3cbe8b0fcd Sha1: 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 Sha256: da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 216.58.211.3 HASH: da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034 216.58.211.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 05:14:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 23287a0337047631e479bb3cbe8b0fcd Sha1: 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 Sha256: da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
GET /assets/lander.css HTTP/1.1 Host: classic.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://giveway033.blogspot.com/ Connection: keep-alive Cookie: __cf_bm=KDbmF.5bnbrlmgxx86YbuN1DSwcBF6TxbnSKtH0_CAg-1675487683-0-Ad/yhkCHzuzixqV0Ln1xdkqe1q0p4+azS5fc3ZaFOactAtMjxbJQrM7Xk1Uq8kWusOrWxEp1vigUIvbrck9U0lt028qXj1XNCrN93ikyQFWn Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: classic.clickfunnels.com/assets/lander.css FQDN: classic.clickfunnels.com IP: 104.16.13.194 HASH: 2bfbde883b1bbda19638916f8ad6c7f6e09a03b7b0a46afbfc3f654095c46f7d 104.16.13.194 HTTP/2 200 OK content-type: text/css date: Sat, 04 Feb 2023 05:14:44 GMT cf-ray: 7940eca9d98fb4ee-OSL access-control-allow-origin: * age: 341 cache-control: public, max-age=1200 etag: W/"63dbd64f-6a514" expires: Sat, 04 Feb 2023 05:34:44 GMT last-modified: Thu, 02 Feb 2023 15:27:11 GMT strict-transport-security: max-age=0 vary: Accept-Encoding cf-cache-status: HIT access-control-allow-credentials: true access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS access-control-max-age: 1728000 server: cloudflare content-encoding: br X-Firefox-Spdy: h2 --- Additional Info --- Magic: Unicode text, UTF-8 (with BOM) text, with very long lines (53232) Size: 107333 Md5: 5082b32833ca1018a11caf7593230580 Sha1: 7f73a00a146415e1be14d5992f4ab5033652a8ae Sha256: 2bfbde883b1bbda19638916f8ad6c7f6e09a03b7b0a46afbfc3f654095c46f7d
GET /s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://giveway033.blogspot.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2 FQDN: fonts.gstatic.com IP: 142.250.74.163 HASH: 9e64f128d5352d04ea5c87031e4cf1ad204b72a0afb003ece52eeb997d28a570 142.250.74.163 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 16348 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 30 Jan 2023 06:58:57 GMT expires: Tue, 30 Jan 2024 06:58:57 GMT cache-control: public, max-age=31536000 last-modified: Mon, 09 May 2022 18:31:32 GMT age: 425747 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 16348, version 1.0\012- data Size: 16348 Md5: 8dc707b4818131fab44d482b1db5d458 Sha1: 8a0ff82b12fa25391ce17a6ae069d7fe5002f12d Sha256: 9e64f128d5352d04ea5c87031e4cf1ad204b72a0afb003ece52eeb997d28a570
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 216.58.211.3 HASH: da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034 216.58.211.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 04 Feb 2023 05:14:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 23287a0337047631e479bb3cbe8b0fcd Sha1: 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 Sha256: da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
GET /9c/d401c04dd611e8980d75a6bf3090be/wood-back.jpg HTTP/1.1 Host: images.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Cookie: __cf_bm=KDbmF.5bnbrlmgxx86YbuN1DSwcBF6TxbnSKtH0_CAg-1675487683-0-Ad/yhkCHzuzixqV0Ln1xdkqe1q0p4+azS5fc3ZaFOactAtMjxbJQrM7Xk1Uq8kWusOrWxEp1vigUIvbrck9U0lt028qXj1XNCrN93ikyQFWn Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: images.clickfunnels.com/9c/d401c04dd611e8980d75a6bf3090 (...) FQDN: images.clickfunnels.com IP: 104.16.13.194 HASH: e22a004518cc431fc864ed0993cdd748019db57ce259b7c3191ed512fddeff18 104.16.13.194 HTTP/2 200 OK content-type: image/jpeg date: Sat, 04 Feb 2023 05:14:44 GMT content-length: 181655 x-amz-id-2: tDqeuMwp9HPy3YPz+5ca4ZekxWVjGp4lYYP5kE9en+AU+XRx7F8W/OTSUGgoU/Ff0mvH5N2t6n8= x-amz-request-id: NDNZZE6622GB3NVN last-modified: Wed, 02 May 2018 07:01:21 GMT etag: "d061e0ee35a6a30184bcdc53cb763464" cf-cache-status: MISS expires: Tue, 28 Feb 2023 05:14:44 GMT cache-control: public, max-age=2073600 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 7940ecaaba08b4ee-OSL X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2000x1272, components 3\012- data Size: 181655 Md5: d061e0ee35a6a30184bcdc53cb763464 Sha1: 5f92f55fbb4626ca7e0887b9264fbb79195abd8b Sha256: e22a004518cc431fc864ed0993cdd748019db57ce259b7c3191ed512fddeff18
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://giveway033.blogspot.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 FQDN: fonts.gstatic.com IP: 142.250.74.163 HASH: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 142.250.74.163 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 02 Feb 2023 03:13:04 GMT expires: Fri, 02 Feb 2024 03:13:04 GMT cache-control: public, max-age=31536000 age: 180100 last-modified: Wed, 11 May 2022 19:24:48 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size: 15744 Md5: 15d9f621c3bd1599f0169dcf0bd5e63e Sha1: 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://giveway033.blogspot.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4 (...) FQDN: fonts.gstatic.com IP: 142.250.74.163 HASH: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 142.250.74.163 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 29 Jan 2023 12:46:12 GMT expires: Mon, 29 Jan 2024 12:46:12 GMT cache-control: public, max-age=31536000 age: 491312 last-modified: Wed, 11 May 2022 19:24:42 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size: 15860 Md5: e9f5aaf547f165386cd313b995dddd8e Sha1: acdef5603c2387b0e5bffd744b679a24a8bc1968 Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /keen-tracking-1.0.3.min.js HTTP/1.1 Host: d26b395fwzu5fz.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: d26b395fwzu5fz.cloudfront.net/keen-tracking-1.0.3.min.js FQDN: d26b395fwzu5fz.cloudfront.net IP: 54.230.245.176 HASH: bc1391ed0a7a70a24988c0464202bcf2f8f1a5f4d1465c8d5552471b13b90fba 54.230.245.176 HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 8994 Connection: keep-alive Date: Sun, 11 Sep 2022 05:10:09 GMT Last-Modified: Thu, 31 Mar 2016 04:24:33 GMT ETag: "a6acb97120359c326c8f7775a5514f5d" Cache-Control: max-age=31536000000, public Content-Encoding: gzip Expires: Fri, 31 Mar 2017 04:24:29 GMT Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: ty6tQvoP36lqjlN4Ib86zpmTBsk7NcI2NOqAGIfd35nVYfaa0e_nrQ== Age: 12614676 --- Additional Info --- Magic: ASCII text, with very long lines (20564) Size: 8994 Md5: a6acb97120359c326c8f7775a5514f5d Sha1: db0ba6a113b2bf753933f2b5d3451e55d7184c2d Sha256: bc1391ed0a7a70a24988c0464202bcf2f8f1a5f4d1465c8d5552471b13b90fba
GET /images/closemodal.png HTTP/1.1 Host: assets.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Cookie: __cf_bm=KDbmF.5bnbrlmgxx86YbuN1DSwcBF6TxbnSKtH0_CAg-1675487683-0-Ad/yhkCHzuzixqV0Ln1xdkqe1q0p4+azS5fc3ZaFOactAtMjxbJQrM7Xk1Uq8kWusOrWxEp1vigUIvbrck9U0lt028qXj1XNCrN93ikyQFWn Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: assets.clickfunnels.com/images/closemodal.png FQDN: assets.clickfunnels.com IP: 104.16.13.194 HASH: 5216f197f782f4bb872e02a677986af90a488015910f8d3864b796ad68dbd389 104.16.13.194 HTTP/2 200 OK content-type: image/webp date: Sat, 04 Feb 2023 05:14:44 GMT content-length: 672 cf-ray: 7940ecae4b9db4ee-OSL accept-ranges: bytes access-control-allow-origin: * age: 55271 cache-control: public, max-age=2678400 content-disposition: inline; filename="closemodal.webp" etag: "63dbd64e-314" expires: Tue, 07 Mar 2023 05:14:44 GMT last-modified: Thu, 02 Feb 2023 15:27:10 GMT strict-transport-security: max-age=0 vary: Accept, Accept-Encoding cf-cache-status: HIT access-control-allow-credentials: true access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS access-control-max-age: 1728000 cf-bgj: imgq:100,h2pri cf-polished: origFmt=png, origSize=788 server: cloudflare X-Firefox-Spdy: h2 --- Additional Info --- Magic: RIFF (little-endian) data, Web/P image\012- data Size: 672 Md5: 19754ed4d508cf576c80cf36e0db8c50 Sha1: f459beac714e5be68aa75349fa806a5642af456a Sha256: 5216f197f782f4bb872e02a677986af90a488015910f8d3864b796ad68dbd389
GET /cdn-cgi/image/fit=scale-down,width=1100,quality=75/https://images.clickfunnels.com/25/359622a0f246f3bf1dc8d5201018fd/rr.png HTTP/1.1 Host: images.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Cookie: __cf_bm=KDbmF.5bnbrlmgxx86YbuN1DSwcBF6TxbnSKtH0_CAg-1675487683-0-Ad/yhkCHzuzixqV0Ln1xdkqe1q0p4+azS5fc3ZaFOactAtMjxbJQrM7Xk1Uq8kWusOrWxEp1vigUIvbrck9U0lt028qXj1XNCrN93ikyQFWn Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: images.clickfunnels.com/cdn-cgi/image/fit=scale-down,wi (...) FQDN: images.clickfunnels.com IP: 104.16.13.194 HASH: 631af758a847933d10708647a66e4dc0851e450f8a8070e8f3a8843d3595242b 104.16.13.194 HTTP/2 200 OK content-type: image/png date: Sat, 04 Feb 2023 05:14:44 GMT content-length: 3708 cf-ray: 7940ecae1b89b4ee-OSL accept-ranges: bytes cache-control: max-age=2073600 etag: "cfHt5sWAzQX6GCWbI6qI8D5tygVGDYLeeOe329FwKjDQ:33951935a02e1fe912c9730e0fe53157" last-modified: Sun, 13 Mar 2022 07:13:01 GMT vary: Accept, Accept-Encoding cf-cache-status: HIT cf-bgj: imgq:100,h2pri cf-resized: internal=ok/h q=0 n=32+0 c=0+9 v=2023.1.3 l=3708 content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none' x-content-type-options: nosniff server: cloudflare X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 240 x 190, 8-bit colormap, non-interlaced\012- data Size: 3708 Md5: 4d8bee577f468507c3e15ed90af92a23 Sha1: 8684cb91c53ad8fe7887659d876425c44eb4ab92 Sha256: 631af758a847933d10708647a66e4dc0851e450f8a8070e8f3a8843d3595242b
GET /cdn-cgi/image/fit=scale-down,width=525,quality=75/https://images.clickfunnels.com/e1/01732557a8495dae440ef867ac90d2/750.png HTTP/1.1 Host: images.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Cookie: __cf_bm=KDbmF.5bnbrlmgxx86YbuN1DSwcBF6TxbnSKtH0_CAg-1675487683-0-Ad/yhkCHzuzixqV0Ln1xdkqe1q0p4+azS5fc3ZaFOactAtMjxbJQrM7Xk1Uq8kWusOrWxEp1vigUIvbrck9U0lt028qXj1XNCrN93ikyQFWn Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: images.clickfunnels.com/cdn-cgi/image/fit=scale-down,wi (...) FQDN: images.clickfunnels.com IP: 104.16.13.194 HASH: 9bbd336e57798bc0c222eaf76622613b8de5d864e7c0bda82b95d0c6bce913d9 104.16.13.194 HTTP/2 200 OK content-type: image/png date: Sat, 04 Feb 2023 05:14:44 GMT content-length: 55104 cf-ray: 7940ecae1b88b4ee-OSL accept-ranges: bytes cache-control: max-age=2073600 etag: "cfm_7baTZo1pRXYLMChhZabuVDaVCHp4lle0D_wzXqDQ:55e31ea68c70c4a67ee1101514058fd0" last-modified: Tue, 08 Mar 2022 06:01:59 GMT vary: Accept, Accept-Encoding cf-cache-status: HIT cf-bgj: imgq:88,h2pri cf-resized: internal=ok/h q=0 n=41+0 c=5+55 v=2023.1.3 l=55104 content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none' x-content-type-options: nosniff server: cloudflare X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 525 x 262, 8-bit colormap, non-interlaced\012- data Size: 55104 Md5: e18efe51506b3caee665c0f28c0ac297 Sha1: 2242218edc7644c734f3716c18a226ee28d67336 Sha256: 9bbd336e57798bc0c222eaf76622613b8de5d864e7c0bda82b95d0c6bce913d9
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 6ae7dd185fcdefe9b37c93aa653badfdf20ff7536cb1d673253f9e1422158e55 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Cache-Control: 'max-age=158059' Date: Sat, 04 Feb 2023 05:14:45 GMT Etag: "63dc8873-118" Server: ECS (amb/6BB4) Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: b2a3e6f1b55f59446e2f2043dc9fefcd Sha1: 200d19c2994d1a3c6da4629d319704ac261ef025 Sha256: 6ae7dd185fcdefe9b37c93aa653badfdf20ff7536cb1d673253f9e1422158e55
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 6ae7dd185fcdefe9b37c93aa653badfdf20ff7536cb1d673253f9e1422158e55 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 1 Cache-Control: 'max-age=158059' Date: Sat, 04 Feb 2023 05:14:45 GMT Etag: "63dc8873-118" Last-Modified: Sat, 04 Feb 2023 05:14:45 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: b2a3e6f1b55f59446e2f2043dc9fefcd Sha1: 200d19c2994d1a3c6da4629d319704ac261ef025 Sha256: 6ae7dd185fcdefe9b37c93aa653badfdf20ff7536cb1d673253f9e1422158e55
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 54.230.245.100 HASH: 0cd9e7d06518051f5460bca834079207fc40ad4a6ab3b997a6350db01a177414 54.230.245.100 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=163487 Date: Sat, 04 Feb 2023 05:14:45 GMT Etag: "63ddc4bf-1d7" Expires: Mon, 06 Feb 2023 02:39:32 GMT Last-Modified: Sat, 04 Feb 2023 02:36:47 GMT Server: ECS (dcb/7F37) X-Cache: Miss from cloudfront Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: KRTuvW-qaLtfv0ZLI-3QoHnVYOhKEJpEFYLhog6HYJY3-i4QxqWUjQ== Age: 165 --- Additional Info --- Magic: data Size: 471 Md5: bbca01893a3a745a67527a2b0a84b3b3 Sha1: 02f173e227ee4c51dfa187ceceb299115230d86d Sha256: 0cd9e7d06518051f5460bca834079207fc40ad4a6ab3b997a6350db01a177414
GET /3.0/projects/58a35e6f8db53dfda8a87a67/events/survey_data_collector?api_key=E844E116CB12000A6B72AA691F8A2108E6BEBC97A05786370C6703C31E3A5FD4EDC7CC8012418A997621F11C2CFD95A9C1D64E6EF1850AFCC2B76E360F7BA3BC3BE6AEFCCFAAD87B19E1309B88378181E69436B7E01A38447184F2886A9D7AF9&data=eyJzdXJ2ZXlfaWQiOiI1MzU1NDg4OF90bXBfc3VydmV5LTg4ODI3IiwicGlkIjoicGFydGljaXBhbnRfaWk2NHUiLCJ0eXBlIjoic3RhcnRlZCJ9&modified=1675487719021&jsonp=keenJSONPCallback1675487719021 HTTP/1.1 Host: api.keen.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: api.keen.io/3.0/projects/58a35e6f8db53dfda8a87a67/event (...) FQDN: api.keen.io IP: 52.88.132.217 HASH: 8ca47806622af11de8a5d4cdfee2b1e09701176ac33ba7003d594a1f99eaf598 52.88.132.217 HTTP/2 200 OK content-type: application/json date: Sat, 04 Feb 2023 05:14:45 GMT content-length: 50 disposition: inline expires: Sat, 01 Jan 2000 01:01:01 GMT vary: Accept-Encoding server: TornadoServer/4.5.1 pragma: no-cache cache-control: private, no-cache, no-cache=Set-Cookie, max-age=0, s-maxage=0 access-control-allow-origin: * access-control-allow-headers: origin, content-type, accept, authorization, user-agent, keen-compute-source, keen-sdk, X-Keen-Discoveries-Token X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 50 Md5: 05706727b1e7f0ba64a5b47830b5e4c6 Sha1: b70a1757db61c38c83a17e7d7621bad68e3cd230 Sha256: 8ca47806622af11de8a5d4cdfee2b1e09701176ac33ba7003d594a1f99eaf598
GET /assets/lander.js HTTP/1.1 Host: classic.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://giveway033.blogspot.com/ Connection: keep-alive Cookie: __cf_bm=KDbmF.5bnbrlmgxx86YbuN1DSwcBF6TxbnSKtH0_CAg-1675487683-0-Ad/yhkCHzuzixqV0Ln1xdkqe1q0p4+azS5fc3ZaFOactAtMjxbJQrM7Xk1Uq8kWusOrWxEp1vigUIvbrck9U0lt028qXj1XNCrN93ikyQFWn Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: classic.clickfunnels.com/assets/lander.js FQDN: classic.clickfunnels.com IP: 104.16.13.194 104.16.13.194 HTTP/2 200 OK content-type: application/x-javascript date: Sat, 04 Feb 2023 05:14:44 GMT cf-ray: 7940eca96950b4ee-OSL access-control-allow-origin: * age: 341 cache-control: public, max-age=1200 etag: W/"63dbd6a4-239357" expires: Sat, 04 Feb 2023 05:34:44 GMT last-modified: Thu, 02 Feb 2023 15:28:36 GMT strict-transport-security: max-age=0 vary: Accept-Encoding cf-cache-status: HIT access-control-allow-credentials: true access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS access-control-max-age: 1728000 server: cloudflare content-encoding: br X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/userevents/application.js HTTP/1.1 Host: www.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.clickfunnels.com/assets/userevents/application.js FQDN: www.clickfunnels.com IP: 104.18.39.181 104.18.39.181 HTTP/2 404 Not Found content-type: text/html; charset=utf-8 date: Sat, 04 Feb 2023 05:14:44 GMT cf-ray: 7940eca8c8f4b4ee-OSL strict-transport-security: max-age=15724800; includeSubDomains vary: Accept, Origin, Accept-Encoding cf-cache-status: EXPIRED content-security-policy: frame-ancestors 'self' .reborncf.com .myclickfunnels.com; referrer-policy: strict-origin-when-cross-origin x-cf-header: 2.0 x-content-type-options: nosniff x-download-options: noopen x-permitted-cross-domain-policies: none x-request-id: 9b8151a95be849d920ee429fa928dabc x-runtime: 0.082983 x-xss-protection: 1; mode=block set-cookie: __cf_bm=ZsZv1oPIVRZJh25ltYOKb8SQWoj3ubuEWOv4Bdn4_zI-1675487684-0-Ab+2Dx+toHm3hVMCtqKN1KJ1mFGXH327Hx3EdbiB/D2Z66i+52Qsg0PbmCF5jbP/0Iv3QANl0nn3h5+KteB4/rA=; path=/; expires=Sat, 04-Feb-23 05:44:44 GMT; domain=.www.clickfunnels.com; HttpOnly; Secure; SameSite=None server: cloudflare content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info ---
GET /css?family=sans-serif%7CQuattrocento%7Csans-serif%7CQuattrocento%7Csans-serif%7COxygen%7C%7C HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=sans-serif%7CQuattrocen (...) FQDN: fonts.googleapis.com IP: 142.250.74.106 142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 04 Feb 2023 05:14:43 GMT date: Sat, 04 Feb 2023 05:14:43 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2 --- Additional Info ---
GET /cf.js HTTP/1.1 Host: app.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Cookie: __cf_bm=KDbmF.5bnbrlmgxx86YbuN1DSwcBF6TxbnSKtH0_CAg-1675487683-0-Ad/yhkCHzuzixqV0Ln1xdkqe1q0p4+azS5fc3ZaFOactAtMjxbJQrM7Xk1Uq8kWusOrWxEp1vigUIvbrck9U0lt028qXj1XNCrN93ikyQFWn Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: app.clickfunnels.com/cf.js FQDN: app.clickfunnels.com IP: 104.16.13.194 104.16.13.194 HTTP/2 301 Moved Permanently content-type: text/html date: Sat, 04 Feb 2023 05:14:44 GMT location: https://www.clickfunnels.com/cf.js cf-ray: 7940ecaceb13b4ee-OSL age: 308 strict-transport-security: max-age=0 vary: Accept-Encoding cf-cache-status: HIT server: cloudflare X-Firefox-Spdy: h2 --- Additional Info ---
GET /v1/track?_unique=0.2372298976540772&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//giveway033.blogspot.com/&_title=Cash%20Grab&_key=zxkf514&_page_key=nyq46n18ktg80yag&_fid=11341740&_fspos=5&_fvrs=1&_funnel_stat=0&_location=https://giveway033.blogspot.com/&_referrer= HTTP/1.1 Host: app.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://giveway033.blogspot.com Connection: keep-alive Referer: https://giveway033.blogspot.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: app.clickfunnels.com/v1/track?_unique=0.237229897654077 (...) FQDN: app.clickfunnels.com IP: 104.16.13.194 104.16.13.194 HTTP/2 200 OK content-type: text/javascript; charset=utf-8 date: Sat, 04 Feb 2023 05:14:44 GMT cf-ray: 7940ecae1b8bb4ee-OSL access-control-allow-origin: * cache-control: no-cache, no-store strict-transport-security: max-age=0 vary: Accept-Encoding cf-cache-status: BYPASS access-control-allow-credentials: true access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS access-control-max-age: 1728000 access-control-request-method: * status: 200 OK x-frame-options: ALLOWALL x-powered-by: Phusion Passenger Enterprise 6.0.7 x-rack-cache: miss x-request-id: 9dd202b2a391492ef04034ac4391bb13 x-runtime: 0.016195 set-cookie: __cf_bm=wb.kKo7CXpttkHkIAm4m9PUs_FmiFP.3ZqbkgN1iMNY-1675487684-0-AVFirDb4S2AAAX+KdTsE3Fkb1JCFZrj5XcWeBs4Dy+Y2hXGdbPhBaNAG/ZsgTnNHjkBzJfkxVXgKN4dOYAxbV+65QRAbg5gImGKYKMZlDklB; path=/; expires=Sat, 04-Feb-23 05:44:44 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None server: cloudflare content-encoding: br X-Firefox-Spdy: h2 --- Additional Info ---
GET /a/logo/Cash_App/Cash_App-Logo.wine.svg HTTP/1.1 Host: www.logo.wine User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.logo.wine/a/logo/Cash_App/Cash_App-Logo.wine.svg FQDN: www.logo.wine IP: 188.114.97.1 188.114.97.1 HTTP/2 200 OK content-type: image/svg+xml; charset=UTF-8 date: Sat, 04 Feb 2023 05:14:45 GMT x-oss-request-id: 624B79DC07183B313880C213 etag: W/"FFABEB6C7C760B02D43A5A13DFACC95D" last-modified: Thu, 23 Jan 2020 02:17:25 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 4156017056676619292 x-oss-storage-class: Standard cache-control: public, max-age=315360000 content-md5: /6vrbHx2CwLUOloT36zJXQ== x-oss-server-time: 8 cf-cache-status: HIT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4Uz%2BwXN3nH0x6r8RyDePHn68%2B6Q2rkROfAx8qONXrWcEpvDMp4VtQqTHGo%2FmYRYhGMXjHIhxCOdBdObr6wJcpBx9AaZhlUsgFVPBnx1d5BCs%2F%2FRnPhn3imojNilTXtO2"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7940ecaffa2cb4ed-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info ---
GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://giveway033.blogspot.com Connection: keep-alive Referer: https://giveway033.blogspot.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.cloudflareinsights.com/beacon.min.js/v652eace169 (...) FQDN: static.cloudflareinsights.com IP: 104.16.56.101 104.16.56.101 HTTP/2 200 OK content-type: text/javascript;charset=UTF-8 date: Sat, 04 Feb 2023 05:14:44 GMT access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/2021.12.0 last-modified: Fri, 21 Oct 2022 01:56:09 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 7940eca89d2eb51e-OSL content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=Open+Sans:400,700%7COsw (...) FQDN: fonts.googleapis.com IP: 142.250.74.106 142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 04 Feb 2023 05:14:43 GMT date: Sat, 04 Feb 2023 05:14:43 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/pushcrew.js HTTP/1.1 Host: app.clickfunnels.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: app.clickfunnels.com/assets/pushcrew.js FQDN: app.clickfunnels.com IP: 104.16.13.194 104.16.13.194 HTTP/2 200 OK content-type: application/x-javascript date: Sat, 04 Feb 2023 05:14:43 GMT cf-ray: 7940eca898dab4ee-OSL access-control-allow-origin: * age: 847 cache-control: public, max-age=1200 etag: W/"63dbd64e-27d" expires: Sat, 04 Feb 2023 05:34:43 GMT last-modified: Thu, 02 Feb 2023 15:27:10 GMT strict-transport-security: max-age=0 vary: Accept-Encoding cf-cache-status: HIT access-control-allow-credentials: true access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS access-control-max-age: 1728000 set-cookie: __cf_bm=KDbmF.5bnbrlmgxx86YbuN1DSwcBF6TxbnSKtH0_CAg-1675487683-0-Ad/yhkCHzuzixqV0Ln1xdkqe1q0p4+azS5fc3ZaFOactAtMjxbJQrM7Xk1Uq8kWusOrWxEp1vigUIvbrck9U0lt028qXj1XNCrN93ikyQFWn; path=/; expires=Sat, 04-Feb-23 05:44:43 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None server: cloudflare content-encoding: br X-Firefox-Spdy: h2 --- Additional Info ---
GET /releases/v5.9.0/css/all.css HTTP/1.1 Host: use.fontawesome.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://giveway033.blogspot.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: use.fontawesome.com/releases/v5.9.0/css/all.css FQDN: use.fontawesome.com IP: 172.64.133.15 172.64.133.15 HTTP/2 200 OK content-type: text/css date: Sat, 04 Feb 2023 05:14:43 GMT x-amz-id-2: Spb1ZB77j4xx9SPSBxVkz+CjkVoCLnNPzuJ++QEN6GU0QUbNz41ZYqgiLLYqu/ZVhzedx0ivXZk= x-amz-request-id: J2XHPWFP0DA0BC1A last-modified: Wed, 30 Jun 2021 15:48:06 GMT etag: W/"dbf9d822cefe851ba6f66e1ad57e8987" cache-control: max-age=31556926 cf-cache-status: HIT age: 2591566 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sPXa%2BZ05bvuZipj3svR76isw2KTFzMXHYkisRr7ZjgAsOZIfFxpv6eNC8%2F69A%2B16BaN5gzeREA5p%2FeUeAf4q97AICtd%2BA%2FdrqGWPpPNLL%2B0o5ijKSZ8GlfRyoQ6zXcq8AygDBWRM"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7940eca8aef323ec-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info ---

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF" 

                                        
                                            
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=16320 

                                        
                                            
Expires: Sat, 04 Feb 2023 09:46:41 GMT 

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:41 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    81713f952b51a865ad9764cde68e3fdb

                                                Sha1:   278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a

                                                Sha256: c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C" 

                                        
                                            
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=15983 

                                        
                                            
Expires: Sat, 04 Feb 2023 09:41:04 GMT 

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:41 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    7d2222d41721947297aaeb5a6e3d0714

                                                Sha1:   04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065

                                                Sha256: de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Sat, 04 Feb 2023 05:14:41 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-expose-headers: content-type 

                                        
                                            
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         35.241.9.150

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 329 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Sat, 04 Feb 2023 05:07:19 GMT 

                                        
                                            
age: 443 

                                        
                                            
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                        
                                            
etag: "1648230346554" 

                                        
                                            
cache-control: max-age=3600,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: 0dfMEKYKZRGzAbYNgp4TGQ== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket

                                         52.40.49.56

                                        
                                            HTTP/1.1 101 Switching Protocols

                                        

                                        
                                            
Connection: Upgrade 

                                        
                                            
Upgrade: websocket 

                                        
                                            
Sec-WebSocket-Accept: PI/oNQo4anM3LVZsFEb8q3480Oo= 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:43 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    8ed0aa8323e751dd1b26751a5bbc08b7

                                                Sha1:   1dc77046253b2642a7def68c7a7d33f4a4a47f47

                                                Sha256: 906f154760200d54a0409b9f229b3c2f8e9d96ca751e44228bb92c29468fd371

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:43 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    8ed0aa8323e751dd1b26751a5bbc08b7

                                                Sha1:   1dc77046253b2642a7def68c7a7d33f4a4a47f47

                                                Sha256: 906f154760200d54a0409b9f229b3c2f8e9d96ca751e44228bb92c29468fd371

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 4208 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:43 GMT 

                                        
                                            
Last-Modified: Sat, 04 Feb 2023 04:04:35 GMT 

                                        
                                            
Server: ECS (ska/F6FD) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 279 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   279

                                                Md5:    5adf2c0a4b0cb0102bb2a801db222019

                                                Sha1:   987b0d000fef5f238e256af039503019a60bb4f3

                                                Sha256: bc1467d19e8dea3983161468af524eb7c479b9e9e4f30df5f971f6816a8f4f85

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:43 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    c181c51a9326d56e60915a792c306c2c

                                                Sha1:   de1cc0ce1384905e65a9fa9575743091d785e528

                                                Sha256: b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 659 

                                        
                                            
Cache-Control: max-age=85877 

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:43 GMT 

                                        
                                            
Etag: "63dc93a5-117" 

                                        
                                            
Expires: Sun, 05 Feb 2023 05:06:00 GMT 

                                        
                                            
Last-Modified: Fri, 03 Feb 2023 04:55:01 GMT 

                                        
                                            
Server: ECS (amb/6B7F) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 279 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   279

                                                Md5:    b1bbf406e5d473071d96311ed8c8dd33

                                                Sha1:   bab2d439cc487bf682273fc2efc9a50bcbc9096f

                                                Sha256: 7e5341915ce1bd9cc013d1804930d4947f57aa0f926235e6e7fbd89c6eb54b3d

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.77.32

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" 

                                        
                                            
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3763 

                                        
                                            
Expires: Sat, 04 Feb 2023 06:17:27 GMT 

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:44 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    d719402de0cd695e55dab2767247da49

                                                Sha1:   f12f4795987a284820f6785ec16b5032b9861d79

                                                Sha256: 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

                                        
                                            GET /assets/lander.js HTTP/1.1 

                                        
                                            
Host: www.clickfunnels.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://giveway033.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         104.18.39.181

                                        
                                            HTTP/2 302 Found

                                        

                                        
                                            
date: Sat, 04 Feb 2023 05:14:44 GMT 

                                        
                                            
content-length: 0 

                                        
                                            
location: https://classic.clickfunnels.com/assets/lander.js 

                                        
                                            
set-cookie: __cf_bm=D2CEW53xG6u_7ekJHT.L48Z_6SrohmdNpjq5XYVFqOg-1675487684-0-ARn2d4vtoqQEkhojZo1le4izoIX23mPdDK31bWUsYh7oCT2bctRNtwAgQ8AGyU2mSXFnDi5t0cyGbGVGG51byF0=; path=/; expires=Sat, 04-Feb-23 05:44:44 GMT; domain=.www.clickfunnels.com; HttpOnly; Secure; SameSite=None 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 7940eca9190fb4ee-OSL 

                                        
                                            
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:44 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    c181c51a9326d56e60915a792c306c2c

                                                Sha1:   de1cc0ce1384905e65a9fa9575743091d785e528

                                                Sha256: b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 13065 

                                        
                                            
x-amzn-requestid: 20c6f462-0f1f-44d1-9b6b-6afbc4e79e8b 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: fpYpcELtIAMFvFg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63da07d5-44cd803c0feba28919b0a9ec;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Wed, 01 Feb 2023 06:33:57 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: T3PhGRcHX1X2hn8K_4587fXBrEyuY5Em-b9Jg41uH4uyQXeFoRBIYg== 

                                        
                                            
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Fri, 03 Feb 2023 21:55:01 GMT 

                                        
                                            
age: 26383 

                                        
                                            
etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   13065

                                                Md5:    cf80667db0c35c9c6139eca4ba5d12fd

                                                Sha1:   4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590

                                                Sha256: d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 7992 

                                        
                                            
x-amzn-requestid: ba4f95d9-6081-4b34-955c-bbe8e7b2335c 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: fyEEjGsdIAMF84w= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63dd8083-7666baa66ccdec9b5fec8736;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:39 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: A3c6sSs_b8KkREPa26a8X9NTEZpHGDjElR9hT-NXwg6dYpeuRNZXfA== 

                                        
                                            
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Fri, 03 Feb 2023 22:10:21 GMT 

                                        
                                            
age: 25463 

                                        
                                            
etag: "a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   7992

                                                Md5:    65cd12302c9ca5468dbc9a98155970e0

                                                Sha1:   a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1

                                                Sha256: 8463155faca74f13ec4500fed98289d8bfbdc4a989d1cb7580736018eadf1000

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 4236 

                                        
                                            
Cache-Control: max-age=89453 

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:44 GMT 

                                        
                                            
Etag: "63dc93a5-117" 

                                        
                                            
Expires: Sun, 05 Feb 2023 06:05:37 GMT 

                                        
                                            
Last-Modified: Fri, 03 Feb 2023 04:55:01 GMT 

                                        
                                            
Server: ECS (ska/F6FD) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 279 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   279

                                                Md5:    b1bbf406e5d473071d96311ed8c8dd33

                                                Sha1:   bab2d439cc487bf682273fc2efc9a50bcbc9096f

                                                Sha256: 7e5341915ce1bd9cc013d1804930d4947f57aa0f926235e6e7fbd89c6eb54b3d

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:44 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    23287a0337047631e479bb3cbe8b0fcd

                                                Sha1:   15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99

                                                Sha256: da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034

                                        
                                            GET /assets/lander.css HTTP/1.1 

                                        
                                            
Host: classic.clickfunnels.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://giveway033.blogspot.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: __cf_bm=KDbmF.5bnbrlmgxx86YbuN1DSwcBF6TxbnSKtH0_CAg-1675487683-0-Ad/yhkCHzuzixqV0Ln1xdkqe1q0p4+azS5fc3ZaFOactAtMjxbJQrM7Xk1Uq8kWusOrWxEp1vigUIvbrck9U0lt028qXj1XNCrN93ikyQFWn 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         104.16.13.194

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css

                                        

                                        
                                            
date: Sat, 04 Feb 2023 05:14:44 GMT 

                                        
                                            
cf-ray: 7940eca9d98fb4ee-OSL 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
age: 341 

                                        
                                            
cache-control: public, max-age=1200 

                                        
                                            
etag: W/"63dbd64f-6a514" 

                                        
                                            
expires: Sat, 04 Feb 2023 05:34:44 GMT 

                                        
                                            
last-modified: Thu, 02 Feb 2023 15:27:11 GMT 

                                        
                                            
strict-transport-security: max-age=0 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization 

                                        
                                            
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS 

                                        
                                            
access-control-max-age: 1728000 

                                        
                                            
server: cloudflare 

                                        
                                            
content-encoding: br 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (53232)

                                                Size:   107333

                                                Md5:    5082b32833ca1018a11caf7593230580

                                                Sha1:   7f73a00a146415e1be14d5992f4ab5033652a8ae

                                                Sha256: 2bfbde883b1bbda19638916f8ad6c7f6e09a03b7b0a46afbfc3f654095c46f7d

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         216.58.211.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:44 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    23287a0337047631e479bb3cbe8b0fcd

                                                Sha1:   15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99

                                                Sha256: da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034

                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://giveway033.blogspot.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://fonts.googleapis.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         142.250.74.163

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/woff2

                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 15744 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Thu, 02 Feb 2023 03:13:04 GMT 

                                        
                                            
expires: Fri, 02 Feb 2024 03:13:04 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 180100 

                                        
                                            
last-modified: Wed, 11 May 2022 19:24:48 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data

                                                Size:   15744

                                                Md5:    15d9f621c3bd1599f0169dcf0bd5e63e

                                                Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52

                                                Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

                                        
                                            GET /keen-tracking-1.0.3.min.js HTTP/1.1 

                                        
                                            
Host: d26b395fwzu5fz.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://giveway033.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         54.230.245.176

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Content-Length: 8994 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Date: Sun, 11 Sep 2022 05:10:09 GMT 

                                        
                                            
Last-Modified: Thu, 31 Mar 2016 04:24:33 GMT 

                                        
                                            
ETag: "a6acb97120359c326c8f7775a5514f5d" 

                                        
                                            
Cache-Control: max-age=31536000000, public 

                                        
                                            
Content-Encoding: gzip 

                                        
                                            
Expires: Fri, 31 Mar 2017 04:24:29 GMT 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-P1 

                                        
                                            
X-Amz-Cf-Id: ty6tQvoP36lqjlN4Ib86zpmTBsk7NcI2NOqAGIfd35nVYfaa0e_nrQ== 

                                        
                                            
Age: 12614676 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (20564)

                                                Size:   8994

                                                Md5:    a6acb97120359c326c8f7775a5514f5d

                                                Sha1:   db0ba6a113b2bf753933f2b5d3451e55d7184c2d

                                                Sha256: bc1391ed0a7a70a24988c0464202bcf2f8f1a5f4d1465c8d5552471b13b90fba

                                        
                                            GET /cdn-cgi/image/fit=scale-down,width=1100,quality=75/https://images.clickfunnels.com/25/359622a0f246f3bf1dc8d5201018fd/rr.png HTTP/1.1 

                                        
                                            
Host: images.clickfunnels.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://giveway033.blogspot.com/ 

                                        
                                            
Cookie: __cf_bm=KDbmF.5bnbrlmgxx86YbuN1DSwcBF6TxbnSKtH0_CAg-1675487683-0-Ad/yhkCHzuzixqV0Ln1xdkqe1q0p4+azS5fc3ZaFOactAtMjxbJQrM7Xk1Uq8kWusOrWxEp1vigUIvbrck9U0lt028qXj1XNCrN93ikyQFWn 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         104.16.13.194

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
date: Sat, 04 Feb 2023 05:14:44 GMT 

                                        
                                            
content-length: 3708 

                                        
                                            
cf-ray: 7940ecae1b89b4ee-OSL 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
cache-control: max-age=2073600 

                                        
                                            
etag: "cfHt5sWAzQX6GCWbI6qI8D5tygVGDYLeeOe329FwKjDQ:33951935a02e1fe912c9730e0fe53157" 

                                        
                                            
last-modified: Sun, 13 Mar 2022 07:13:01 GMT 

                                        
                                            
vary: Accept, Accept-Encoding 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
cf-bgj: imgq:100,h2pri 

                                        
                                            
cf-resized: internal=ok/h q=0 n=32+0 c=0+9 v=2023.1.3 l=3708 

                                        
                                            
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none' 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: cloudflare 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 240 x 190, 8-bit colormap, non-interlaced\012- data

                                                Size:   3708

                                                Md5:    4d8bee577f468507c3e15ed90af92a23

                                                Sha1:   8684cb91c53ad8fe7887659d876425c44eb4ab92

                                                Sha256: 631af758a847933d10708647a66e4dc0851e450f8a8070e8f3a8843d3595242b

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:45 GMT 

                                        
                                            
Etag: "63dc8873-118" 

                                        
                                            
Server: ECS (amb/6BB4) 

                                        
                                            
Content-Length: 279 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   279

                                                Md5:    b2a3e6f1b55f59446e2f2043dc9fefcd

                                                Sha1:   200d19c2994d1a3c6da4629d319704ac261ef025

                                                Sha256: 6ae7dd185fcdefe9b37c93aa653badfdf20ff7536cb1d673253f9e1422158e55

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         54.230.245.100

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: max-age=163487 

                                        
                                            
Date: Sat, 04 Feb 2023 05:14:45 GMT 

                                        
                                            
Etag: "63ddc4bf-1d7" 

                                        
                                            
Expires: Mon, 06 Feb 2023 02:39:32 GMT 

                                        
                                            
Last-Modified: Sat, 04 Feb 2023 02:36:47 GMT 

                                        
                                            
Server: ECS (dcb/7F37) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-P1 

                                        
                                            
X-Amz-Cf-Id: KRTuvW-qaLtfv0ZLI-3QoHnVYOhKEJpEFYLhog6HYJY3-i4QxqWUjQ== 

                                        
                                            
Age: 165 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    bbca01893a3a745a67527a2b0a84b3b3

                                                Sha1:   02f173e227ee4c51dfa187ceceb299115230d86d

                                                Sha256: 0cd9e7d06518051f5460bca834079207fc40ad4a6ab3b997a6350db01a177414

                                        
                                            GET /assets/lander.js HTTP/1.1 

                                        
                                            
Host: classic.clickfunnels.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://giveway033.blogspot.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: __cf_bm=KDbmF.5bnbrlmgxx86YbuN1DSwcBF6TxbnSKtH0_CAg-1675487683-0-Ad/yhkCHzuzixqV0Ln1xdkqe1q0p4+azS5fc3ZaFOactAtMjxbJQrM7Xk1Uq8kWusOrWxEp1vigUIvbrck9U0lt028qXj1XNCrN93ikyQFWn 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         104.16.13.194

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/x-javascript

                                        

                                        
                                            
date: Sat, 04 Feb 2023 05:14:44 GMT 

                                        
                                            
cf-ray: 7940eca96950b4ee-OSL 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
age: 341 

                                        
                                            
cache-control: public, max-age=1200 

                                        
                                            
etag: W/"63dbd6a4-239357" 

                                        
                                            
expires: Sat, 04 Feb 2023 05:34:44 GMT 

                                        
                                            
last-modified: Thu, 02 Feb 2023 15:28:36 GMT 

                                        
                                            
strict-transport-security: max-age=0 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization 

                                        
                                            
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS 

                                        
                                            
access-control-max-age: 1728000 

                                        
                                            
server: cloudflare 

                                        
                                            
content-encoding: br 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /css?family=sans-serif%7CQuattrocento%7Csans-serif%7CQuattrocento%7Csans-serif%7COxygen%7C%7C HTTP/1.1 

                                        
                                            
Host: fonts.googleapis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://giveway033.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.106

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
expires: Sat, 04 Feb 2023 05:14:43 GMT 

                                        
                                            
date: Sat, 04 Feb 2023 05:14:43 GMT 

                                        
                                            
cache-control: private, max-age=86400 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups 

                                        
                                            
content-encoding: gzip 

                                        
                                            
server: ESF 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /v1/track?_unique=0.2372298976540772&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//giveway033.blogspot.com/&_title=Cash%20Grab&_key=zxkf514&_page_key=nyq46n18ktg80yag&_fid=11341740&_fspos=5&_fvrs=1&_funnel_stat=0&_location=https://giveway033.blogspot.com/&_referrer= HTTP/1.1 

                                        
                                            
Host: app.clickfunnels.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://giveway033.blogspot.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://giveway033.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         104.16.13.194

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript; charset=utf-8

                                        

                                        
                                            
date: Sat, 04 Feb 2023 05:14:44 GMT 

                                        
                                            
cf-ray: 7940ecae1b8bb4ee-OSL 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
cache-control: no-cache, no-store 

                                        
                                            
strict-transport-security: max-age=0 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
cf-cache-status: BYPASS 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization 

                                        
                                            
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS 

                                        
                                            
access-control-max-age: 1728000 

                                        
                                            
access-control-request-method: * 

                                        
                                            
status: 200 OK 

                                        
                                            
x-frame-options: ALLOWALL 

                                        
                                            
x-powered-by: Phusion Passenger Enterprise 6.0.7 

                                        
                                            
x-rack-cache: miss 

                                        
                                            
x-request-id: 9dd202b2a391492ef04034ac4391bb13 

                                        
                                            
x-runtime: 0.016195 

                                        
                                            
set-cookie: __cf_bm=wb.kKo7CXpttkHkIAm4m9PUs_FmiFP.3ZqbkgN1iMNY-1675487684-0-AVFirDb4S2AAAX+KdTsE3Fkb1JCFZrj5XcWeBs4Dy+Y2hXGdbPhBaNAG/ZsgTnNHjkBzJfkxVXgKN4dOYAxbV+65QRAbg5gImGKYKMZlDklB; path=/; expires=Sat, 04-Feb-23 05:44:44 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None 

                                        
                                            
server: cloudflare 

                                        
                                            
content-encoding: br 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1 

                                        
                                            
Host: static.cloudflareinsights.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://giveway033.blogspot.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://giveway033.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         104.16.56.101

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript;charset=UTF-8

                                        

                                        
                                            
date: Sat, 04 Feb 2023 05:14:44 GMT 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
cache-control: public, max-age=86400 

                                        
                                            
etag: W/2021.12.0 

                                        
                                            
last-modified: Fri, 21 Oct 2022 01:56:09 GMT 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
server: cloudflare 

                                        
                                            
cf-ray: 7940eca89d2eb51e-OSL 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /assets/pushcrew.js HTTP/1.1 

                                        
                                            
Host: app.clickfunnels.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://giveway033.blogspot.com/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         104.16.13.194

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/x-javascript

                                        

                                        
                                            
date: Sat, 04 Feb 2023 05:14:43 GMT 

                                        
                                            
cf-ray: 7940eca898dab4ee-OSL 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
age: 847 

                                        
                                            
cache-control: public, max-age=1200 

                                        
                                            
etag: W/"63dbd64e-27d" 

                                        
                                            
expires: Sat, 04 Feb 2023 05:34:43 GMT 

                                        
                                            
last-modified: Thu, 02 Feb 2023 15:27:10 GMT 

                                        
                                            
strict-transport-security: max-age=0 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
cf-cache-status: HIT 

                                        
                                            
access-control-allow-credentials: true 

                                        
                                            
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization 

                                        
                                            
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS 

                                        
                                            
access-control-max-age: 1728000 

                                        
                                            
set-cookie: __cf_bm=KDbmF.5bnbrlmgxx86YbuN1DSwcBF6TxbnSKtH0_CAg-1675487683-0-Ad/yhkCHzuzixqV0Ln1xdkqe1q0p4+azS5fc3ZaFOactAtMjxbJQrM7Xk1Uq8kWusOrWxEp1vigUIvbrck9U0lt028qXj1XNCrN93ikyQFWn; path=/; expires=Sat, 04-Feb-23 05:44:43 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None 

                                        
                                            
server: cloudflare 

                                        
                                            
content-encoding: br 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

URL	giveway033.blogspot.com.ee/
IP	142.250.74.1 (United States)
ASN	#15169 GOOGLE
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2023-02-04 05:14:52 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	2
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (23)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.1

Last 5 reports on ASN: GOOGLE

Last 1 reports on domain: giveway033.blogspot.com.ee

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (18)

Executed Evals (2)

#1 JavaScript::Eval (size: 119) - SHA256: c86f169f0657c6b92313fe640219830c515fbe6ac9107b6fb87e43c97faf8deb

#2 JavaScript::Eval (size: 20304) - SHA256: 9c1ea695852f01d2fc6027d572b126b740a9c4634540fb0d39ea3656377eef77

Executed Writes (0)

HTTP Transactions (59)

Overview

Domain Summary (23)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 142.250.74.1

Last 5 reports on ASN: GOOGLE

Last 1 reports on domain: giveway033.blogspot.com.ee

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (18)

Executed Evals (2)

#1 JavaScript::Eval (size: 119) - SHA256: c86f169f0657c6b92313fe640219830c515fbe6ac9107b6fb87e43c97faf8deb

#2 JavaScript::Eval (size: 20304) - SHA256: 9c1ea695852f01d2fc6027d572b126b740a9c4634540fb0d39ea3656377eef77

Executed Writes (0)

HTTP Transactions (59)

Network Intrusion Detection Systems