r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ede732d48f2c32ad5e3b899bb4348df9
15fa12733818b3ae39f3022a715ed0f431b28242
446c9bf6bc38a43f5758f6f44f89ad76eff44eb8779cf7e62bbfeb002b298dee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "446C9BF6BC38A43F5758F6F44F89AD76EFF44EB8779CF7E62BBFEB002B298DEE"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3267
Expires: Fri, 23 Dec 2022 02:31:13 GMT
Date: Fri, 23 Dec 2022 01:36:46 GMT
Connection: keep-alive
acceleratorcoachingprogram.com/sources/fb0ac7a39a41a8fdd95677c00ba36e06/rlhq4e39b1ucrq94vgwxdqc5.php
302 Found 43 B URL HTTP/1.1 acceleratorcoachingprogram.com/sources/fb0ac7a39a41a8fdd95677c00ba36e06/rlhq4e39b1ucrq94vgwxdqc5.php
IP
File type HTML document, ASCII text
Hash 0db24077ceaad0cc7bbf43dbf6142ffa
b2f6bdc65ed452f01990af59a29db2e861e7b395
b4d0833c01310c63d9920a52d5c6ea972feaac495835d3d2bc6bbe7f561a9724
Analyzer Verdict Alert fortinet Phishing
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
GET /sources/fb0ac7a39a41a8fdd95677c00ba36e06/rlhq4e39b1ucrq94vgwxdqc5.php HTTP/1.1
Host: acceleratorcoachingprogram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 23 Dec 2022 01:36:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 43
Connection: keep-alive
Location: https://frnation.com
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d6a971d765338f107fe9d2c67fa4bbdf
a72bdf191446a37fa0420cc9d7c087aaff757cd6
dc5291c136b0b81621a02679a31f6b7c852e2803429d54c2a9afcc8edf031328
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DC5291C136B0B81621A02679A31F6B7C852E2803429D54C2A9AFCC8EDF031328"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4448
Expires: Fri, 23 Dec 2022 02:50:54 GMT
Date: Fri, 23 Dec 2022 01:36:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 32167242c3bbe7e45a2a865279df94a6
d03436f418ff77d50a553daa892c05e0725ba908
d5578d537296da18f3f349a98465e9fe930dca60a8ed62c183e9c9f6eb53f493
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5578D537296DA18F3F349A98465E9FE930DCA60A8ED62C183E9C9F6EB53F493"
Last-Modified: Wed, 21 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6275
Expires: Fri, 23 Dec 2022 03:21:21 GMT
Date: Fri, 23 Dec 2022 01:36:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 23 Dec 2022 00:46:05 GMT
content-type: application/json
age: 3041
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IMFhGWSNMEPhOwNIp8tFtrIpnfiecNNdNt4JoEASnY18ltRqf4xt6V5jto9Myb3nCLJUfu5+4kK7QfswD05xyA==
x-amz-request-id: 420N9SK67TTKF878
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Dec 2022 00:53:52 GMT
age: 2574
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Dec 2022 01:36:46 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 23 Dec 2022 01:33:24 GMT
age: 202
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 70a7b165f99b2b8fa0dc98318a7158d7
4d924f7febab9c8fe3fe9199e8879fd6ad892575
c5e0e414c34f2f328b487ae72b21a12a1b50d952aa1a31fb6314b4e700d27e05
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3826
Cache-Control: max-age=117229
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:47 GMT
Etag: "63a41e2a-1d7"
Expires: Sat, 24 Dec 2022 10:10:36 GMT
Last-Modified: Thu, 22 Dec 2022 09:06:50 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KafylcRR1VL567QJACjxdw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Z8ncHOXKLVhi9nNHAD/1ySAc6JQ=
ocsp.digicert.com/
200 OK 280 B IP
Hash 2ad46fcf0d5e69ee9a3709d7b4a13708
b529930dad6decd0482c8af506aa8aeaca71eef6
2d67e93160eb28c2e4534bb70b7b6586fc15181c3943d5cea7921322a1698c8b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5966
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:47 GMT
Etag: "63a4af13-118"
Last-Modified: Thu, 22 Dec 2022 23:57:22 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b607f3e2facf61a8586563ae137d81eb
fc07f3f509b1a8f592efe951cc92bc07f307609d
68fef95cdc9deeb6a115e2869f3420a1e62dc7a64fd270f84c437bcc04642cd2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b4064cd37eb4b1ac411189b0a7427ab4
23d775267bf9350ab08b1b28580ee5593b146d61
dc9c41cc8379d77eaba4bccb038ccd4e3b9cde1571cfe0e102c91b01881e239f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
frnation.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.1
200 OK 870 B URL HTTP/2 frnation.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.1
IP
Hash db1891276028bf4b41d1e27e86517147
00b1fb3f26fd4b31d4ea0bf6ef5fb87e7a643d74
9351dbbea3e724e73cde04476a06a98a726c0b341c4cbe4a40354c4752494e5d
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.1 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: text/css
last-modified: Sat, 17 Dec 2022 01:11:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 870
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/css/style.css?ver=6.0.3
200 OK 3.1 kB URL HTTP/2 frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/css/style.css?ver=6.0.3
IP
File type ASCII text, with very long lines (532)
Hash 9b0959b3d28c6bcdc216e5d9f367f1fc
2d3ba1cee27f858265d031e2b8a5c221d46d23fe
e99c213878cc7feffae00493f6cf8d9f45e8bb155a9cdec6b754cc98ae694ad0
GET /wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/css/style.css?ver=6.0.3 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: text/css
last-modified: Fri, 28 Oct 2022 01:11:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3067
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/css/style.css?ver=1.0.9
200 OK 10 kB URL HTTP/2 frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/css/style.css?ver=1.0.9
IP
File type ASCII text, with very long lines (1119)
Hash 7a313fde1f4086a57a5006c564651a89
2be84664b6fdca87ae43bcfc201c9eef4e1c5ce4
5b9740f6cc725a5b8f8a3073cda50bbbb23ff9bf0adeff5b384885deddd9deef
GET /wp-content/plugins/infusionsoft-official-opt-in-forms/css/style.css?ver=1.0.9 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: text/css
last-modified: Fri, 28 Oct 2022 01:11:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10433
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/responsive-youtube-vimeo-popup/assets/css/wp-video-popup.css?ver=2.9.4
200 OK 291 B URL HTTP/2 frnation.com/wp-content/plugins/responsive-youtube-vimeo-popup/assets/css/wp-video-popup.css?ver=2.9.4
IP
File type ASCII text, with very long lines (849)
Hash a7101821d1382f327e5222da577bb88a
aeaa986be38bbe741f38b281b0d05b4c01b6ebf4
01583c9b563ae225c238e265f158870dacae2dc356697abb384c6132c0af8bf8
GET /wp-content/plugins/responsive-youtube-vimeo-popup/assets/css/wp-video-popup.css?ver=2.9.4 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: text/css
last-modified: Sat, 12 Nov 2022 01:11:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 291
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/popups-for-divi/styles/front.min.css?ver=3.0.5
200 OK 1.5 kB URL HTTP/2 frnation.com/wp-content/plugins/popups-for-divi/styles/front.min.css?ver=3.0.5
IP
File type ASCII text, with very long lines (7327), with no line terminators
Hash cf6dadf9dd1cd472e49afc687b24e512
d7a7d49389db20338ba83321cb6069889eabbabf
993a1a37f7649745a9d4902dea6cefb67dd04d18b3adc1fe8a5176030a762313
GET /wp-content/plugins/popups-for-divi/styles/front.min.css?ver=3.0.5 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: text/css
last-modified: Mon, 27 Jun 2022 10:59:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1494
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/et-cache/15978/et-divi-dynamic-tb-16032-15978.css?ver=1671328686
200 OK 2.4 kB URL HTTP/2 frnation.com/wp-content/et-cache/15978/et-divi-dynamic-tb-16032-15978.css?ver=1671328686
IP
File type ASCII text, with very long lines (14024)
Hash 25f22043f1d5c6f20c4af5aca206d40d
9ab90637219de106eaed9b2ac69908469e10ef62
fc22acad358add11c0513d5819f1dca4eb4ccffbd280e9e1c44b5cbb8a1a0eff
GET /wp-content/et-cache/15978/et-divi-dynamic-tb-16032-15978.css?ver=1671328686 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: text/css
last-modified: Sun, 18 Dec 2022 01:58:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2383
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 2ad46fcf0d5e69ee9a3709d7b4a13708
b529930dad6decd0482c8af506aa8aeaca71eef6
2d67e93160eb28c2e4534bb70b7b6586fc15181c3943d5cea7921322a1698c8b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1251
Cache-Control: max-age=151750
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:47 GMT
Etag: "63a4af13-118"
Expires: Sat, 24 Dec 2022 19:45:57 GMT
Last-Modified: Thu, 22 Dec 2022 19:25:07 GMT
Server: ECS (amb/6B8D)
X-Cache: HIT
Content-Length: 280
www.googletagmanager.com/gtag/js?id=UA-66677749-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-66677749-1
IP
File type ASCII text, with very long lines (1921)
Hash 14816fc832b79496290183472f94cc22
90871fefe0e99085a5d193d70c8cfc5bc36a596d
d5d141e995f1221c325c10109b2afbf2b22302d41c2aff571916aadc45144789
GET /gtag/js?id=UA-66677749-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Dec 2022 01:36:47 GMT
expires: Fri, 23 Dec 2022 01:36:47 GMT
cache-control: private, max-age=900
last-modified: Fri, 23 Dec 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43656
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 690ad01d9f8809ab1eb2eb7a3e858a72
f74bb20b9e6c78db6e150dfcb232126ecd337b69
194f54259ca4f35939ef4ceeddbccdb5781054717753c07ddd596207c46b2a1f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4982
Cache-Control: max-age=124491
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:47 GMT
Etag: "63a43604-116"
Expires: Sat, 24 Dec 2022 12:11:38 GMT
Last-Modified: Thu, 22 Dec 2022 10:48:36 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 29d3696d17220dcd271363e420d6d592
16fb6e6352605346ddca3f28e69ed5e3b3980057
3a5946f894fc0ec400905c1a88a943fb60b5170dc0fc6946c13f800964af79d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b607f3e2facf61a8586563ae137d81eb
fc07f3f509b1a8f592efe951cc92bc07f307609d
68fef95cdc9deeb6a115e2869f3420a1e62dc7a64fd270f84c437bcc04642cd2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b4064cd37eb4b1ac411189b0a7427ab4
23d775267bf9350ab08b1b28580ee5593b146d61
dc9c41cc8379d77eaba4bccb038ccd4e3b9cde1571cfe0e102c91b01881e239f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
frnation.com/wp-content/plugins/optimizePressPlugin/lib/assets/default.min.css?ver=2.5.22
200 OK 54 kB URL HTTP/2 frnation.com/wp-content/plugins/optimizePressPlugin/lib/assets/default.min.css?ver=2.5.22
IP
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 879247c844d252c6cd1c9b295251aaa1
25cd18c80cb0991fcc8f79f727980c8d62d5654f
3166d9334e9051f61e6a83af88a4ff1d5575b324058f268ce3755d7b48d3654f
GET /wp-content/plugins/optimizePressPlugin/lib/assets/default.min.css?ver=2.5.22 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: text/css
last-modified: Tue, 15 Feb 2022 08:36:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 54105
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/themes/Divi%20Child/style.css?ver=4.19.4
200 OK 3.9 kB URL HTTP/2 frnation.com/wp-content/themes/Divi%20Child/style.css?ver=4.19.4
IP
File type ASCII text, with very long lines (314)
Hash e0d5ffdd7f12ef5ca082aca574b049d2
4527ad2b02983e668395299fadc70128ab973eaf
ec97a507db69d48fcd13c75726ff2b35d4e1958e75f9a3293d2cad979d7dad93
GET /wp-content/themes/Divi%20Child/style.css?ver=4.19.4 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: text/css
last-modified: Fri, 09 Dec 2022 20:57:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3942
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?onload=onloadInfusionRecaptchaCallback&render=explicit
200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?onload=onloadInfusionRecaptchaCallback&render=explicit
IP
File type ASCII text, with very long lines (926), with no line terminators
Hash c06d810739c560ee4076463b30a84862
25b749b8277b4606c3eae21f4844c3ffdc3f69bd
dbfc62772ff8770a7dc60e954560c4a4f25f2adbba570babe22f61ae9fca53a8
GET /recaptcha/api.js?onload=onloadInfusionRecaptchaCallback&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 23 Dec 2022 01:36:47 GMT
date: Fri, 23 Dec 2022 01:36:47 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
frnation.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 30 kB URL HTTP/2 frnation.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: application/javascript
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
x-robots-tag: noindex
X-Firefox-Spdy: h2
frnation.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.0 kB URL HTTP/2 frnation.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
x-robots-tag: noindex
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/optimizePressPlugin/lib/js/op-jquery-base-all.min.js?ver=2.5.22
200 OK 16 kB URL HTTP/2 frnation.com/wp-content/plugins/optimizePressPlugin/lib/js/op-jquery-base-all.min.js?ver=2.5.22
IP
File type ASCII text, with very long lines (32006)
Hash 8805d2a1b558c0961f06bf1841dd09d8
37ec2b35aba83dc7ad052cc84d5af04a2ee36230
f64dff2c5951cd39693825978deb5f3b1e7b02e90b5da8e2a4829454838c6775
GET /wp-content/plugins/optimizePressPlugin/lib/js/op-jquery-base-all.min.js?ver=2.5.22 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: application/javascript
last-modified: Tue, 15 Feb 2022 08:36:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15732
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 2ad46fcf0d5e69ee9a3709d7b4a13708
b529930dad6decd0482c8af506aa8aeaca71eef6
2d67e93160eb28c2e4534bb70b7b6586fc15181c3943d5cea7921322a1698c8b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=150500
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:47 GMT
Etag: "63a4af13-118"
Expires: Sat, 24 Dec 2022 19:25:07 GMT
Last-Modified: Thu, 22 Dec 2022 19:25:07 GMT
Server: nginx
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ecc130cabc8432a4c29a8ee3c411345f
ec68a99dcefeae0499da898b048d5a1a850d6256
71a24b7303015b50931d655a2761bd377379b2d8a1fba34d90311bdc1462e5d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
frnation.com/wp-content/plugins/popups-for-divi/scripts/ie-compat.min.js?ver=3.0.5
200 OK 3.5 kB URL HTTP/2 frnation.com/wp-content/plugins/popups-for-divi/scripts/ie-compat.min.js?ver=3.0.5
IP
File type ASCII text, with very long lines (10001)
Hash 36b6f953c666f7d9bc1ed611107da68d
daff082219f4dd57b76ce14cf614b011c5e725fa
9607a3beb893fc84ffd38b05231c8c9a1956290a4f719566007f3f7e812955f3
GET /wp-content/plugins/popups-for-divi/scripts/ie-compat.min.js?ver=3.0.5 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 10:59:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3531
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/uploads/2022/12/3d-mockup-rev-small.png.webp
200 OK 30 kB URL HTTP/2 frnation.com/wp-content/uploads/2022/12/3d-mockup-rev-small.png.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash abae8d65799be273e078b48ee1ef5c6f
ca3103a06a0bfdc28a132dc6c1e13fa90f502349
078b9243363e5024fea8265d6e614d6ff2d4ba2ca0552958f607c7fe672a2c6e
GET /wp-content/uploads/2022/12/3d-mockup-rev-small.png.webp HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: image/webp
last-modified: Tue, 06 Dec 2022 13:32:20 GMT
accept-ranges: bytes
content-length: 30342
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/uploads/2022/01/FR-FBAS-Graphic-Final.png.webp
200 OK 91 kB URL HTTP/2 frnation.com/wp-content/uploads/2022/01/FR-FBAS-Graphic-Final.png.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3f58499f0849a3e74d4e3356db175845
fb03ca1d80a6d782b253d6490ceaa63e95d08568
6752899394d73ba4ed136d260ef06fc648cb987d04324dd09a9586a4d4a54fb6
GET /wp-content/uploads/2022/01/FR-FBAS-Graphic-Final.png.webp HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: image/webp
last-modified: Thu, 03 Feb 2022 15:53:30 GMT
accept-ranges: bytes
content-length: 91310
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/uploads/2022/01/FR-Logo-Wide-2.png.webp
200 OK 72 kB URL HTTP/2 frnation.com/wp-content/uploads/2022/01/FR-Logo-Wide-2.png.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 90a9989bd7432a5b08150050950dd467
bb219919bf0dc80557f0a77fd81d9062eb74ebf4
8adf35699ee9527e345997cd41c1544da45977de70079f6b3e9a6bd26742fece
GET /wp-content/uploads/2022/01/FR-Logo-Wide-2.png.webp HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: image/webp
last-modified: Thu, 03 Feb 2022 15:53:30 GMT
accept-ranges: bytes
content-length: 71894
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1669943562
200 OK 2.8 kB URL HTTP/2 frnation.com/wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1669943562
IP
Hash 2cb66ffd8e98576a2e147db106723a08
3dd1a7e79e5daf63e15cdbb2d589c258940c8c3b
cfbc17480500b6dbf29ff10b37706e44f4aea399418084e90cdc0491d66fdf00
GET /wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1669943562 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: application/javascript
last-modified: Fri, 02 Dec 2022 01:12:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2819
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.1
200 OK 2.9 kB URL HTTP/2 frnation.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.1
IP
File type ASCII text, with very long lines (10565), with no line terminators
Hash 70f3b9dd6a51a766210411d4ed0752de
5507f795072da10842897292e32c24b8cbf7827d
8ad70d44d761d4e24fdcdd496c7d529c52c68a7c7dce2471104d4efa2d01ca89
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.1 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: application/javascript
last-modified: Sat, 17 Dec 2022 01:11:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2911
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.1
200 OK 3.8 kB URL HTTP/2 frnation.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.1
IP
File type HTML document, ASCII text, with very long lines (12652), with no line terminators
Hash 82296b1be7d264a8a21ca0741f50475a
10ad7678821940dacd8200c76505de5dc59b47f2
524abf7280900dd377f372e36163631a3d9740416bcc993919ec407687793366
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.1 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: application/javascript
last-modified: Sat, 17 Dec 2022 01:11:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3831
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/js/infusion.js?ver=1.0
200 OK 2.0 kB URL HTTP/2 frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/js/infusion.js?ver=1.0
IP
Hash b2257a11c97a4e73a88d17599b8f77e5
c5f2da3859d99d439a9f08275949436190c0292c
fc91818ce69bca8f8d0f8ebe263a1e25e138e0030d5666d1ae8f76ab90fcd04f
GET /wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/js/infusion.js?ver=1.0 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 01:11:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2025
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/js/jquery.uniform.min.js?ver=1.0.9
200 OK 2.9 kB URL HTTP/2 frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/js/jquery.uniform.min.js?ver=1.0.9
IP
File type ASCII text, with very long lines (8308), with no line terminators
Hash 68ec30ee8d785e58be03f0e32adbc7a3
846536a756b8a4a6352865f451df6e5233a19887
0a556e1ac149a32416238579bb51bafcc1b4ad6c4346c8631350104ecf351f94
GET /wp-content/plugins/infusionsoft-official-opt-in-forms/js/jquery.uniform.min.js?ver=1.0.9 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 01:11:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2856
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/js/custom.js?ver=1.0.9
200 OK 5.8 kB URL HTTP/2 frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/js/custom.js?ver=1.0.9
IP
Hash 507e78085288391ca9a1decf6fae2bd3
196a5040c1dc14a8748933031ccaa4ef5f447c2c
8ec6de05241e0f39613784698b53d542a4aa5517307269dc333a603e72d7e3f5
GET /wp-content/plugins/infusionsoft-official-opt-in-forms/js/custom.js?ver=1.0.9 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 01:11:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5813
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/js/idle-timer.min.js?ver=1.0.9
200 OK 896 B URL HTTP/2 frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/js/idle-timer.min.js?ver=1.0.9
IP
File type ASCII text, with very long lines (2400)
Hash d74ac38ee789839f5aece2251741b05c
a972711c4983b78420db2a76ab927a761bc9ea0f
cecd15312b946e72eace0a6ec01be95921c50597b6ea5ea4fc99532b53abe438
GET /wp-content/plugins/infusionsoft-official-opt-in-forms/js/idle-timer.min.js?ver=1.0.9 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Fri, 30 Dec 2022 01:36:47 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 01:11:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 896
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
302 Found 0 B URL HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=f7VUwNSegvPUW_TZarteojOR72kNSIxH4TvntFJKq24-1671759408-0-AVMREnLhBZdd4GRmDJadhIs58MvQC3HilHtz7hzXGCPvEWq54gxBBv1Y+hPQ0E0MIUejBClhh1hRFHDg1I96ZClYoURlAa2pteazrVOsyhuI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 23 Dec 2022 01:36:48 GMT
content-length: 0
location: https://clickfunnels-assets.s3.amazonaws.com/assets/cfpop.js
set-cookie: __cf_bm=7rpnB9lRkQPKyYDVoc5OX_BB6JIC9iflIp1H72pLmi0-1671759408-0-Aapu3CpMfB+Eck8tIFe6I9ujR4I1UFgla8NWYViybxxkRA1vBVZQHigSHr4xoS/coVJYDdLHatUKYYxvWMp0f6g=; path=/; expires=Fri, 23-Dec-22 02:06:48 GMT; domain=.www.clickfunnels.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 77dd5e4cc84eb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webform/overwriteRefererJs
200 OK 636 B URL HTTP/2 ubsystems.infusionsoft.app/app/webform/overwriteRefererJs
IP
Hash 23d49845c08f0a21a6de8c60dce2ce7f
d33d299ba96f1bd254d2d98de602f27ef9592d44
0397e67902bfcc4e114cbd54565cbc74d3eb68433e98ac1a0a6ef1c37419e118
GET /app/webform/overwriteRefererJs HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:48 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Fri, 23 Dec 2022 01:36:47 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=013A529C8D92FFB9AF2DA026CB6F2BE8; Path=/; Secure; HttpOnly
GCLB=CJ7uvbW-xv_ACw; path=/; HttpOnly; expires=Fri, 23-Dec-2022 13:36:47 GMT
__cf_bm=JLrB8q7eUrg26YuyScsfllKkqSEcjrz2HolFRmt55Vc-1671759408-0-AfHhkB0H+saEnYG4YEJWv7dg8Gjo2wDOyoQCvDzRMv/XgQ8/kW3repA60eE7Uih7XG8csEsEMjrlHbffzQVlfQDYp1qCfIJ1AAopXHPVoDFx; path=/; expires=Fri, 23-Dec-22 02:06:48 GMT; domain=.infusionsoft.app; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77dd5e4b4f14b511-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXo.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXo.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12820, version 1.0\012- data
Hash 3f2f6d9e64a95a40ea5dedfc91f42a95
9cd9f5a2f86f1d42390141d91619a0aa41a276b7
ed121b1a8fbf30998a4ed0a7c8343abe9091ac4744f1c24b602b5d3f962bdb78
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:23 GMT
expires: Sat, 16 Dec 2023 13:33:23 GMT
cache-control: public, max-age=31536000
age: 561805
last-modified: Mon, 11 Jul 2022 18:56:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webTracking/getTrackingCode?b=1.70.0.507674
200 OK 2.5 kB URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/getTrackingCode?b=1.70.0.507674
IP
Hash a29bf5e9d54fc10b8360c1269a5fc0c0
28098051ca012017c13fb7b384b0ab225e95f770
7060123ff5e006e245fbf8efa189cbbe5aefc5609c374697c5dbce1d3e75a58f
GET /app/webTracking/getTrackingCode?b=1.70.0.507674 HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:48 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Fri, 23 Dec 2022 01:36:47 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=BFF3C54ADD060A5E833E60A2E7FFAFFA; Path=/; Secure; HttpOnly
GCLB=CODRv5-IyfX-9AE; path=/; HttpOnly; expires=Fri, 23-Dec-2022 13:36:47 GMT
__cf_bm=i2a_JHaEJsYjHy0C3kPx6xSZXzQwmHSEqi7o6lB9MiU-1671759408-0-ATGlefTXPbnYbcOtZg9r0voj9N39N4Pvji2F7F2D/gSwHoUG1uIgM1hy6gZmuwChWJpcO63uwE9t1dFu5SouebwEk+3bUfnzWTAUz8U8CaVH; path=/; expires=Fri, 23-Dec-22 02:06:48 GMT; domain=.infusionsoft.app; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77dd5e4b4f0fb511-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4i.woff2
200 OK 56 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4i.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 56348, version 1.0\012- data
Hash 441a81103fda7f9c3b41cffd77d8c65c
3a2d883b3fc09a347376088e206f5e0fd17aab72
52a27a6a1c1821efdf20d91ece59d5f29ba3ba28cc8480e2f73f3007216e7729
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4i.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 56348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Dec 2022 22:25:38 GMT
expires: Sun, 17 Dec 2023 22:25:38 GMT
cache-control: public, max-age=31536000
age: 443470
last-modified: Mon, 15 Aug 2022 18:12:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Dec 2022 14:42:14 GMT
expires: Sun, 17 Dec 2023 14:42:14 GMT
cache-control: public, max-age=31536000
age: 471274
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Dec 2022 18:52:41 GMT
expires: Tue, 19 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 283447
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12848, version 1.0\012- data
Hash f0b3206d02a2f684530117ce1d7e8ce0
f3708b707b65e241b0f1c819d5f7bf7da8412653
f31b80562610135edd91a86ec7f243c5eeaec2ec08337e6a20c2d135d8e217da
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 07:09:11 GMT
expires: Sat, 16 Dec 2023 07:09:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:56:00 GMT
content-type: font/woff2
age: 584857
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12700, version 1.0\012- data
Hash e571167fbcce8d5081bce96a09930063
e12420f5e4da3ccdc75a58ce744e7d5a0c6cf79e
98be19bc78b5bc5d419e4fa6ea055ebd4671a963e2cc644aeed4362f15d14c31
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Dec 2022 02:08:57 GMT
expires: Mon, 18 Dec 2023 02:08:57 GMT
cache-control: public, max-age=31536000
age: 430071
last-modified: Mon, 11 Jul 2022 18:56:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkaVI.woff2
200 OK 59 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkaVI.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 59400, version 1.0\012- data
Hash 5904cf8b4636f030874b859a75b1ee62
425ce8516a97451825d31e96b63498b2d93f26ca
0feb67b40a66a3aa0e8ed60f04577fefdf24869fb35b8929ef1e7293f8eaee1c
GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 59400
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:12 GMT
expires: Sat, 16 Dec 2023 13:33:12 GMT
cache-control: public, max-age=31536000
age: 561816
last-modified: Mon, 15 Aug 2022 18:17:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11574
Expires: Fri, 23 Dec 2022 04:49:42 GMT
Date: Fri, 23 Dec 2022 01:36:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11574
Expires: Fri, 23 Dec 2022 04:49:42 GMT
Date: Fri, 23 Dec 2022 01:36:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11574
Expires: Fri, 23 Dec 2022 04:49:42 GMT
Date: Fri, 23 Dec 2022 01:36:48 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash a706e18a200067a6e2d20bebdb7fcdae
e64ce67329ed29aac14296b9186821e06743f4d6
d3305b66c7e0fbd4a155b88424d9994d8e3c6f11ef9d39fefa5a8f307b2bba40
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134217
Date: Fri, 23 Dec 2022 01:36:48 GMT
Etag: "63a4604f-1d7"
Expires: Sat, 24 Dec 2022 14:53:45 GMT
Last-Modified: Thu, 22 Dec 2022 13:49:03 GMT
Server: ECS (nyb/1D2B)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OVomNGfN00MB9UovmCX0PZqNx-L0KIeea90TpvIevz9G-5GKrrAJ1A==
Age: 3882
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11574
Expires: Fri, 23 Dec 2022 04:49:42 GMT
Date: Fri, 23 Dec 2022 01:36:48 GMT
Connection: keep-alive
ubsystems.infusionsoft.com/app/webTracking/getTrackingCode
200 OK 11 kB URL HTTP/2 ubsystems.infusionsoft.com/app/webTracking/getTrackingCode
IP
Hash 11841b1527a08b92357f046e253411a6
e10898da95c241c3d3b1dcf403b97be98eee8274
dc693ad94aa3cea1f4de147cf2ad733dd3f0732b6a5318563fe99df1fd986676
GET /app/webTracking/getTrackingCode HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:48 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Fri, 23 Dec 2022 01:36:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=27F60427689313B350F9CFDF23981342; Path=/; Secure; HttpOnly
GCLB=CLmFlvvX5vKcBg; path=/; HttpOnly; expires=Fri, 23-Dec-2022 13:36:48 GMT
__cf_bm=OVLyICxFCEt4jzQactw4ugfiOM2Puay0_PshoZVhSG8-1671759408-0-AaxK2glsBIPRMsxdYfJeo4aau38brB6G3Be7IE+627k4C0+FvZLnovq7y55rvKMITpcf5aFeoqYJGwEuO1bOlGI=; path=/; expires=Fri, 23-Dec-22 02:06:48 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77dd5e4b6ec1b4f3-OSL
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4d8b8ab-ff79-4e93-97dc-b4b7d18e0b5b.jpeg
200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4d8b8ab-ff79-4e93-97dc-b4b7d18e0b5b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0c276f786c96caac3f6a2b1cb20e4993
233988de2b66d8d97e0f21cbd1a182a9b4bd162f
bd5418d62aabf5e38f5c06409d0e1144f101d045072513150d5f16ffc2df169c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4d8b8ab-ff79-4e93-97dc-b4b7d18e0b5b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6645
x-amzn-requestid: 0f18f9e7-c8b3-4250-8156-96d3ea8a9749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: diVuQE5fIAMFeXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a40327-520100d2431fabd14317afe3;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 07:11:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UYAT01ECmYKrp25iLBix5K0qdahEvfppThLwVjcQOffxq0UI9PEKsg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 07:16:19 GMT
age: 66029
etag: "233988de2b66d8d97e0f21cbd1a182a9b4bd162f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg
200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 61b1b9ece5581fe0b212144f45243f1a
d161c613f1491ae6ab63b536c50c6630e80d6382
f5a2b23b66a05734b86755986573c07c5f75bc6cbe67d2b769aee9ef402b2c14
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7117
x-amzn-requestid: 470b959f-7f5f-4a64-8d8d-bfc91856fad2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dUnBBFhZIAMFhiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e8539-3916bad034c86d5503e456f2;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 03:12:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: n0BaTqs_U_Apyf2luwRS_FHBH-Tkf6NEq59S3IwJxBiiROghmg1yvg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 05:03:45 GMT
age: 73983
etag: "d161c613f1491ae6ab63b536c50c6630e80d6382"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e289df1-a1b6-4a7a-a3f0-0326ee48b354.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e289df1-a1b6-4a7a-a3f0-0326ee48b354.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ada16d13af9310487aee9dae29df40fd
fcecaab531e403f8d5912cf29d977e549f96765b
66b7f13460489f1cd5f09b44cebadcf2f459b46aa6ff0c984c10fe0a48062942
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e289df1-a1b6-4a7a-a3f0-0326ee48b354.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8628
x-amzn-requestid: bf74fd40-dfac-4565-8e8d-a79bdaf4e1ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dVJpaHvTIAMF9ZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ebca2-29fa0add445d8e0d1691645d;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 07:09:22 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: v_cc-cskoH2Fd8guDwxt7OhXQozpMVr77b5YvSz5q3NQidTA3R5B2g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 219e8f088c8c2a564bdacafe44be620a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 07:31:19 GMT
age: 65129
etag: "fcecaab531e403f8d5912cf29d977e549f96765b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F636d561f-4cac-46b6-9b12-799eb03be3f7.jpeg
200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F636d561f-4cac-46b6-9b12-799eb03be3f7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5aee260508b4a6317aa74cfa263fcf0f
0268b809b07f0126ae1c707f0a72cbf2c5ee5dde
b43410a5b53d6318d13a1b6cac311beaff9aaf2b21a6d68420ec7e3291ce44b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F636d561f-4cac-46b6-9b12-799eb03be3f7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8103
x-amzn-requestid: 1dec4794-e477-4587-a919-10fed7e06f73
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: degIwFtioAMFZoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a27a37-2088c1ec6c0d3158153e907b;Sampled=0
x-amzn-remapped-date: Wed, 21 Dec 2022 03:15:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mBdKNm-n2HvTeSA3FxMS7yfjJvmpTCrNNCuOlJgt1Q6y258pawKQ0A==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 08:40:52 GMT
age: 60956
etag: "0268b809b07f0126ae1c707f0a72cbf2c5ee5dde"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47ee94a5-9c56-4939-b124-56487f665b25.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47ee94a5-9c56-4939-b124-56487f665b25.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 187fd7f19c2b5452c58da85ac9010790
ae6a889ca7a320d976dd68c00cfe9fbd9e4b20be
a4baaa24e3ec3d41805bf1fe31f7d8c8572f7339950f65f356d9bdd8b101fa80
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47ee94a5-9c56-4939-b124-56487f665b25.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11460
x-amzn-requestid: e44d67f8-de86-44d3-8c81-30f8f9165623
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkVD-EK5oAMF3eQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4cee6-040b15d4132e0af7118d6217;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:40:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y_HOu1dDbdlkh8mU2QQwmIwiddfI8ZplWJbk8WBJcehxIeppmfzxsw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 21:59:48 GMT
etag: "ae6a889ca7a320d976dd68c00cfe9fbd9e4b20be"
content-type: image/jpeg
age: 13020
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
clickfunnels-assets.s3.amazonaws.com/assets/cfpop.js
200 OK 4.1 kB URL HTTP/1.1 clickfunnels-assets.s3.amazonaws.com/assets/cfpop.js
IP
File type ASCII text, with very long lines (4128), with no line terminators
Hash e83cbdf3822c36a0bba96e279dbbcc18
be639d66d3586f4afd4523771d294212428c7520
edca09937ddbf8dbe53f7ec35eca8c5ebf6ce464c51601f05ecb55f9d48c978f
GET /assets/cfpop.js HTTP/1.1
Host: clickfunnels-assets.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: nzp+G2lyXZUT7u4rJPmrGpMKhFTFC6aJUDroEjt254TVJ4ICXkx07OlXzZnNqjFChytiLGOCes4=
x-amz-request-id: NSW9JBVC5W6PHCE3
Date: Fri, 23 Dec 2022 01:36:49 GMT
Last-Modified: Mon, 16 Nov 2020 15:46:04 GMT
ETag: "e83cbdf3822c36a0bba96e279dbbcc18"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 4128
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 23 Dec 2022 00:41:11 GMT
expires: Fri, 23 Dec 2022 02:41:11 GMT
cache-control: public, max-age=7200
age: 3337
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserratalternates/v17/mFTiWacfw6zH4dthXcyms1lPpC8I_b0juU0xUILFB7xG.woff2
200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/montserratalternates/v17/mFTiWacfw6zH4dthXcyms1lPpC8I_b0juU0xUILFB7xG.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 20480, version 1.0\012- data
Hash 141810686d58c9d8f8a130a09da03ace
a7942a1364de22c44790ec3014be74bf8f19c23e
05310548a7b194d49ef3df5f58787d39dd53930f140ef2d649642562d5f000bc
GET /s/montserratalternates/v17/mFTiWacfw6zH4dthXcyms1lPpC8I_b0juU0xUILFB7xG.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20480
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Dec 2022 15:53:07 GMT
expires: Wed, 20 Dec 2023 15:53:07 GMT
cache-control: public, max-age=31536000
age: 207821
last-modified: Tue, 26 Apr 2022 15:45:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvC73w5aXo.woff2
200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvC73w5aXo.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12048, version 1.0\012- data
Hash 2f0591f47be65bab6a3cad2738688dcd
e1bc2e5c486bb85a87d4461cc4b689742c0acc3f
c783f924dc83b1990b7d490eade941b7d4676b799702e2fc6c7fe78a739fbe37
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvC73w5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Dec 2022 14:30:20 GMT
expires: Sun, 17 Dec 2023 14:30:20 GMT
cache-control: public, max-age=31536000
age: 471988
last-modified: Mon, 11 Jul 2022 18:56:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
IP
File type ASCII text, with very long lines (658)
Size 165 kB (164706 bytes)
Hash 0b7fccb24ee065a01fdde10928c03c3f
9b198014f81844820588c202cc24bf5e03bf3dd7
68756de8f0d6742525ddaca56ab350e34d822777e86939fea27eb704ae013280
GET /recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164706
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Dec 2022 20:10:50 GMT
expires: Thu, 21 Dec 2023 20:10:50 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 05:24:10 GMT
content-type: text/javascript
age: 105958
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2963454.js?sv=6
200 OK 17 kB URL HTTP/2 static.hotjar.com/c/hotjar-2963454.js?sv=6
IP
File type ASCII text, with very long lines (7679)
Hash 3df6666ab9c34bdf43e511d7def4d59c
c78573e7139972d479ada5bb17fda6f530c94de7
f23850de1c1863140e0b82fe5fe4fc0f858be8127a2f39e8bfad693f44531736
GET /c/hotjar-2963454.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 23 Dec 2022 01:36:48 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/1fee2438c4a0368385163854b6f31c09
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: r8eRyiVC9niVjjdoD_g0wcc5CEAWcvs-u7_1sAScC0h9ccLk2VMDzA==
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw5aXo.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw5aXo.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12580, version 1.0\012- data
Hash f95c32e0a411f4ca6aaac8a2b94fa34e
5080c3364ddfb436f2717fba8da36226d03d8539
11dd041d74737fc472cedef6bbadd0062120f17ea5e5195eb1490eaaa0475812
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Dec 2022 14:53:58 GMT
expires: Sun, 17 Dec 2023 14:53:58 GMT
cache-control: public, max-age=31536000
age: 470570
last-modified: Mon, 11 Jul 2022 18:58:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700
200 OK 25 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700
IP
File type ASCII text, with very long lines (52913)
Hash 946a8c458926bb769277478d20ce3f5c
2de34e76e05fe8b43da6ed72bf5ba641a354bf57
568c13cef8cc400193fb95aac92171f615ec64192eed0f3d926ec16ac22eae26
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Dec 2022 01:36:47 GMT
date: Fri, 23 Dec 2022 01:36:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webTracking/getTrackingCode
200 OK 95 kB URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/getTrackingCode
IP
Hash d85e108fd2a09abf90646d896e97a8d1
d2c62e52d11d6e6483a63e128b6707c0d064cab3
24445b5a56b36f4930f234f0469577b44be86f0d75b5cb585b0664d6a6193b5a
GET /app/webTracking/getTrackingCode HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Cookie: __cf_bm=bH8KxetxAcaSZV7Jr0vXOhEoszobytAXdQ1Smek6.14-1671759408-0-ARdrRQMSwrESevSNgMculm80Jk7+Q3j5sDPXAurUXtwC/njSBad52cdnKmgICso/pCMGgpZ0FbyssIQ889SMQO2BHnql/oooKAOhOH8RBi+i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:48 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Fri, 23 Dec 2022 01:36:48 GMT
set-cookie: JSESSIONID=739D52AA451964EEC0A03FACFFFBF7C0; Path=/; Secure; HttpOnly
GCLB=CIXGt7Xsz9-vpQE; path=/; HttpOnly; expires=Fri, 23-Dec-2022 13:36:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77dd5e4dd8b7b511-OSL
X-Firefox-Spdy: h2
script.hotjar.com/modules.352fddba5b21bbfc3a08.js
200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.352fddba5b21bbfc3a08.js
IP
File type Unicode text, UTF-8 text, with very long lines (48638)
Hash 3256c76707175033b83ffe82f89b32ec
d33e93f001d08e0449fde66b60493900f8f5c62e
cdb9b4030412de584b24a407d6186cd5971df1b3fb3168d819c8d9b9e5927bdf
GET /modules.352fddba5b21bbfc3a08.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68894
date: Thu, 22 Dec 2022 08:07:05 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "3256c76707175033b83ffe82f89b32ec"
last-modified: Thu, 22 Dec 2022 08:06:23 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: K9aYyyWvxAkFPj6a_D70HmO7bofVG9aCB0yTIUo4Blp21h5qkFH0mQ==
age: 62984
X-Firefox-Spdy: h2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3boqh8En4dTLM-F2FSoSFYqPdgWUa-oRbems-kBSMksLqSM144eJNA==
age: 2550403
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a06281b6bb06069d21666372c708f6c0
c7622a20b3fb40dcb00f393382601e95ff59a8c2
8b7f74ecc617d58979a40b30abe40faca246e302528c3fe3d086f339574a7809
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66677749-1&cid=139360814.1671759408&jid=1784658900&gjid=1953458804&_gid=974364751.1671759408&_u=YEBAAUAAAAAAACAAI~&z=1856979088
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66677749-1&cid=139360814.1671759408&jid=1784658900&gjid=1953458804&_gid=974364751.1671759408&_u=YEBAAUAAAAAAACAAI~&z=1856979088
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66677749-1&cid=139360814.1671759408&jid=1784658900&gjid=1953458804&_gid=974364751.1671759408&_u=YEBAAUAAAAAAACAAI~&z=1856979088 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://frnation.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 23 Dec 2022 01:36:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a06281b6bb06069d21666372c708f6c0
c7622a20b3fb40dcb00f393382601e95ff59a8c2
8b7f74ecc617d58979a40b30abe40faca246e302528c3fe3d086f339574a7809
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 118e9e463e1e5174953658f35fb83427
8c2ba52661133dc0d78d0a756996ddb690112e35
8d56cd051472c79b399e7fe5165f4bf46761fb30b519177a8ff76da17214dd36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66677749-1&cid=139360814.1671759408&jid=1784658900&_u=YEBAAUAAAAAAACAAI~&z=1088449408
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66677749-1&cid=139360814.1671759408&jid=1784658900&_u=YEBAAUAAAAAAACAAI~&z=1088449408
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66677749-1&cid=139360814.1671759408&jid=1784658900&_u=YEBAAUAAAAAAACAAI~&z=1088449408 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Dec 2022 01:36:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 118e9e463e1e5174953658f35fb83427
8c2ba52661133dc0d78d0a756996ddb690112e35
8d56cd051472c79b399e7fe5165f4bf46761fb30b519177a8ff76da17214dd36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:36:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash c8f1191170c040845bb2b1dd3608693c
f65eed7328438ab321b86729eb522a76b239ee42
ed158b6b20b024e13d5d414da275a49a5a5d1aeff40b3372a51e2cf1127a4b97
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 23 Dec 2022 01:36:50 GMT
Last-Modified: Fri, 23 Dec 2022 00:40:38 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Ymy33eRKLSkDd9qign4J3ZqZoKKy6FkuEYn3RyS_06BpXRcChmIOGw==
Age: 3373
ws42.hotjar.com/api/v2/client/ws
101 Switching Protocols 0 B URL HTTP/1.1 ws42.hotjar.com/api/v2/client/ws
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws42.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://frnation.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dwUoN1i47NILJKQ2Iif2Yw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 23 Dec 2022 01:36:50 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Q7w8nI83F5r/RxlQRJAByyLftDg=
Sec-WebSocket-Extensions: permessage-deflate
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4d003db-3616-4689-ab10-8fd443bf2240.jpeg
200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4d003db-3616-4689-ab10-8fd443bf2240.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0099e9df1aea3cb04311bd379d4064d4
034ce2d65b291a149392b1d4d818d0c5d907e3b1
acac6cbb678d2e6ebcb4b5519b005744d69030a969cb73e8f8fb44279062417d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4d003db-3616-4689-ab10-8fd443bf2240.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7072
x-amzn-requestid: 7df20af6-26e4-4051-9f23-921f5faa529d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkUhqEqpIAMFgiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4ce0a-15e3d2873fa68988643e5284;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yVOAaM1oNbNK_gCR2-22qxVuf-yCWtWAWnZU7fnPVLyP2bB2xA2XfQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 21:38:11 GMT
etag: "034ce2d65b291a149392b1d4d818d0c5d907e3b1"
content-type: image/jpeg
age: 14324
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
frnation.com/
200 OK 0 B IP
GET / HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
link: <https://frnation.com/wp-json/>; rel="https://api.w.org/", <https://frnation.com/wp-json/wp/v2/pages/15978>; rel="alternate"; type="application/json", <https://frnation.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Fri, 23 Dec 2022 01:36:47 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webTracking/contact/1671759407590?contactId=0&screenResolution=1280x1024&plugins=&javaEnabled=false&domain=frnation.com&location=https://frnation.com/&referrer=
302 Found 0 B URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/contact/1671759407590?contactId=0&screenResolution=1280x1024&plugins=&javaEnabled=false&domain=frnation.com&location=https://frnation.com/&referrer=
IP
GET /app/webTracking/contact/1671759407590?contactId=0&screenResolution=1280x1024&plugins=&javaEnabled=false&domain=frnation.com&location=https://frnation.com/&referrer= HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Cookie: __cf_bm=bH8KxetxAcaSZV7Jr0vXOhEoszobytAXdQ1Smek6.14-1671759408-0-ARdrRQMSwrESevSNgMculm80Jk7+Q3j5sDPXAurUXtwC/njSBad52cdnKmgICso/pCMGgpZ0FbyssIQ889SMQO2BHnql/oooKAOhOH8RBi+i
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 23 Dec 2022 01:36:50 GMT
pragma: no-cache, no-cache
cache-control: no-cache, no-store, no-cache, no-store
expires: Fri, 23 Dec 2022 01:36:50 GMT, -1
set-cookie: JSESSIONID=E58FB76CD5087F41BAE0FA810C394672; Path=/; Secure; HttpOnly
InfusionsoftTrackingCookie=6889d3e0bba1aeb82603e29a1a5144de; Max-Age=31536000; Path=/; SameSite=None; Secure
GCLB=CPf94ePdtaOX9gE; path=/; HttpOnly; expires=Fri, 23-Dec-2022 13:36:50 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
location: /slices/spacer.gif
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77dd5e595e82b511-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webform/overwriteRefererJs?b=1.70.0.507674
200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.app/app/webform/overwriteRefererJs?b=1.70.0.507674
IP
GET /app/webform/overwriteRefererJs?b=1.70.0.507674 HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:48 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Fri, 23 Dec 2022 01:36:47 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=F6CB9904361BE4A39A76CCD3571C8558; Path=/; Secure; HttpOnly
GCLB=CKnx_ajJ9aqblwE; path=/; HttpOnly; expires=Fri, 23-Dec-2022 13:36:47 GMT
__cf_bm=C4NHHLFp2NyVA.zvpuzw3fHA_KQy6vMdUy6UM8_AUW4-1671759408-0-AdpoBiyjsGvlIhKZE5vZJWxZhbpCBiNlRAOjS9kiXyD+tphey7AJE+542EKbE5UcQroMZWHKvQ5dK+dePsJYZx1NzRpV9EN2jw+9XPgFby1i; path=/; expires=Fri, 23-Dec-22 02:06:48 GMT; domain=.infusionsoft.app; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77dd5e4b4f19b511-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/app/timezone/timezoneInputJs?xid=258a9e00a7227d7f6354a06471cc52aa
200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/app/timezone/timezoneInputJs?xid=258a9e00a7227d7f6354a06471cc52aa
IP
GET /app/timezone/timezoneInputJs?xid=258a9e00a7227d7f6354a06471cc52aa HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:48 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Fri, 23 Dec 2022 01:36:47 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=F9F3B1F761029D80F70DB01C6A1ABE66; Path=/; Secure; HttpOnly
GCLB=CLjF09a178ORAg; path=/; HttpOnly; expires=Fri, 23-Dec-2022 13:36:47 GMT
__cf_bm=VSa_CKArz60_mJ75OHa_4mGyEt4KFTH8qviYTEw6ink-1671759408-0-AYHEk8dmyIDhSDpSlNlleaxqnVP29fBN+RG70i5e6aFK9FJwS4H2HKW0sq5aM4LMov6qO7hfgBQzIfeK7otcbiE=; path=/; expires=Fri, 23-Dec-22 02:06:48 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77dd5e4afe78b4f3-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/app/timezone/timezoneInputJs?xid=67df0631b852a240c96e2d22cc05b192
200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/app/timezone/timezoneInputJs?xid=67df0631b852a240c96e2d22cc05b192
IP
GET /app/timezone/timezoneInputJs?xid=67df0631b852a240c96e2d22cc05b192 HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:48 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Fri, 23 Dec 2022 01:36:47 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=3A2E64EF5967FAF12C42AE1477731615; Path=/; Secure; HttpOnly
GCLB=CJaAl4W7pO6r6AE; path=/; HttpOnly; expires=Fri, 23-Dec-2022 13:36:47 GMT
__cf_bm=tSl2VXo_ttuVwj7RPCDWUdydwXTYNcbUcfEhCbY2zIQ-1671759408-0-AYtD4Mqo7SHWky8FOrBEtvFqEG7wZqHkMhnjgF9AJdzsrcYaPfG+hQ++C3Ru9Fc61+6DpomoAJ5wl3AcKl+drOk=; path=/; expires=Fri, 23-Dec-22 02:06:48 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77dd5e4b2e98b4f3-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webTracking/getTrackingCode
200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/getTrackingCode
IP
GET /app/webTracking/getTrackingCode HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:48 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Fri, 23 Dec 2022 01:36:47 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=59FA373FE578A98C69D74DF7579274DB; Path=/; Secure; HttpOnly
GCLB=CInKvqXjl7SvHQ; path=/; HttpOnly; expires=Fri, 23-Dec-2022 13:36:47 GMT
__cf_bm=bH8KxetxAcaSZV7Jr0vXOhEoszobytAXdQ1Smek6.14-1671759408-0-ARdrRQMSwrESevSNgMculm80Jk7+Q3j5sDPXAurUXtwC/njSBad52cdnKmgICso/pCMGgpZ0FbyssIQ889SMQO2BHnql/oooKAOhOH8RBi+i; path=/; expires=Fri, 23-Dec-22 02:06:48 GMT; domain=.infusionsoft.app; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77dd5e4b4f17b511-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/resources/component/calendar/calendar.js
200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/resources/component/calendar/calendar.js
IP
GET /resources/component/calendar/calendar.js HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:48 GMT
content-type: application/javascript;charset=UTF-8
expires: Sat, 23 Dec 2023 06:36:48 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"1388-1671302835369"
last-modified: Sat, 17 Dec 2022 18:47:15 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: MISS
cache-control: public, max-age=31554000
set-cookie: __cf_bm=lWk1OLtUSsd29_McYoFOH_7p095oF61iPjq00mC55ok-1671759408-0-AWFhOmIX4xPVeDC+0uvoTDS/+VqT1WWl47I0bsSEygm5VGMXNLheAaBP3C9eLjCCG9qBuf/gusTybd8qdgdcNeU=; path=/; expires=Fri, 23-Dec-22 02:06:48 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77dd5e4b4ea6b4f3-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1671753600
200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.app/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1671753600
IP
GET /cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1671753600 HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=bH8KxetxAcaSZV7Jr0vXOhEoszobytAXdQ1Smek6.14-1671759408-0-ARdrRQMSwrESevSNgMculm80Jk7+Q3j5sDPXAurUXtwC/njSBad52cdnKmgICso/pCMGgpZ0FbyssIQ889SMQO2BHnql/oooKAOhOH8RBi+i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:49 GMT
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
vary: accept-encoding
cache-control: max-age=14400, public
x-control-type-options: nosniff
server: cloudflare
cf-ray: 77dd5e586e27b511-OSL
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2963454/visit-data?sv=6
200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/2963454/visit-data?sv=6
IP
POST /api/v2/client/sites/2963454/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:50 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/slices/spacer.gif
200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.app/slices/spacer.gif
IP
GET /slices/spacer.gif HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=bH8KxetxAcaSZV7Jr0vXOhEoszobytAXdQ1Smek6.14-1671759408-0-ARdrRQMSwrESevSNgMculm80Jk7+Q3j5sDPXAurUXtwC/njSBad52cdnKmgICso/pCMGgpZ0FbyssIQ889SMQO2BHnql/oooKAOhOH8RBi+i; InfusionsoftTrackingCookie=6889d3e0bba1aeb82603e29a1a5144de
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:50 GMT
content-type: image/gif;charset=UTF-8
expires: Fri, 22 Dec 2023 07:20:23 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"43-1671302836023"
last-modified: Sat, 17 Dec 2022 18:47:16 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: HIT
age: 83786
cache-control: public, max-age=31470213
server: cloudflare
cf-ray: 77dd5e5a7f10b511-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/js/infusionsoft.js
200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/js/infusionsoft.js
IP
GET /js/infusionsoft.js HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:47 GMT
content-type: application/javascript;charset=UTF-8
expires: Wed, 20 Dec 2023 07:30:47 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"6925-1671302835253"
last-modified: Sat, 17 Dec 2022 18:47:15 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: HIT
age: 83786
cache-control: public, max-age=31298040
set-cookie: __cf_bm=xw2oBNfr5RvaJD8xhcRKA6Vo_uQQ1jV_rsHfrUWZnqY-1671759407-0-AS+fM9yWxxQbEwffIDEEavcNmavM1z4QjXvJqVeYd9Cr7cELXA3vojwarIEUJ6w4SITdCm42kW7QTMHPTeUu/tk=; path=/; expires=Fri, 23-Dec-22 02:06:47 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77dd5e4b0e8ab4f3-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/resources/external/recaptcha/production/recaptcha.js?b=1.70.0.438779-hf-202202181712
200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/resources/external/recaptcha/production/recaptcha.js?b=1.70.0.438779-hf-202202181712
IP
GET /resources/external/recaptcha/production/recaptcha.js?b=1.70.0.438779-hf-202202181712 HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:47 GMT
content-type: application/javascript;charset=UTF-8
expires: Thu, 21 Dec 2023 10:11:59 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"7740-1671302835782"
last-modified: Sat, 17 Dec 2022 18:47:15 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: HIT
age: 83786
cache-control: public, max-age=31394112
set-cookie: __cf_bm=NBkhfkpdnum3DLIAl9NDvVXvtyAeP2bB7SwB1FnwQPU-1671759407-0-AbkcBxy1D+rxAJl4ys8+ec/WhgRpv9lbDdrAptPaeMQLEelKe5A/zIqJfecqgLESi8RSbbNISYQ/UJ4e4WzurH0=; path=/; expires=Fri, 23-Dec-22 02:06:47 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77dd5e4b2e91b4f3-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webTracking/websiteTriggerIframe
200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/websiteTriggerIframe
IP
GET /app/webTracking/websiteTriggerIframe HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Cookie: __cf_bm=bH8KxetxAcaSZV7Jr0vXOhEoszobytAXdQ1Smek6.14-1671759408-0-ARdrRQMSwrESevSNgMculm80Jk7+Q3j5sDPXAurUXtwC/njSBad52cdnKmgICso/pCMGgpZ0FbyssIQ889SMQO2BHnql/oooKAOhOH8RBi+i
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:49 GMT
content-type: text/html;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Fri, 23 Dec 2022 01:36:49 GMT
set-cookie: JSESSIONID=9E0C9A247D41F836850F5EC2DD5DC172; Path=/; Secure; HttpOnly
GCLB=CLHThJrvm_CckAE; path=/; HttpOnly; expires=Fri, 23-Dec-2022 13:36:49 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-language: en-US
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77dd5e557cccb511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/js/jquery/jquery-3.3.1.js
200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/js/jquery/jquery-3.3.1.js
IP
GET /js/jquery/jquery-3.3.1.js HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:36:48 GMT
content-type: application/javascript;charset=UTF-8
expires: Wed, 20 Dec 2023 07:30:47 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"85855-1671302835253"
last-modified: Sat, 17 Dec 2022 18:47:15 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: HIT
age: 255961
cache-control: public, max-age=31298039
set-cookie: __cf_bm=DnQJoTYzIFWe1QaE577hLOd2t88zKgxbP8ldeQ_AoVs-1671759408-0-AZtD7Y5EvMJOm5Bc2ABWD+MDxOGo+nsxsjQn+2JfbqD+doJJ+67vOJ9zlNT51PGBBdNHX+PdBrMJD2FOPLSeZP8=; path=/; expires=Fri, 23-Dec-22 02:06:48 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77dd5e4c3f27b4f3-OSL
X-Firefox-Spdy: h2
app.clickfunnels.com/assets/cfpop.js?ver=1.0.0
301 Moved Permanently 0 B URL HTTP/2 app.clickfunnels.com/assets/cfpop.js?ver=1.0.0
IP
GET /assets/cfpop.js?ver=1.0.0 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Fri, 23 Dec 2022 01:36:48 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 77dd5e4b994c0af6-OSL
access-control-allow-origin: *
cache-control: public, max-age=1200
expires: Fri, 23 Dec 2022 01:56:48 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: EXPIRED
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=f7VUwNSegvPUW_TZarteojOR72kNSIxH4TvntFJKq24-1671759408-0-AVMREnLhBZdd4GRmDJadhIs58MvQC3HilHtz7hzXGCPvEWq54gxBBv1Y+hPQ0E0MIUejBClhh1hRFHDg1I96ZClYoURlAa2pteazrVOsyhuI; path=/; expires=Fri, 23-Dec-22 02:06:48 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=Q4G3ADFwuOEEpW2Vz5pxREhJohcF_SaFslqi85t2Mg0-1671759408-0-Adz7V2P-poT0AtpSYqoGaDg9S0TUsaoqPzzhEJToYqNWep0bDNJ-wvoBC7Yu4dCpaSYMznW1orBuYj992Hw7XtkiRY_TRsNtIyagflvQRhvm"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=Q4G3ADFwuOEEpW2Vz5pxREhJohcF_SaFslqi85t2Mg0-1671759408-0-Adz7V2P-poT0AtpSYqoGaDg9S0TUsaoqPzzhEJToYqNWep0bDNJ-wvoBC7Yu4dCpaSYMznW1orBuYj992Hw7XtkiRY_TRsNtIyagflvQRhvm; report-to cf-csp-endpoint
server: cloudflare
X-Firefox-Spdy: h2
192.64.119.53
93.184.220.29
104.16.16.194
52.48.239.126
23.33.119.27