Overview

URL www.rev.com/transcript-editor/Edit?token=8oCVdClDcA7-TdD7Q4bl4cnghb3y9L7Xu4tpLSPTkOkQAEn9oRtuu50iXbK4xFeqGJktVdutsgJqN8bLaYdcogYyqqM&loadFrom=DocumentDeeplink&ts=54.78
IP54.230.111.29
ASNAMAZON-02
Location United States
Report completed2022-11-24 20:43:26 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-24 2 100.20.58.101 Sinkholed


Files

No files detected



Passive DNS (60)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-24 05:36:55 UTC 34.102.187.140
mnemonic passive DNS utt.impactcdn.com (1) 8800 2021-03-02 19:42:51 UTC 2022-11-24 08:21:46 UTC 35.186.249.72
mnemonic passive DNS match.adsrvr.org (1) 349 2014-10-06 17:59:33 UTC 2022-11-24 05:33:24 UTC 15.197.193.217
mnemonic passive DNS a.quora.com (1) 7568 2018-09-11 01:57:36 UTC 2020-04-12 05:04:48 UTC 162.159.153.247
mnemonic passive DNS vars.hotjar.com (1) 1014 2020-11-05 10:13:14 UTC 2022-11-24 10:43:30 UTC 143.204.55.105
mnemonic passive DNS script.hotjar.com (1) 887 2020-11-05 16:23:46 UTC 2022-11-24 08:48:00 UTC 143.204.55.96
mnemonic passive DNS ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2020-05-02 20:58:10 UTC 192.124.249.22
mnemonic passive DNS js.hs-scripts.com (1) 2571 2018-01-31 16:47:28 UTC 2022-11-24 09:21:52 UTC 104.17.212.204
mnemonic passive DNS rs.fullstory.com (1) 2455 2017-11-01 16:02:33 UTC 2022-11-24 06:04:49 UTC 35.186.194.58
mnemonic passive DNS js.hs-analytics.net (1) 2411 2013-10-01 15:49:45 UTC 2022-11-24 09:21:52 UTC 104.17.71.176
mnemonic passive DNS 100.20.58.101 (1) 0 No data No data 100.20.58.101 Unknown ranking
mnemonic passive DNS evs.bubo-bubo.rev.com (17) 321076 2020-11-05 01:57:49 UTC 2022-11-24 13:51:58 UTC 54.230.111.73
mnemonic passive DNS www.redditstatic.com (1) 1440 2012-06-30 12:33:28 UTC 2020-04-27 13:44:50 UTC 151.101.85.140
mnemonic passive DNS static.ads-twitter.com (1) 614 2018-06-23 22:08:39 UTC 2020-04-02 08:58:40 UTC 151.101.84.157
mnemonic passive DNS static.hotjar.com (2) 641 2014-11-01 05:14:27 UTC 2020-04-26 08:32:02 UTC 143.204.55.37
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
mnemonic passive DNS www.google-analytics.com (2) 40 2012-10-03 01:04:21 UTC 2022-11-24 10:18:11 UTC 142.250.74.174
mnemonic passive DNS px.ads.linkedin.com (2) 522 2018-06-15 11:29:56 UTC 2019-09-20 11:09:24 UTC 13.107.42.14
mnemonic passive DNS stats.g.doubleclick.net (2) 96 2013-06-10 20:21:11 UTC 2022-11-24 08:34:31 UTC 142.250.150.154
mnemonic passive DNS ocsp.sectigo.com (1) 487 2019-11-29 11:50:24 UTC 2021-09-17 20:05:40 UTC 104.18.32.68
mnemonic passive DNS script.tapfiliate.com (1) 32485 2020-04-02 04:01:22 UTC 2022-11-24 08:10:37 UTC 54.230.111.8
mnemonic passive DNS fonts.googleapis.com (3) 8877 2013-06-10 20:14:26 UTC 2022-11-24 11:11:51 UTC 142.250.74.10
mnemonic passive DNS fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-11-24 11:09:52 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS www.sjwoe.com (1) 11166 2020-09-29 01:57:17 UTC 2020-09-29 14:02:46 UTC 143.204.55.3
mnemonic passive DNS tracking.g2crowd.com (1) 9569 2016-10-09 00:30:20 UTC 2022-11-24 07:42:21 UTC 104.18.30.73
mnemonic passive DNS ocsp2.globalsign.com (1) 1544 2012-05-23 18:10:04 UTC 2020-03-15 21:19:16 UTC 104.18.20.226
mnemonic passive DNS www.facebook.com (1) 99 2012-05-21 00:23:41 UTC 2021-06-08 06:38:51 UTC 157.240.200.35
mnemonic passive DNS dx.steelhousemedia.com (1) 8530 2013-09-26 09:54:29 UTC 2022-11-24 13:19:10 UTC 44.236.199.214
mnemonic passive DNS adblockanalytics.com (1) 111939 2015-03-04 00:42:23 UTC 2022-11-24 13:51:58 UTC 216.70.112.88
mnemonic passive DNS www.adblockanalytics.com (1) 128008 2017-01-30 06:20:40 UTC 2022-11-24 13:51:59 UTC 216.70.112.88
mnemonic passive DNS snap.licdn.com (1) 1044 2014-10-06 08:43:45 UTC 2020-04-10 04:11:37 UTC 23.36.76.210
mnemonic passive DNS www.google.com (1) 7 2016-03-22 03:56:07 UTC 2022-11-24 08:13:00 UTC 142.250.74.164
mnemonic passive DNS px.steelhousemedia.com (2) 7685 2012-07-19 07:21:29 UTC 2022-11-24 18:56:44 UTC 44.237.157.168
mnemonic passive DNS r3.o.lencr.org (11) 344 No data No data 23.36.77.32
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-11-24 08:13:55 UTC 142.250.74.3
mnemonic passive DNS analytics.twitter.com (1) 526 2013-04-10 19:53:18 UTC 2020-02-24 11:40:32 UTC 104.244.42.195
mnemonic passive DNS ocsp.pki.goog (20) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
mnemonic passive DNS cdn.pendo.io (1) 1165 2018-03-28 15:48:58 UTC 2020-04-25 03:47:27 UTC 54.230.111.115
mnemonic passive DNS data.pendo.io (3) 1459 2022-07-07 19:43:46 UTC 2022-11-24 06:39:23 UTC 34.107.204.85
mnemonic passive DNS www.mczbf.com (2) 9496 No data No data 54.230.111.70
mnemonic passive DNS bat.bing.com (3) 387 2014-04-08 09:23:16 UTC 2020-04-20 20:17:24 UTC 204.79.197.200
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-11-24 10:55:16 UTC 216.58.207.194
mnemonic passive DNS cdn.linkedin.oribi.io (2) 0 2022-10-19 14:36:39 UTC 2022-11-22 13:10:54 UTC 54.230.111.78 Domain (oribi.io) ranked at: 21988
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-11-24 06:15:58 UTC 216.239.32.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS t.co (1) 569 2012-07-25 19:09:44 UTC 2022-11-24 05:41:32 UTC 104.244.42.133
mnemonic passive DNS ocsp.sca1b.amazontrust.com (2) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.158
mnemonic passive DNS www.linkedin.com (1) 608 2015-06-18 16:10:03 UTC 2020-04-27 12:38:34 UTC 13.107.42.14
mnemonic passive DNS insight.adsrvr.org (1) 631 2014-03-25 22:33:59 UTC 2022-11-24 06:11:48 UTC 15.197.193.217
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-07-20 17:46:16 UTC 2020-05-02 20:58:10 UTC 104.18.21.226
mnemonic passive DNS ocsp.digicert.com (13) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-24 05:30:55 UTC 34.117.237.239
mnemonic passive DNS www.rev.com (8) 210999 2022-02-23 06:57:31 UTC 2022-11-24 09:50:13 UTC 54.230.111.92
mnemonic passive DNS www.googletagmanager.com (1) 75 2013-05-22 02:07:37 UTC 2022-11-24 08:35:27 UTC 142.250.74.168
mnemonic passive DNS js.hs-banner.com (3) 2426 2020-03-26 17:45:21 UTC 2022-11-24 09:21:52 UTC 172.64.154.85
mnemonic passive DNS track.hubspot.com (1) 2528 2012-05-23 18:12:44 UTC 2022-11-24 10:24:05 UTC 104.19.154.83
mnemonic passive DNS push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 44.238.202.79
mnemonic passive DNS q.quora.com (1) 3239 2018-08-31 02:53:50 UTC 2022-11-24 07:01:38 UTC 100.25.7.120
mnemonic passive DNS cdn.mxpnl.com (1) 2824 2012-08-22 19:52:57 UTC 2022-11-24 10:20:14 UTC 130.211.5.208
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
mnemonic passive DNS connect.facebook.net (3) 139 2012-05-22 02:51:28 UTC 2020-02-17 13:26:09 UTC 157.240.200.14


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 54.230.111.29

Date UQ / IDS / BL URL IP
2022-12-07 05:50:38 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=CFzt (...) 54.230.111.29
2022-12-01 23:06:07 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=sJaL (...) 54.230.111.29
2022-12-01 18:55:04 +0000
0 - 0 - 0 paquetes.miclaro.com.sv 54.230.111.29
2022-11-30 20:04:38 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=pSS0 (...) 54.230.111.29
2022-11-28 08:18:41 +0000
0 - 0 - 1 www.luckyboat.xyz/sweeps/MW/iPhone14Pro-EN-An (...) 54.230.111.29

Last 5 reports on ASN: AMAZON-02

Date UQ / IDS / BL URL IP
2022-12-09 09:36:03 +0000
6 - 0 - 2 www.e-service.org/landingpages/dd263864-38a2- (...) 34.248.227.41
2022-12-09 09:35:06 +0000
0 - 0 - 2 ae-vod-tv-online.com/login.php 52.59.203.81
2022-12-09 09:30:21 +0000
0 - 0 - 1 anxjan.satisfyingdate.com/c/da57dc555e50572d? (...) 52.19.101.114
2022-12-09 09:26:14 +0000
0 - 0 - 1 suscoop-comithers.icu/2c248bc7-db3a-477f-894e (...) 18.192.108.151
2022-12-09 09:26:11 +0000
0 - 0 - 1 suscoop-comithers.icu/2c248bc7-db3a-477f-894e (...) 18.192.108.151

Last 5 reports on domain: rev.com

Date UQ / IDS / BL URL IP
2022-12-08 04:40:56 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=w_DB (...) 54.230.111.92
2022-12-07 07:35:49 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=EPnk (...) 54.230.111.92
2022-12-07 05:50:38 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=CFzt (...) 54.230.111.29
2022-12-07 03:30:00 +0000
0 - 0 - 1 www.rev.com/transcript-editor/edit?token=-y5w (...) 54.230.111.36
2022-12-06 23:17:46 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=eOh8 (...) 54.230.111.92

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-12-08 04:40:56 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=w_DB (...) 54.230.111.92
2022-12-07 07:35:49 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=EPnk (...) 54.230.111.92
2022-12-07 05:50:38 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=CFzt (...) 54.230.111.29
2022-12-07 03:30:00 +0000
0 - 0 - 1 www.rev.com/transcript-editor/edit?token=-y5w (...) 54.230.111.36
2022-12-06 23:17:46 +0000
0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=eOh8 (...) 54.230.111.92


JavaScript

Executed Scripts (119)


Executed Evals (6)

#1 JavaScript::Eval (size: 225, repeated: 1) - SHA256: 4b424950e73905ae77b2ec253651bcbc746fdb011b56cfb8ec66c310ed7da581

                                        var sh_audience_type = null;
var check = ["https://www.rev.com/checkout/"];
for (var i = 0; i < check.length; i++) {
    if (window.location.href.indexOf(check[i]) > -1) {
        sh_audience_type = "sh_audience_type=cart";
        break;
    }
};
sh_audience_type;
                                    

#2 JavaScript::Eval (size: 2303, repeated: 1) - SHA256: 9aa4ca8ae0e0a4e5b3506368ee275d9b5d4c888f6d7b1f1e6f99de0e4a41e4cb

                                        (function() {
    if (typeof irongate == 'undefined') irongate = {};
    irongate.gr = function(callback) {
        if (typeof irongate.g != 'undefined') {
            callback()
        } else {
            if (typeof irongate.gcb == 'undefined') {
                irongate.gcb = []
            }
            irongate.gcb.push(callback)
        }
    };
    irongate.gsl = function() {
        var st = document.createElement("script");
        st.type = "text/javascript";
        st.src = "https://ww.steelhousemedia.com/gs";
        var list = document.getElementsByTagName("script");
        var last = Number(list.length) - 1;
        var scpt = document.getElementsByTagName("script")[last];
        scpt.parentNode.insertBefore(st, scpt);
        irongate.timeout = setInterval(irongate.dl, 2000)
    };
    irongate.dl = function() {
        if (typeof irongate.g != 'undefined') {
            clearInterval(irongate.timeout)
        }
        while (irongate.gcb.length > 0) {
            var callback = irongate.gcb.pop();
            callback()
        }
    };
    var request = function() {
        var st = document.createElement('script');
        st.type = 'text/javascript';
        var g = (typeof irongate.g != 'undefined' ? irongate.g() : 'null');
        var gt = (typeof irongate.gt != 'undefined' ? irongate.gt() : 'null');
        var sturl = 'px.steelhousemedia.com/st?ga_tracking_id=UA-18309154-6&ga_client_id=322187190.1669322598&shpt=Sign%20In%20-%20Rev&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-18309154-6%22%2C%22ga_client_id%22%3A%22322187190.1669322598%22%2C%22shpt%22%3A%22Sign%20In%20-%20Rev%22%2C%22dcm_cid%22%3A%221669322597.1%22%2C%22dcm_gid%22%3A%221064159038.1669322598%22%2C%22mntnis%22%3A%22rr1bRzCOjvAyschXxuayVePd0d0IN1gu%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1669322597.1&dcm_gid=1064159038.1669322598&dxver=4.0.0&shaid=32131&plh=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&shadditional=multiple_conv_types%3Dtrue%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue&cb=1669322600584253&shguid=' + g + '&shgts=' + gt;
        st.src = ('https:' == document.location.protocol ? 'https://' : 'http://') + sturl;
        var list = document.getElementsByTagName('script');
        var last = Number(list.length) - 1;
        var scpt = document.getElementsByTagName('script')[last];
        scpt.parentNode.insertBefore(st, scpt)
    };
    irongate.gr(request);
    irongate.gsl()
})();
                                    

#3 JavaScript::Eval (size: 26, repeated: 1) - SHA256: 93da7a1a8faecce491697056e2fdc9278c55c398a462368a32bc70c142546da3

                                        "multiple_conv_types=true"
                                    

#4 JavaScript::Eval (size: 291, repeated: 1) - SHA256: bddc52649c8e48d36024b74d4cb54e8377b1504de592c9ad44cfcb721fc759ce

                                        let map_order_id = () => {
    let oid = null;
    for (let x of dataLayer) {
        if (x.orderNumber !== undefined && x.customerStatus !== undefined) {
            oid = `${x.customerStatus}_${x.orderNumber}`;
            break;
        }
    };
    return oid;
};
map_order_id();
                                    

#5 JavaScript::Eval (size: 792, repeated: 1) - SHA256: be95c8d79151c70258c07974285ecbec353f917fa5054c668968d1e81295a6f0

                                        let searchForTags = (...compTags) => {
    let data = {};
    let scriptNodes = document.getElementsByTagName("script");
    let imageNodes = document.getElementsByTagName("img");
    let nodesArray = [...scriptNodes, ...imageNodes];
    for (let node of nodesArray) {
        for (let i = 0; i < compTags.length; i++) {
            if (node.src && node.src.indexOf(compTags[i].id) > -1) {
                data[compTags[i].id] = compTags[i].name;
            }
        }
    };
    return Object.values(data).join(",");
};
searchForTags({
    id: "criteo",
    name: "criteo=true"
}, {
    id: "shopify",
    name: "shopify=true"
}, {
    id: "adroll",
    name: "adroll=true"
}, {
    id: "adnxs.com",
    name: "appnexus=true"
}, {
    id: "googletagmanager",
    name: "googletagmanager=true"
}, {
    id: "googletagmanager.com/gtag/js?id=G-",
    name: "ga4=true"
}, {
    id: "pixel.mathtag.com",
    name: "mediamath=true"
});
                                    

#6 JavaScript::Eval (size: 255, repeated: 1) - SHA256: b0ef31f31656d506b130d30b7ff52db8bfff0a39a113bb214d26a3f07643a83a

                                        (function() {
    var a = document.createElement("ins");
    a.className = "AdSense";
    a.style.display = "block";
    a.style.position = "absolute";
    a.style.top = "-1px";
    a.style.height = "1px";
    document.body.appendChild(a);
    var b = !a.clientHeight;
    document.body.removeChild(a);
    return b
})();
                                    

Executed Writes (0)



HTTP Transactions (148)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12306
Expires: Fri, 25 Nov 2022 00:08:20 GMT
Date: Thu, 24 Nov 2022 20:43:14 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6189
Cache-Control: max-age=142266
Date: Thu, 24 Nov 2022 20:43:14 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 12:14:20 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 20:19:00 GMT
cache-control: public,max-age=3600
age: 1454
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4d7e4eed097b9c4e5d509419f1cfc85a
Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8
Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3143
Expires: Thu, 24 Nov 2022 21:35:37 GMT
Date: Thu, 24 Nov 2022 20:43:14 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: nwxucuF2G3uucYn4oZj5OCNBYt1IeFOi/ZE/WgQezWvpxLQHsjVllkVp5fp3KDtu5LrIpgP3YjU=
x-amz-request-id: H9BBTWJRMTMRBX83
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 20:40:32 GMT
age: 162
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128178
Date: Thu, 24 Nov 2022 20:43:14 GMT
Etag: "637f2914-1d7"
Expires: Sat, 26 Nov 2022 08:19:32 GMT
Last-Modified: Thu, 24 Nov 2022 08:19:32 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sj6tExx2Mhq0jKvahCBuoo9dIsP95SO0QuthG5cbv1FrhY45gv9PUA==

                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 24 Nov 2022 20:43:14 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 20:08:53 GMT
cache-control: public,max-age=3600
age: 2062
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5319
Cache-Control: max-age=136333
Date: Thu, 24 Nov 2022 20:43:15 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:35:28 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /transcript-editor/Edit?token=8oCVdClDcA7-TdD7Q4bl4cnghb3y9L7Xu4tpLSPTkOkQAEn9oRtuu50iXbK4xFeqGJktVdutsgJqN8bLaYdcogYyqqM&loadFrom=DocumentDeeplink&ts=54.78 HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         54.230.111.92
HTTP/2 302 Found
                                        
content-length: 0
date: Thu, 24 Nov 2022 20:43:15 GMT
set-cookie: AWSALB=vzUfI2/P0Ivjov/gNAM24FGrGRKxvKx3ZqQRRM0RHDhmFSRATJYMgmVaKHmZWHbfRuNL8/IyEA57UnFUZHhYJ4WvaGs3b1kaQYZ5YlzqDnAktZbF0eG0qeWKliKu; Expires=Thu, 01 Dec 2022 20:43:15 GMT; Path=/ AWSALBCORS=vzUfI2/P0Ivjov/gNAM24FGrGRKxvKx3ZqQRRM0RHDhmFSRATJYMgmVaKHmZWHbfRuNL8/IyEA57UnFUZHhYJ4WvaGs3b1kaQYZ5YlzqDnAktZbF0eG0qeWKliKu; Expires=Thu, 01 Dec 2022 20:43:15 GMT; Path=/; SameSite=None; Secure
location: /account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
server: Kestrel
strict-transport-security: max-age=2592000
x-robots-tag: noindex
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rCFpyOhTtnKuXTDShmsiaUuFQCVa2RnWLgpvdQyco31jL_cwYsKqwQ==
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uCnRnQLOLUb5bgi+sVFC0Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.238.202.79
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TuveM+Y7xrqzdp7KL7YtTUJYMg0=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7028
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 20:43:16 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7028
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 20:43:16 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7028
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 20:43:16 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7028
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 20:43:16 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7028
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 20:43:16 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DYBcunpyI0FBJsJGh1kKpFI3X8kzCkO3mCxzUtWnaMKBT-Bv-zkq3Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:59:18 GMT
age: 81838
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13882
Md5:    64d79191f005c9876b952c5f948aa0f7
Sha1:   1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
Sha256: 00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rrs7G6Wto6iY0rT6KsKwKAOPJjehXqD0jHZrR_eaiqpepQILFr7Dtw==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:07 GMT
age: 82449
etag: "89accd230fba95fe0049678070817b36ead015fa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5070
Md5:    0856fdb55f19f03a1bec38b3d6e0ac77
Sha1:   89accd230fba95fe0049678070817b36ead015fa
Sha256: 17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 56328
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 82524
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:08:16 GMT
age: 81300
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7462
Md5:    b4157f2c5c3c77ce699324ecb08f47c7
Sha1:   a7d9135f9d01ba13c3cdaf8b038c70212f159297
Sha256: 2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:10:24 GMT
age: 48772
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6789
Md5:    d9d93b2a6875d446c3467eb49767eef5
Sha1:   303c571b13b05fcf27ee1159d8fdf6369aaef0a2
Sha256: 2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
                                        
                                            GET /Content/curve/img/ultra-logo.svg?v=Tp2lhJ-q6WjczQAux7E7Utwz_YWuKM_MR-Hzqvkeuog HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=oZ658jJDUEm2qV10lHZho3CsxXd4Hmw+6BL6MkJHGfsNGnvVI+D1p2ga7DxwFEM7hV+bvDKvRePl+EJLeq/XXLikthjXbiqY8jv5Twl7zOfJncaJeILZFLpy6Wvk; AWSALBCORS=oZ658jJDUEm2qV10lHZho3CsxXd4Hmw+6BL6MkJHGfsNGnvVI+D1p2ga7DxwFEM7hV+bvDKvRePl+EJLeq/XXLikthjXbiqY8jv5Twl7zOfJncaJeILZFLpy6Wvk; __RequestVerificationToken=xWlw_yrlgTQicnDFZEOPLU20N_6CFf7XhDO4zCrPHG85hNWOZpVwqYWBLz90YuEm8Jh7ZV8LdFqkyLDvoHWxtN_6A2E1; ft_tz=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.92
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-length: 1626
date: Thu, 24 Nov 2022 20:43:17 GMT
set-cookie: AWSALB=2VUCUWd9Ln7TlMNINDnGnar9uaHlwlQ9ix+UttNA200KxGQwuivGTLg8cD+26e7OuHo8Ge8Rn3lnYYdt7OIDYk+M39KNJJ3mVX1Tcougf4PF8Q484BaSArC5axlw; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/ AWSALBCORS=2VUCUWd9Ln7TlMNINDnGnar9uaHlwlQ9ix+UttNA200KxGQwuivGTLg8cD+26e7OuHo8Ge8Rn3lnYYdt7OIDYk+M39KNJJ3mVX1Tcougf4PF8Q484BaSArC5axlw; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Thu, 17 Nov 2022 00:58:44 GMT
accept-ranges: bytes
etag: "1d8fa1fbda3fc5a"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Y68JtZKbAH5xcBJGw8akYa74bWVW219g78nbOfFZIfmlG8GaDGPZiw==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1626), with no line terminators
Size:   1626
Md5:    ea00c1e4e97842c76e3d3fc4ac21a49c
Sha1:   5e731bfe570fa046a5f44d4d672ed72ad6c7298c
Sha256: 4e9da5849faae968dccd002ec7b13b52dc33fd85ae28cfcc47e1f3aaf91eba88
                                        
                                            GET /build/bundles/legacy/jquery.js?v=0-0 HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=oZ658jJDUEm2qV10lHZho3CsxXd4Hmw+6BL6MkJHGfsNGnvVI+D1p2ga7DxwFEM7hV+bvDKvRePl+EJLeq/XXLikthjXbiqY8jv5Twl7zOfJncaJeILZFLpy6Wvk; AWSALBCORS=oZ658jJDUEm2qV10lHZho3CsxXd4Hmw+6BL6MkJHGfsNGnvVI+D1p2ga7DxwFEM7hV+bvDKvRePl+EJLeq/XXLikthjXbiqY8jv5Twl7zOfJncaJeILZFLpy6Wvk; __RequestVerificationToken=xWlw_yrlgTQicnDFZEOPLU20N_6CFf7XhDO4zCrPHG85hNWOZpVwqYWBLz90YuEm8Jh7ZV8LdFqkyLDvoHWxtN_6A2E1; ft_tz=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.92
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 94979
date: Thu, 24 Nov 2022 20:43:16 GMT
set-cookie: AWSALB=rK5XqsVd68PC5f1Me9g8eUBrLJkFOfy0Sz567pfQc8JRpl4Uh1FleaXVHVn9N9c/JXl6evl4wCVkHOBm6lcZk8t/siRs3n1TdO/PFiVlRzMBVFXMFA6deh/9dw0R; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/ AWSALBCORS=rK5XqsVd68PC5f1Me9g8eUBrLJkFOfy0Sz567pfQc8JRpl4Uh1FleaXVHVn9N9c/JXl6evl4wCVkHOBm6lcZk8t/siRs3n1TdO/PFiVlRzMBVFXMFA6deh/9dw0R; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Mon, 21 Nov 2022 21:48:15 GMT
accept-ranges: bytes
etag: "1d8fdf2f57cca83"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I-VLSY6A0tWbhmJWmcStVcWmt7JPodIzJTtdTri-ObxdPws-WZpP9g==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   94979
Md5:    d27e439003ec2b2e2087765fcb9bb92d
Sha1:   a9f134ffcbeeaf5012819e167beae080b3759f0e
Sha256: c35d13b62f590b159ebd2a94fcf87f559ae3621b27c34fdcdc966627eb67d3cf
                                        
                                            GET /build/mp.bundle.js?v=XQY8qTVk9zdY4zwF1QLF8uXIB4-TFdvGPoDJjLJxCAA HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=oZ658jJDUEm2qV10lHZho3CsxXd4Hmw+6BL6MkJHGfsNGnvVI+D1p2ga7DxwFEM7hV+bvDKvRePl+EJLeq/XXLikthjXbiqY8jv5Twl7zOfJncaJeILZFLpy6Wvk; AWSALBCORS=oZ658jJDUEm2qV10lHZho3CsxXd4Hmw+6BL6MkJHGfsNGnvVI+D1p2ga7DxwFEM7hV+bvDKvRePl+EJLeq/XXLikthjXbiqY8jv5Twl7zOfJncaJeILZFLpy6Wvk; __RequestVerificationToken=xWlw_yrlgTQicnDFZEOPLU20N_6CFf7XhDO4zCrPHG85hNWOZpVwqYWBLz90YuEm8Jh7ZV8LdFqkyLDvoHWxtN_6A2E1; ft_tz=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.92
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 12198
date: Thu, 24 Nov 2022 20:43:17 GMT
set-cookie: AWSALB=6UDxC6hfykKT8BsVkCRNLC6KzjHRkZVDl3OB4mYgFaqKwhCCyG36tYGQMBZQhsIyJ9QsEJmp9ffWpSIIzFob2re5ccn4dsgznZFu6qbLoeHlZAFEpLWdNDCiLZo6; Expires=Thu, 01 Dec 2022 20:43:17 GMT; Path=/ AWSALBCORS=6UDxC6hfykKT8BsVkCRNLC6KzjHRkZVDl3OB4mYgFaqKwhCCyG36tYGQMBZQhsIyJ9QsEJmp9ffWpSIIzFob2re5ccn4dsgznZFu6qbLoeHlZAFEpLWdNDCiLZo6; Expires=Thu, 01 Dec 2022 20:43:17 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Mon, 21 Nov 2022 21:51:44 GMT
accept-ranges: bytes
etag: "1d8fdf37210b7a6"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: e6qcwJkzfJuonsVjF-U9eOBjhfD9qEWjaP_XN1jXnXxCMwYMAd0EoQ==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   12198
Md5:    3abcbeb4700ee5cc827282cedca98035
Sha1:   7a6b127d61babcfb6ecb4dd315bd5d2ae39bbc32
Sha256: 5d063ca93564f73758e33c05d502c5f2e5c8078f9315dbc63e80c98cb2710800
                                        
                                            GET /build/auth.bundle.js?v=70PwOu7-f1bUfXJlhJ7ylBcjewK1d-wJQR4RmbbZ7mg HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=oZ658jJDUEm2qV10lHZho3CsxXd4Hmw+6BL6MkJHGfsNGnvVI+D1p2ga7DxwFEM7hV+bvDKvRePl+EJLeq/XXLikthjXbiqY8jv5Twl7zOfJncaJeILZFLpy6Wvk; AWSALBCORS=oZ658jJDUEm2qV10lHZho3CsxXd4Hmw+6BL6MkJHGfsNGnvVI+D1p2ga7DxwFEM7hV+bvDKvRePl+EJLeq/XXLikthjXbiqY8jv5Twl7zOfJncaJeILZFLpy6Wvk; __RequestVerificationToken=xWlw_yrlgTQicnDFZEOPLU20N_6CFf7XhDO4zCrPHG85hNWOZpVwqYWBLz90YuEm8Jh7ZV8LdFqkyLDvoHWxtN_6A2E1; ft_tz=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.92
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 45193
date: Thu, 24 Nov 2022 20:43:16 GMT
set-cookie: AWSALB=zoGMNBJZW78CZ2Mc3xsfupIFpO11d1Rg9IrJJJsnRXHiQalX9kjp5CNItAjWs6PJ9w9RT0oJm+08oojwKUOyhYCWYGDVXC/CV7+uCQ6Fs5hYRWdguv9S+ngNqEMi; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/ AWSALBCORS=zoGMNBJZW78CZ2Mc3xsfupIFpO11d1Rg9IrJJJsnRXHiQalX9kjp5CNItAjWs6PJ9w9RT0oJm+08oojwKUOyhYCWYGDVXC/CV7+uCQ6Fs5hYRWdguv9S+ngNqEMi; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Mon, 21 Nov 2022 21:51:32 GMT
accept-ranges: bytes
etag: "1d8fdf36ae93a89"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1l1DgLCHS8L9lhnXLm4FxUeSC-ecaBxMaloCHkuoWn_qgN67H_IsJA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (45193), with no line terminators
Size:   45193
Md5:    4dc972af271c89143118ba6903b86233
Sha1:   718e3e6b1379e6751adbe17edc7cd0c7d4b7f411
Sha256: ef43f03aeefe7f56d47d7265849ef29417237b02b577ec09411e1199b6d9ee68
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=118352
Date: Thu, 24 Nov 2022 20:43:17 GMT
Etag: "637efa6d-1d7"
Expires: Sat, 26 Nov 2022 05:35:49 GMT
Last-Modified: Thu, 24 Nov 2022 05:00:29 GMT
Server: ECS (dcb/7F3B)
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nqbbXbA_z-wpTQJN32PY0PWhELKdq9KKVu7Y4KAhXvI96V3zXGm50A==
Age: 2120

                                        
                                            GET /analytics-next/bundles/tsub-middleware.bundle.5bc961ac61f2cc746529.js HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 568
date: Fri, 14 Oct 2022 20:22:31 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 13 Oct 2022 18:09:00 GMT
etag: "14b72ca617e595d4fdbf3b6af07ac3a7"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: TsR9MqszUm2wmCcyfbDE5V2Q2COYCvht
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zQz3aAxkNGsn0Qvj8gjqqgWd9rnvhCjtSTSiNqQG-i4JktP2wsQHAg==
age: 3543647
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (496)
Size:   568
Md5:    14b72ca617e595d4fdbf3b6af07ac3a7
Sha1:   9d5be00536768c5f2101ade111cad2b0a93f0819
Sha256: 45914c08c645568192f3550896cd731fd31a748a2fa0619f5318f5a49df0b8e6
                                        
                                            GET /build/styles/pages/account/login.css?v=ApIBoSQscifC2eCokRmD6KBO0bRnF5gU9xOqBmFs9fg HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=oZ658jJDUEm2qV10lHZho3CsxXd4Hmw+6BL6MkJHGfsNGnvVI+D1p2ga7DxwFEM7hV+bvDKvRePl+EJLeq/XXLikthjXbiqY8jv5Twl7zOfJncaJeILZFLpy6Wvk; AWSALBCORS=oZ658jJDUEm2qV10lHZho3CsxXd4Hmw+6BL6MkJHGfsNGnvVI+D1p2ga7DxwFEM7hV+bvDKvRePl+EJLeq/XXLikthjXbiqY8jv5Twl7zOfJncaJeILZFLpy6Wvk; __RequestVerificationToken=xWlw_yrlgTQicnDFZEOPLU20N_6CFf7XhDO4zCrPHG85hNWOZpVwqYWBLz90YuEm8Jh7ZV8LdFqkyLDvoHWxtN_6A2E1; ft_tz=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.92
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 176901
date: Thu, 24 Nov 2022 20:43:16 GMT
set-cookie: AWSALB=YeV4EsuLnpCaSPdmsUkQT15648JfTHRDW0fbJqK8RSvuY1TuMNPqYN6TP9nc17Pe0qOI6d/twSmXbj523bjEf3+zwMDvAlcwvBmiCKAuMAhRksQ54WsUpFDomDFR; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/ AWSALBCORS=YeV4EsuLnpCaSPdmsUkQT15648JfTHRDW0fbJqK8RSvuY1TuMNPqYN6TP9nc17Pe0qOI6d/twSmXbj523bjEf3+zwMDvAlcwvBmiCKAuMAhRksQ54WsUpFDomDFR; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Mon, 21 Nov 2022 21:48:40 GMT
accept-ranges: bytes
etag: "1d8fdf30466df05"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LLbm5JPaASd9Cu1kmSSA2iNqOKn20JkApOEDjEGkzjhAWiFj7x2cLA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (61265), with CRLF line terminators
Size:   176901
Md5:    cfb87cafa30f7302dc070441eb507cc8
Sha1:   9d414bfc67aca6c3301367ddb53ee52f6892dc80
Sha256: 029201a1242c7227c2d9e0a8911983e8a04ed1b467179814f713aa06616cf5f8
                                        
                                            GET /next-integrations/integrations/bing-ads/2.0.1/bing-ads.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1136
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "1553faa0acd9e90dbb46c23e1127f86e"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: urh2ZuXFZl1g2EkVhflXERh1um95ZMXd
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: D5IgpAtOdA1k8nkUSB3E3PFuPMu3dihmzYvwV93dlfrOqorE_-LP0A==
age: 6785008
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2357)
Size:   1136
Md5:    1553faa0acd9e90dbb46c23e1127f86e
Sha1:   843fc91ff5d9b34dd8cc7ee722269e6bc5507b75
Sha256: 05840cae824cad02ae47125bbad14bc9acc175652a9da717a35ede1e46ff6d0e
                                        
                                            GET /next-integrations/integrations/linkedin-insight-tag/1.0.1/linkedin-insight-tag.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1063
date: Sat, 27 Aug 2022 14:44:46 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "462aff3995a789b83208321801ab345b"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: Y8CI0PiHFIuF_9rR6YNjYD8TVk.uZynj
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rdbncqsdav1HdQ_FE9D-_3ptpxDAtx-ydQbdkT_-MqZUn5CIk9FYYA==
age: 7711111
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2155)
Size:   1063
Md5:    462aff3995a789b83208321801ab345b
Sha1:   08a5c21ac99b3f0cbf6d79f0beb9ee0be4cbf8c5
Sha256: be5e8f154d15f475564a4fd9822bd7032b1c334bdbd3d6020c8a29c1e1aeca81
                                        
                                            GET /next-integrations/integrations/twitter-ads/2.5.2/twitter-ads.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1972
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:06 GMT
etag: "8e90efe318aa7f9f7b90dbf3859c2300"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: ns46cQ1QdICERQmBsTCM0y2WuaStQm7b
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ASVxuReMa2_5o4zXwnr1yTiPWW1tPf0IK2KrncMTRkMKVa6_e6Lrfw==
age: 6785007
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (5487)
Size:   1972
Md5:    8e90efe318aa7f9f7b90dbf3859c2300
Sha1:   08fa1ec50d5fd5a77f0e2819446d1252899d5df8
Sha256: 0ed2c8008c594ad71730c46573862b9a2c76a2627c7253ba6cd01ea82508e951
                                        
                                            GET /next-integrations/integrations/quora-conversion-pixel/1.0.2/quora-conversion-pixel.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1184
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "55a451feb4984d1dd331f30d1551af36"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: jBq1W5CPdo1VUOQqhi6_ywpJWGvUAb48
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: y3kDlBtQMen8fHe8gAnJ7J_fUCeKzI0lvFHPD1OH3YtWvmfSezqgTA==
age: 6785007
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2488)
Size:   1184
Md5:    55a451feb4984d1dd331f30d1551af36
Sha1:   878f3947f8fa6e88d6e5ef4f2fe4421d3689009f
Sha256: b29adb7d83cedc23b216bad4e6f392b829e8cad93e0a4c3a40ff8b9f0f9af8c0
                                        
                                            GET /next-integrations/integrations/facebook-pixel/2.11.4/facebook-pixel.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 3271
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "11d09c60390d4846b90b372bd58cf329"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: OvTzgbLXtChbEoW.LGjeIXq_ezxD0Xij
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9mbu3nSgO-w5Ql6P-PfTt740ATdH6EywWn8BD1rexI47PnFg2LU4BQ==
age: 6785007
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (10360)
Size:   3271
Md5:    11d09c60390d4846b90b372bd58cf329
Sha1:   5a0420772b5952092e5e4e495e6d20a75be5595d
Sha256: 695f75812718e9986803f675ca57b275118fa8cb4a8593e4bf09289229fc5fe9
                                        
                                            GET /next-integrations/integrations/hotjar/1.4.0/hotjar.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1336
date: Wed, 02 Nov 2022 00:43:13 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:48:00 GMT
etag: "4cd7c93a55ce331d264d9a857bd044ed"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: 978iMiKKNdIObkMbEwfWedn2eTs8j_9i
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: C6T7l4iY4jbxrHlavq63FUyiyrC7avrBxTPXUiyp-8LcGmo0iVEkGQ==
age: 1972805
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2744)
Size:   1336
Md5:    4cd7c93a55ce331d264d9a857bd044ed
Sha1:   8686a559163e604917f7da8134a856ed472f78d3
Sha256: 7ad1bb509b58c14fc222c76eb6bf2359cc66a8846cf13d6a76e98b126f935005
                                        
                                            GET /next-integrations/integrations/fullstory/3.1.0/fullstory.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 2169
date: Fri, 02 Sep 2022 16:34:01 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "d3e47a7eac6a85c7748e3e6a73c930fc"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: TzcJdrfV4qJvi77XmWnv9B9omkbIekkA
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0TWNc_AjYqwzj1noKGkRDTGvMDOzMmTvT5r60zxNKDKeutPGYm2U0g==
age: 7186155
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (5103)
Size:   2169
Md5:    d3e47a7eac6a85c7748e3e6a73c930fc
Sha1:   446636b2d4410e452bdc70aa9ad6b381127e74aa
Sha256: c227903766801adcec107ebd7703e138f2c4e03683ff58d02e2a287ff808c7d9
                                        
                                            GET /next-integrations/integrations/pendo/1.1.3/pendo.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1296
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "695bfc9a51be5d199c2bd1a0bbe8af4c"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: Jf0I3ZY_tS1GoAC0ONxzJiIDY4jV7PMV
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: acrZTwop40kGeobYpGoxdlh9cpX3wpRCEK0dlwOUQn8yoiGuUB_vYw==
age: 6785007
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2755)
Size:   1296
Md5:    695bfc9a51be5d199c2bd1a0bbe8af4c
Sha1:   350fa27b79585bd313c306ac72e75c207ed9368a
Sha256: f509d19d9de86b3f90f4e3835317bbd1194c0941d731ee5345b227028cf2df37
                                        
                                            GET /next-integrations/integrations/google-adwords-new/1.2.1/google-adwords-new.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1637
date: Wed, 07 Sep 2022 07:59:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "42d5be27ccbd8a0a8aafd8ba7a7470c7"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: ZzaTlIznfjCus3n0Cq8cGcww_7z729XB
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YBZIsTy9j6Uno9ZDs239GqKx1pFemu74KXC7_p01UgTsKXSMDD6gYA==
age: 6785007
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3990)
Size:   1637
Md5:    42d5be27ccbd8a0a8aafd8ba7a7470c7
Sha1:   c8b2598bf3e43d437b4f45219e7bdc74a9db952b
Sha256: 6503cd0e435619365dc44a1347b86b672d9e860ae258f4321903aabb854c376f
                                        
                                            GET /next-integrations/integrations/vendor/commons.54701049fd6fb8497e9e.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 22174
date: Wed, 07 Sep 2022 07:59:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:03 GMT
etag: "7741fd16ad2418cd17ab981f8207b106"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: mb97YHCQnVYMzMj70hHDbCO4ylFPlzfU
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RvHTcbYPkFANT5qZmn7AGkTsH3AH6XPn-iyQMxgwLUgZgeT1XvNwJg==
age: 6785007
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size:   22174
Md5:    7741fd16ad2418cd17ab981f8207b106
Sha1:   13d45dddf2bc6331a72ea781098dafdf715a13e7
Sha256: c66490dc7f609c24fb66b5aeea8b7142f0d183d2075381daa817002b3c25b375
                                        
                                            GET /next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 22177
date: Thu, 29 Sep 2022 11:56:07 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 21:38:18 GMT
etag: "befb217271e2e926c7d898f1c85f6cb7"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: Z.cz1sApkVz0CAwS1aXBsP5bZXvNz24o
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dQxULltRiygG8xCu9fBQSafEIowDtNOjoJo007ol0KRAfvMCMb2BJQ==
age: 4870031
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size:   22177
Md5:    befb217271e2e926c7d898f1c85f6cb7
Sha1:   b6ca8f0b9eb7ddebc916cbc77eddab8532216748
Sha256: 21c28b41965eaf22aae5ee670f71227bd2d8fd32a024d62864873f7c8621e8f4
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /analytics-next/bundles/ajs-destination.bundle.f10d3096539d72f6123e.js HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 21 Nov 2022 22:05:05 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 21 Nov 2022 21:55:23 GMT
etag: W/"3fe4d92339c7d21c57f0044fcdcf5274"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: huwLcns8tlBQot9ZR4JqUhF2zWMkyyhT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: e1UqkB1nXY1TuXvkUM4bUnFol5bfQsqGbF5KlRaDdgc0V3tS8anNag==
age: 254293
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3982
Md5:    14a6b590f5a8b12206de6f09f0a907ca
Sha1:   1c2300fa41f748b1862016f7f8a99ce546863d3e
Sha256: 9d2abab0c4ee4f638d5537db3b045709a9d8789a16ee1f53efdbebe0f1a21c1c
                                        
                                            POST /gsalphasha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 28 Nov 2022 19:27:55 GMT
ETag: "e3c69dd4ec9869adb1f326c895749d6bf00eb996"
Last-Modified: Thu, 24 Nov 2022 19:27:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f4f9da0efa0b31-OSL


--- Additional Info ---
Magic:  data
Size:   1423
Md5:    efa198a31af7544f8c6738808ce478c8
Sha1:   e3c69dd4ec9869adb1f326c895749d6bf00eb996
Sha256: 4b1be92c3d8223427287aaa047861e4db42278a61eb1c22f64c47a9d4386fdbb
                                        
                                            GET /css2?family=Open+Sans:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500;1,700&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rev.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 20:43:17 GMT
date: Thu, 24 Nov 2022 20:43:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2277
Md5:    eba1ed32091c70463cd963cc7e69242a
Sha1:   b6f5e0771494dea2f0558ef0df76a6bd68e8b345
Sha256: 3e134af7336b9dc89ded82742c4618ee823341db34cea3daf6449334b4e03c7d
                                        
                                            GET /css2?family=Roboto:wght@100;300;400;500;700&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rev.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 20:43:17 GMT
date: Thu, 24 Nov 2022 20:43:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1251
Md5:    9f1de3e1a8b555743239226846f2e0f5
Sha1:   48c5b4f15fd635135ced43925d2da56241fc6cf6
Sha256: d02e915c0a06d8230c1ebfb97d5ae8c3b80b977dbc5fa45a53bf4a7d09d125cd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 07 Jul 2022 02:36:11 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 06 Jul 2022 19:57:02 GMT
etag: W/"3e448afdfea355c0f19700d04431ce7d"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: .S.P_5CF8iVZAAOf6jIwve4Ud8bceBxr
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 88numEPJw0qsjIxDhQ5KyJ1ZVkMFXK75UQD6RDY-eHij5XYvPrYdeQ==
age: 12161226
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   47904
Md5:    09b54f71910e83daa360879caf2e10fc
Sha1:   f38f170ee619fb8a0807f6819fc505c157219c5e
Sha256: 5926f5e61c4180bb7b433fd6a49785a7b523fe00e640c99cf9855c943d46cda8
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rev.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 54026
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "77239B5A9D5638F9139CA8FAEE625E3DEAF34C1758AC108BD9EE0B66E9795395"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4126
Expires: Thu, 24 Nov 2022 21:52:03 GMT
Date: Thu, 24 Nov 2022 20:43:17 GMT
Connection: keep-alive

                                        
                                            GET /agent/static/dab970e7-a0d4-4e86-407e-3536dbfcc619/pendo.js HTTP/1.1 
Host: cdn.pendo.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.115
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 132077
x-guploader-uploadid: ADPycdtYENfK4an_L32-5VlAyE5ldV76VRPlAVBd62afHJ3u4bZoTvrSoM3ftsF5I8XZ53uXZL2xuGIsouut1yNnnTS_NQ
last-modified: Thu, 17 Nov 2022 19:10:51 GMT
x-goog-generation: 1668712250912401
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 132077
content-encoding: gzip
x-goog-hash: crc32c=ngH35A==, md5=tH/pkDtf6iTmhG0es0hBBA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Thu, 24 Nov 2022 20:43:17 GMT
expires: Thu, 24 Nov 2022 20:47:10 GMT
cache-control: max-age=450
etag: "b47fe9903b5fea24e6846d1eb3484104"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1BwMTyfKhJgkERrBnU9IV3rdPCOUNn5KRqkrRSTsGsgEA5tF9FfotQ==
age: 217
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47462)
Size:   132077
Md5:    b47fe9903b5fea24e6846d1eb3484104
Sha1:   a5193a7968c44e71c71d9221c523e2d06705f689
Sha256: 7fd2d0bafeb815d227f7b63db5634435299a6eccde25b0652aee646e5f2ba903
                                        
                                            HEAD / HTTP/1.1 
Host: adblockanalytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.70.112.88
HTTP/2 301 Moved Permanently
content-type: text/html
                                        
server: nginx
date: Thu, 24 Nov 2022 20:43:17 GMT
content-length: 162
location: https://www.adblockanalytics.com/
X-Firefox-Spdy: h2

                                        
                                            GET /analytics-next/bundles/870.bundle.8c2ad2c20faa7f50ccdf.js HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         54.230.111.73
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 21 Nov 2022 22:05:03 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 21 Nov 2022 21:55:23 GMT
etag: W/"6182a27f8db24c6fe6a8590a0884f2e7"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: pJ4eZep8qs58gRd5ke8RmJ_VgyNlBi51
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZvP7MPkwSvZGHO2vqznm5T6BP2tMkFQDpVQg8Y8pdhrxBK7nvVLwwg==
age: 254294
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   5546
Md5:    ab7df404b8e83a1952294ba10efa5bed
Sha1:   2c973695632f4ee482c419026ac03fad1964a342
Sha256: 99407be5de13b6e9c7d6befe2002b7dcdef8fb4ecaa2c9fde396968bb9eaef4b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /qevents.js HTTP/1.1 
Host: a.quora.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.159.153.247
HTTP/2 200 OK
content-type: text/plain
                                        
date: Thu, 24 Nov 2022 20:43:17 GMT
x-amz-id-2: jHbk68zF0oCrN99I6TpiQ8LNg0dDTKL0BkbZQKZkL1zB85BMiiIcpjSQWNebJHGDeWUqTCN88Lg=
x-amz-request-id: 4K18RXATE8CH2H8E
last-modified: Fri, 18 Mar 2022 00:16:52 GMT
etag: W/"47078e63380c6b0cbbfb6d8508b25ee7"
x-amz-meta-s3cmd-attrs: atime:1647562609/ctime:1647562609/gid:150037/gname:ezhang/md5:47078e63380c6b0cbbfb6d8508b25ee7/mode:33204/mtime:1647562609/uid:150037/uname:ezhang
cache-control: public, max-age=14400
x-amz-version-id: vyBstMTGyA6m5sV66zq8xsypUg.tAOk.
cf-cache-status: HIT
age: 9735627
expires: Fri, 25 Nov 2022 00:43:17 GMT
set-cookie: __cf_bm=DJq8n3GHQ6x4JAvYmMRZF0rV_L8e6rSV3zgvfvUCukI-1669322597-0-ARigG6ihNgy/zPiN7F/9YlfNW7kRhUPzafXKnwdGwlqwqUK4mlLMJakk0yhZgmhThXEw3ehQr/Y+TD2fEl+LDLg=; path=/; expires=Thu, 24-Nov-22 21:13:17 GMT; domain=.quora.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f4f9dbff090b02-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   14586
Md5:    aa3e4f85feae9a38ff9a1f50c8b6f94f
Sha1:   2cf150a50053f792f5e08372c6a06e739db14659
Sha256: d11ce74d14ffb7e3cc82ae2eec4d376987584067137e44531e835ffb3aa9a05f
                                        
                                            GET /gtag/js?id=AW-1007079899 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 20:43:17 GMT
expires: Thu, 24 Nov 2022 20:43:17 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 71120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10603)
Size:   71120
Md5:    c88d75baf041d20d6ea10a2af5fb63b7
Sha1:   11c23631419ca8e24cede3e83f40c82fdad6337e
Sha256: 1fa00a17111d811c2a98a651de20fe2252915bb424a4b93f983b80b3646cfe22
                                        
                                            GET /account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: AWSALB=vzUfI2/P0Ivjov/gNAM24FGrGRKxvKx3ZqQRRM0RHDhmFSRATJYMgmVaKHmZWHbfRuNL8/IyEA57UnFUZHhYJ4WvaGs3b1kaQYZ5YlzqDnAktZbF0eG0qeWKliKu; AWSALBCORS=vzUfI2/P0Ivjov/gNAM24FGrGRKxvKx3ZqQRRM0RHDhmFSRATJYMgmVaKHmZWHbfRuNL8/IyEA57UnFUZHhYJ4WvaGs3b1kaQYZ5YlzqDnAktZbF0eG0qeWKliKu
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

                                         
                                         54.230.111.92
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:16 GMT
set-cookie: AWSALB=oZ658jJDUEm2qV10lHZho3CsxXd4Hmw+6BL6MkJHGfsNGnvVI+D1p2ga7DxwFEM7hV+bvDKvRePl+EJLeq/XXLikthjXbiqY8jv5Twl7zOfJncaJeILZFLpy6Wvk; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/ AWSALBCORS=oZ658jJDUEm2qV10lHZho3CsxXd4Hmw+6BL6MkJHGfsNGnvVI+D1p2ga7DxwFEM7hV+bvDKvRePl+EJLeq/XXLikthjXbiqY8jv5Twl7zOfJncaJeILZFLpy6Wvk; Expires=Thu, 01 Dec 2022 20:43:16 GMT; Path=/; SameSite=None; Secure __RequestVerificationToken=xWlw_yrlgTQicnDFZEOPLU20N_6CFf7XhDO4zCrPHG85hNWOZpVwqYWBLz90YuEm8Jh7ZV8LdFqkyLDvoHWxtN_6A2E1; path=/; samesite=strict; httponly TempData=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/
cache-control: no-store,no-cache
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=2592000
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F3nR6gle8mG9OybRsdN4RU8rMjKO7h60sf6HLtmrt-seTImgl91ylw==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Generic INItialization configuration []\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (989), with CRLF line terminators
Size:   317931
Md5:    7b3b3d573a91816630e514600b697d1e
Sha1:   46b781a95f910cbd408b6a2da3d5cd1b1fd905db
Sha256: d8627409767f77b63615e7fce529659f9d6066bd8c3684d28b52c59d3b5efd20
                                        
                                            HEAD / HTTP/1.1 
Host: www.adblockanalytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.70.112.88
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Thu, 24 Nov 2022 20:43:17 GMT
vary: Accept-Encoding
cache-control: max-age=0, no-cache
content-language: en-US
x-powered-by: PleskLin
strict-transport-security: max-age=15768000; includeSubDomains; preload
content-encoding: br
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "13AE755909E9DA73553F64925E7CECE847991F33830922761C604759D7D2944A"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12396
Expires: Fri, 25 Nov 2022 00:09:54 GMT
Date: Thu, 24 Nov 2022 20:43:18 GMT
Connection: keep-alive

                                        
                                            GET /tags/11063/tag.js HTTP/1.1 
Host: www.mczbf.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.70
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 24 Nov 2022 20:21:58 GMT
X-Request-ID: a56c54de-6c35-11ed-a306-09550a9a5699
Server: nginx
Cache-Control: max-age=1800
Content-Encoding: gzip
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BArR8rRYGSIMy_v_zGm3jPiDUZjgN1KPKow1muVT1v8tZ90wsMIpgw==
Age: 1280


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (46775)
Size:   15757
Md5:    3445a92dc596d8eb0cd8d797eb78e921
Sha1:   8e2cb505fb9994585a520953c6877d9f2e3396cb
Sha256: c3140729cc063a1cfadb003e14779fe7a6dfa6713a09cfd53923ff1bb6587d38
                                        
                                            GET /ads/pixel.js HTTP/1.1 
Host: www.redditstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.140
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 07 Nov 2022 16:45:46 GMT
etag: "3528fd00b652f61a266eb584d96f4fcc"
cache-control: public, max-age=60
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 24 Nov 2022 20:43:18 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25224)
Size:   7722
Md5:    3528fd00b652f61a266eb584d96f4fcc
Sha1:   d89e16aa1323c6c4f1ed3941122020684a599361
Sha256: 77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637e70a8-117"
Server: ECS (amb/6B77)
Content-Length: 279

                                        
                                            GET /policy HTTP/1.1 
Host: www.sjwoe.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.3
HTTP/2 200 OK
content-type: application/json
                                        
content-length: 28
date: Thu, 24 Nov 2022 01:39:50 GMT
x-amzn-requestid: cdb7e6af-466a-475b-ab4e-597d0625ab2b
access-control-allow-origin: *
x-amz-apigw-id: cFS4GGIloAMF8XQ=
cache-control: max-age=3600
x-amzn-trace-id: Root=1-637ecb66-4fbac9940426803142b5a942;Sampled=0
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IFMeH_LKSSdyFr1c8pwivd-abxj5RxnhoTMC9wvrBB-VgBrckXs1tA==
age: 68608
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   28
Md5:    cb03d8f455e88d7bb7050795f9f9cfc9
Sha1:   ad15e9674b599d400994e2e83d094e696c76eb98
Sha256: 4bfe3fd63b2ce813a2e3e1252146acf89e82d30222ca39161cf68086449cd64b
                                        
                                            GET /_/ad/baa4434eba124407b506792409258530/pixel?j=1&u=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&tag=ViewContent&ts=1669322597409 HTTP/1.1 
Host: q.quora.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Cookie: __cf_bm=DJq8n3GHQ6x4JAvYmMRZF0rV_L8e6rSV3zgvfvUCukI-1669322597-0-ARigG6ihNgy/zPiN7F/9YlfNW7kRhUPzafXKnwdGwlqwqUK4mlLMJakk0yhZgmhThXEw3ehQr/Y+TD2fEl+LDLg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         100.25.7.120
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,cb04cc16187ed603eb50cbc85417081c,10.0.0.34,3070,91.90.42.154,,80695646398,1,1669322598.180,0.001,,.,0,0,0.000,0.000,-,0,0,197,172,86,10,34729,,,,,,-,
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            POST /11063/pageInfo HTTP/1.1 
Host: www.mczbf.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: application/x-www-form-urlencoded
Origin: https://www.rev.com
Content-Length: 454
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.70
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 68
Connection: keep-alive
Date: Thu, 24 Nov 2022 20:43:18 GMT
X-Request-ID: a05cad43-6c38-11ed-b124-53eb09113031
Server: nginx
Access-Control-Allow-Origin: *
Cache-Control: no-store
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2gfm9DqlEUZoomngRPjgC2iZ4x72ESKn_ClrtagzRA-aB9IE08msmw==


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size:   68
Md5:    91e42db1c66c0b276abf6234dc50b2eb
Sha1:   c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
Sha256: 63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
                                        
                                            GET /A3461866-f171-406d-97bd-3eec5071f77f1.js HTTP/1.1 
Host: utt.impactcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.186.249.72
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
x-guploader-uploadid: ADPycdudxild9zEXymBp-Ccgkcr4jtn93ek9SkHO7nlJs2oEqueNil9QCVRobHOGsPj4qBBspFrLvVRVxbzfu5duSocgAoGVCaZu
x-goog-generation: 1668808035096983
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13116
content-encoding: gzip
x-goog-hash: crc32c=Wh2iug==, md5=xuhZ4v/lveqILnk5eqbg3w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 13116
server: UploadServer
date: Thu, 24 Nov 2022 20:43:18 GMT
expires: Thu, 24 Nov 2022 20:48:18 GMT
cache-control: public,max-age=900,s-maxage=300
last-modified: Fri, 18 Nov 2022 21:47:15 GMT
etag: "c6e859e2ffe5bdea882e79397aa6e0df"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (42298), with no line terminators
Size:   13116
Md5:    c6e859e2ffe5bdea882e79397aa6e0df
Sha1:   1576b07b23ca5a68096f781750cbfe46dc6126be
Sha256: cb7ba591091147c56f971d0c41b15da7dbbdbc3c1a4c2e8a9fef547fdbff52a4
                                        
                                            POST /s/gts1d4/H52z8kwlIbA HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 24 Nov 2022 20:41:08 GMT
expires: Thu, 24 Nov 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 130
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            GET /bat.js HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         204.79.197.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: private,max-age=1800
content-length: 11421
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=2DE84A29E94B69D61825584FE81C6818; domain=.bing.com; expires=Tue, 19-Dec-2023 20:43:18 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 131BDB7BFB4A466E862866BCFD818DA6 Ref B: OSL30EDGE0318 Ref C: 2022-11-24T20:43:18Z
date: Thu, 24 Nov 2022 20:43:17 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Size:   11421
Md5:    22e2e3226eb5ada04929a2e43307eeda
Sha1:   04615fa88f80567974bdeb0f103ca5909746ebd7
Sha256: 41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1697
Cache-Control: max-age=118290
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637efbd7-1d7"
Expires: Sat, 26 Nov 2022 05:34:48 GMT
Last-Modified: Thu, 24 Nov 2022 05:06:31 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /li.lms-analytics/insight.min.js HTTP/1.1 
Host: snap.licdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.210
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
                                        
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=61334
date: Thu, 24 Nov 2022 20:43:18 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12961)
Size:   4581
Md5:    c1a25b303b61b25e995516f5559bcdea
Sha1:   3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
Sha256: 2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6569
Cache-Control: max-age=100144
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637ea1ed-2d7"
Expires: Sat, 26 Nov 2022 00:32:22 GMT
Last-Modified: Wed, 23 Nov 2022 22:42:53 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 727

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /Content/img/rev/favicons/apple-touch-icon.png?v=RymW3lzQY9 HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%26loadFrom%3DDocumentDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=cEuDeWp1CcAAqHZ5BaTcEZ76KdJaERJMUCUTk0YwssDYLQC/A8HoG54mlJ2/WvgAKEkAeRP9fp5j7PLWWyJYSFFDJS04FsnWS1FLv0NGBUzUJ1aOBsOhEwfbzQnX; AWSALBCORS=cEuDeWp1CcAAqHZ5BaTcEZ76KdJaERJMUCUTk0YwssDYLQC/A8HoG54mlJ2/WvgAKEkAeRP9fp5j7PLWWyJYSFFDJS04FsnWS1FLv0NGBUzUJ1aOBsOhEwfbzQnX; __RequestVerificationToken=xWlw_yrlgTQicnDFZEOPLU20N_6CFf7XhDO4zCrPHG85hNWOZpVwqYWBLz90YuEm8Jh7ZV8LdFqkyLDvoHWxtN_6A2E1; ft_tz=0; _gcl_au=1.1.570574546.1669322598; _rdt_uuid=1669322597804.afa07749-fbc4-413f-bcf9-5e8ea34514a5; _ga_6P9JYJWB5F=GS1.1.1669322597.1.0.1669322597.0.0.0; _ga=GA1.1.322187190.1669322598; cjConsent=MHxZfDB8Tnww; IR_gbd=rev.com; IR_16349=1669322597922%7C0%7C1669322597922%7C%7C
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.92
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 3553
date: Thu, 24 Nov 2022 20:43:18 GMT
set-cookie: AWSALB=YO2gMyBj/JNtaRb7b/R/QwMqwa5TRGr2Xpk+Eq1ruegzvkDpRQWLws6Rr2BmbBqyCjehpa7JCSL5wDXpIyQ1upkSWZccxiiQylqmgpWtQk35zoGpXiW0lbOySOI+; Expires=Thu, 01 Dec 2022 20:43:18 GMT; Path=/ AWSALBCORS=YO2gMyBj/JNtaRb7b/R/QwMqwa5TRGr2Xpk+Eq1ruegzvkDpRQWLws6Rr2BmbBqyCjehpa7JCSL5wDXpIyQ1upkSWZccxiiQylqmgpWtQk35zoGpXiW0lbOySOI+; Expires=Thu, 01 Dec 2022 20:43:18 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Thu, 17 Nov 2022 00:58:45 GMT
accept-ranges: bytes
etag: "1d8fa1fbe3c9d61"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WBquv9xMeThZFBv3HkO9_APPSOEbV0w9xbjd1JXZTsRdYWolACtPJQ==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 180 x 180, 8-bit grayscale, non-interlaced\012- data
Size:   3553
Md5:    9d8e5b045b992041f44106b7f20ac51d
Sha1:   dc5635c2f00e3956c8cd4edddd71a1c9cf593037
Sha256: 21b18b9d67d4a16674df0a00c683a923f68905310e50852c22b1543557e04a84
                                        
                                            POST /s/gts1d4/7oY8-EgWmNE HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6102
Cache-Control: max-age=128145
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637f1121-117"
Expires: Sat, 26 Nov 2022 08:19:03 GMT
Last-Modified: Thu, 24 Nov 2022 06:37:21 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /uwt.js HTTP/1.1 
Host: static.ads-twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.84.157
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Thu, 24 Nov 2022 20:43:18 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1657-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57596), with no line terminators
Size:   15375
Md5:    573e6a7f86f6f3063763360ef0672c01
Sha1:   b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
Sha256: 02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: G/aRO6oX38amXD5io7TDWWkqaIwnhTNX3GJojwZrRjJzJ7VlktdnPvuVU0AGVwKEYDIAwNABNbNczOfC+MSR+A==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 20:43:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   27340
Md5:    44ecaa3c2a4929a40141edc4540aaf84
Sha1:   f29a573182333b2500d41bfc389d6c5232dfb348
Sha256: 6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
                                        
                                            GET /libs/mixpanel-2-latest.min.js HTTP/1.1 
Host: cdn.mxpnl.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         130.211.5.208
HTTP/2 200 OK
content-type: text/javascript
                                        
x-guploader-uploadid: ADPycdsc29Lnxq_CSpv5DZlIfEtaQqm7KTrAOSDEFmg_h_NlBvGfmxk0NPU6biDXvggxR_VVcjNJNe29jwMZBbUAU9NuvFVGs1BL
x-goog-generation: 1645129310876382
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17435
content-encoding: gzip
x-goog-hash: crc32c=PPVzJA==, md5=yqdiCH6ddc7MNLXWYmy3uQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 17435
access-control-allow-origin: *
server: UploadServer
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
date: Thu, 24 Nov 2022 20:39:23 GMT
expires: Thu, 24 Nov 2022 20:49:23 GMT
cache-control: public,max-age=600
age: 235
last-modified: Thu, 17 Feb 2022 20:21:50 GMT
etag: "caa762087e9d75cecc34b5d6626cb7b9"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (755)
Size:   17435
Md5:    caa762087e9d75cecc34b5d6626cb7b9
Sha1:   fcc68d485c2f42e0f880260c3e104cedf50d0d11
Sha256: dc0ec55efae4c1f0ff095cf05133cc835e1cc4ff7906d3b7a2d0d86789bfe145
                                        
                                            GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1 
Host: vars.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.105
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: H2LA4DyfuvFS3KEPIqa7I-oTsdrkGVRcwEwl9zqy0HIuiUvKOYAXjg==
age: 113592
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size:   1035
Md5:    e0652b84b7b3b650769c759fc520c3f8
Sha1:   0b55d6e28613350c7f41b88f19e726e6751ad03b
Sha256: 94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
                                        
                                            GET /gtm/optimize.js?id=GTM-5HQQJK2 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 20:43:18 GMT
expires: Thu, 24 Nov 2022 20:43:18 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 49305
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12992)
Size:   49305
Md5:    22836bbc91846bd6b8a851a1aed4a088
Sha1:   ab851061427803cdb30a7e59c225051466a842ea
Sha256: 56b56ac654b75c83e49edd299db54fc40b178b26d5f5445110052a8dcb1236dc
                                        
                                            GET /pagead/viewthroughconversion/1007079899/?random=1669322597572&cv=11&fst=1669322597572&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&tiba=Sign%20In%20-%20Rev&auid=570574546.1669322598&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.194
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 20:43:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1057
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 20:58:18 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2361), with no line terminators
Size:   1057
Md5:    e4ee5e89785aa5b2dfe076191a892a60
Sha1:   af963615f1f47a08d3c8c8a487d545b849dcb556
Sha256: 0a1a5611851d9dc1f182c992e8b64ebf39094d9c85dd9103376741924d58a199
                                        
                                            GET /attribution_tracking/conversions/2625.js?p=https://www.rev.com/account/auth/login?returnUrl=https%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink&viewType=ExpiredToken&e= HTTP/1.1 
Host: tracking.g2crowd.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.30.73
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:18 GMT
cache-control: max-age=600, public
etag: W/"3dae93a05edd9dcfc1864b87178a31e0"
x-request-id: 0201402c-8b0c-4ee9-b983-d01a37af69db
x-runtime: 0.003965
strict-transport-security: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' *.g2crowd.com *.g2.com; connect-src 'self' *.g2crowd.com *.g2.com; font-src 'self' *.g2crowd.com *.g2.com; form-action 'self' *.g2crowd.com *.g2.com; frame-src 'self' *.g2crowd.com *.g2.com; img-src 'self' *.g2crowd.com *.g2.com; manifest-src 'self' *.g2crowd.com *.g2.com; media-src 'self' *.g2crowd.com *.g2.com; object-src 'self' *.g2crowd.com *.g2.com; script-src 'self' *.g2crowd.com *.g2.com; style-src 'self' *.g2crowd.com *.g2.com; worker-src 'self' *.g2crowd.com *.g2.com
cf-cache-status: DYNAMIC
set-cookie: _session_id=818a9b0a711b4c837284c9151260fefb; path=/; expires=Thu, 08 Dec 2022 20:43:18 GMT; HttpOnly; secure; SameSite=None __cf_bm=4Qj7uA51SqBlxVMu2Sz81FqrukT.D7ueytsjzKw8k3E-1669322598-0-AXfVQBQE9LP9fUy6qDseokCiW/XHYYqDAcV41OS/s7a5SBLWMIv83YLLKEFyJYX50ClKxHN32UWqfaBX4hoWY/o=; path=/; expires=Thu, 24-Nov-22 21:13:18 GMT; domain=.g2crowd.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76f4f9deabcdb4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   62
Md5:    5a9bf92efb74ea280ed315f2113d1dd1
Sha1:   aa3d70ceb3b6504ecb4cf03f4d83386abfe8fb3b
Sha256: 0b767a788879b7659ba440650bc0ad5e0c63ce8bca6cc67b0964acf3327cdb65
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1697
Cache-Control: max-age=118290
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637efbd7-1d7"
Expires: Sat, 26 Nov 2022 05:34:48 GMT
Last-Modified: Thu, 24 Nov 2022 05:06:31 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2530
Cache-Control: max-age=96105
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637ea1ed-2d7"
Expires: Fri, 25 Nov 2022 23:25:03 GMT
Last-Modified: Wed, 23 Nov 2022 22:42:53 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 727

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5772
Cache-Control: max-age=99734
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637ea370-116"
Expires: Sat, 26 Nov 2022 00:25:32 GMT
Last-Modified: Wed, 23 Nov 2022 22:49:20 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 278

                                        
                                            POST /s/gts1d4/7oY8-EgWmNE HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /signals/plugins/identity.js?v=2.9.89 HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: D506BsT7zUTgX2Y4sDjuDhbZYnyY1kr7T2fB9ZNbnU0p8+E9Miiv1diSIlHBc/KFPrbmqQnTWaj7kPWmtWjc0A==
content-length: 20722
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 20:43:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (60008)
Size:   20722
Md5:    4ab212d67df0d744f74a6f6a257b2653
Sha1:   7844504c6b52741b4467b98856b2da4d2e276630
Sha256: 6b5ed11f9d9bfad094e0177b6339804dbdccfece80ea0636343349543ca69c63
                                        
                                            GET /modules.e1bdbadbcc63daea6270.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.96
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 68720
date: Thu, 24 Nov 2022 08:09:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "53db6c810ee48127f87a9c79e206fc67"
last-modified: Thu, 24 Nov 2022 08:08:08 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lepdoS9Is6ZX67Co_vD6858NMFDcDfUhD6F1N3avDsPaR4SpV7Ghwg==
age: 45252
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (48714)
Size:   68720
Md5:    53db6c810ee48127f87a9c79e206fc67
Sha1:   aa53e521ba10b23524afc519c6e6ba8d1eb5147c
Sha256: f89c4d3c17828a5c54ecc60f5107e2bfe92cb8b4622fb766fda6d1fca1c95fdd
                                        
                                            GET /p/action/4078409.js HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         204.79.197.200
HTTP/2 204 No Content
                                        
cache-control: private,max-age=1800
set-cookie: MUID=38364D34C1966FB524575F52C0C16E0D; domain=.bing.com; expires=Tue, 19-Dec-2023 20:43:18 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-powered-by: ARR/3.0
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8E50C67A3BBA47FABE153D01E2A0E824 Ref B: OSL30EDGE0318 Ref C: 2022-11-24T20:43:18Z
date: Thu, 24 Nov 2022 20:43:18 GMT
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /partner/56622/domain/rev.com/token HTTP/1.1 
Host: cdn.linkedin.oribi.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.78
HTTP/2 200 OK
                                        
content-length: 0
date: Thu, 24 Nov 2022 02:04:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4eFq8jU12oxN44cRxUFbup0HV51nVjRbCNsNSy9zRwKAC8z6flPMtg==
age: 67138
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /partner/56622/domain/rev.com/token HTTP/1.1 
Host: cdn.linkedin.oribi.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: application/json
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.78
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 24 Nov 2022 20:09:18 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EQRDrmM_hTKEF8wrFSmngqHp6qK9Bh3ycn4jeKMbRDpUPbi6MbKhbQ==
age: 2040
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E821136385B83549CF4661B8D084C5A14492719AA466DC7700045C62D1A538A6"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10783
Expires: Thu, 24 Nov 2022 23:43:01 GMT
Date: Thu, 24 Nov 2022 20:43:18 GMT
Connection: keep-alive

                                        
                                            GET /pagead/1p-user-list/1007079899/?random=1669322597572&cv=11&fst=1669320000000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&tiba=Sign%20In%20-%20Rev&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3883758379&rmt_tld=0&ipr=y HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 20:43:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/1007079899/?random=1669322597572&cv=11&fst=1669320000000&bg=ffffff&guid=ON&async=1&gtm=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&tiba=Sign%20In%20-%20Rev&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3883758379&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 20:43:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /collect?v=2&fmt=js&pid=56622&time=1669322598129&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.42.14
HTTP/2 302 Found
                                        
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D56622%26time%3D1669322598129%26url%3Dhttps%253A%252F%252Fwww.rev.com%252Faccount%252Fauth%252Flogin%253FreturnUrl%253Dhttps%25253A%25252F%25252Fwww.rev.com%25252Ftranscript-editor%25252FEdit%25253Ftoken%25253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%252526loadFrom%25253DDocumentDeeplink%2526viewType%253DExpiredToken%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQIOfmxPzZm8IgAAAYSrYWmk4BiVUhv480NijLqqkmZi-UPi1adlBWUImFr7Czt-tKFs-cfZyxS3iw; Max-Age=2592000; Expires=Sat, 24 Dec 2022 20:43:18 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure AnalyticsSyncHistory=AQKC52oQOuhB5QAAAYSrYWmkowIhEnLI9-0R3YYhAGABns0uqjgmAo7qvlw6A0hM7z5ATrXIQDsnm_p3ygSZCQ; Max-Age=2592000; Expires=Sat, 24 Dec 2022 20:43:18 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&62af0c90-ba80-41cb-8043-70fd20edd4bd"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 24-Nov-2023 20:43:18 GMT; SameSite=None lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2435:u=1:x=1:i=1669322598:t=1669408998:v=2:sig=AQG3NTLJUTdT5pPnbnXtVSOV_f6JQPeO"; Expires=Fri, 25 Nov 2022 20:43:18 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXuPXSEjPtD8DfR51A3OA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: C87B40F6C8334070B0B57B01F8FE9C67 Ref B: OSL30EDGE0519 Ref C: 2022-11-24T20:43:18Z
date: Thu, 24 Nov 2022 20:43:18 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.22
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Thu, 24 Nov 2022 20:43:19 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 24 Nov 2022 20:01:14 GMT
Expires: Fri, 25 Nov 2022 20:01:14 GMT
ETag: "f6f022ea485408cc542faf497d22f4ca52d81f39"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    b48287c33e019a23450d718ddadf8d36
Sha1:   f6f022ea485408cc542faf497d22f4ca52d81f39
Sha256: e86f3b53683988f43addb83372c5ca24ce667f7adcffacb7ba64dfc93bb4966f
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3846
Cache-Control: max-age=144928
Date: Thu, 24 Nov 2022 20:43:18 GMT
Etag: "637f5b80-13a"
Expires: Sat, 26 Nov 2022 12:58:46 GMT
Last-Modified: Thu, 24 Nov 2022 11:54:40 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 314

                                        
                                            POST /g/collect?v=2&tid=G-6P9JYJWB5F&gtm=2oeb90&_p=956425922&cid=322187190.1669322598&ul=en-us&_rdi=1&_geo=1&_s=1&sid=1669322597&sct=1&seg=0&dl=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&dt=Sign%20In%20-%20Rev&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.32.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://www.rev.com
date: Thu, 24 Nov 2022 20:43:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /cookie-banner-public/v1/activity/view HTTP/1.1 
Host: js.hs-banner.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.154.85
HTTP/2 200 OK
content-type: application/octet-stream
                                        
date: Thu, 24 Nov 2022 20:43:18 GMT
content-length: 0
access-control-allow-origin: https://www.rev.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76f4f9e2881bb503-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /21451281.js HTTP/1.1 
Host: js.hs-scripts.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.212.204
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:18 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.rev.com
access-control-max-age: 3600
cache-control: public, max-age=60
cf-bgj: minify
cf-polished: origSize=968
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 99d4960d-698e-40ad-b4b9-ce60a24dddd4
x-trace: 2B55FCF0553D42602FFDBBE4F99A631F5C3D7F22E9000000000000000000
last-modified: Thu, 24 Nov 2022 20:43:12 GMT
cf-cache-status: HIT
expires: Thu, 24 Nov 2022 20:44:18 GMT
server: cloudflare
cf-ray: 76f4f9de69240b4d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (861), with no line terminators
Size:   1128
Md5:    93cf0b39abbdc9e108bffc931ab95985
Sha1:   9de96f3e06d1ebf9471a6ece018d3301f8867c70
Sha256: 11408c454d47439c9d02d958864bc120842e7a62cac7b35791e2e79780251570
                                        
                                            GET /i/adsct?bci=3&eci=2&event_id=10c8064a-0dcc-4029-8063-4dbe12ab56ab&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=edb8ccf9-afd8-4f61-b6a4-42e7413d36e7&tw_document_href=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxh9s&type=javascript&version=2.3.29 HTTP/1.1 
Host: t.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.244.42.133
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:18 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=fdedd3af-6e54-4b32-839d-7f6617892059; Max-Age=63072000; Expires=Sat, 23 Nov 2024 20:43:18 GMT; Path=/; Domain=t.co; Secure; SameSite=None
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 04fcdce81ac9f70d
strict-transport-security: max-age=0
x-response-time: 104
x-connection-hash: 6002972adde5fee8f69d57cfde77fcc53ca493ab517c35f1f08ae93ef16e9c79
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            POST /cookie-banner-public/v1/activity/view HTTP/1.1 
Host: js.hs-banner.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: application/json
Content-Length: 133
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.64.154.85
HTTP/2 204 No Content
                                        
date: Thu, 24 Nov 2022 20:43:19 GMT
x-trace: 2BDEE6338FB91D4BC697E47424E3104577CDA7DD83000000000000000000
x-hubspot-correlation-id: 7a6ae881-1dbb-412f-80e1-470d2ea3bcb8
access-control-allow-origin: https://www.rev.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76f4f9e369a8b503-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /action/0?ti=4078409&Ver=2&mid=183fac9a-f5dd-4f37-9628-cf8b00d77a84&sid=a0712a906c3811ed84e8733765acec87&vid=a07155706c3811ed9afc19ddf9d8b56b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Sign%20In%20-%20Rev&p=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&r=&lt=3474&evt=pageLoad&sv=1&rn=124766 HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         204.79.197.200
HTTP/2 204 No Content
                                        
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=14CE5391AA516E43374341F7AB066FB0; domain=.bing.com; expires=Tue, 19-Dec-2023 20:43:19 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4CD7DD4B1DD04F86954AC9C2CA7A4D14 Ref B: OSL30EDGE0318 Ref C: 2022-11-24T20:43:19Z
date: Thu, 24 Nov 2022 20:43:18 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4374
Cache-Control: max-age=100093
Date: Thu, 24 Nov 2022 20:43:19 GMT
Etag: "637eaa4e-139"
Expires: Sat, 26 Nov 2022 00:31:32 GMT
Last-Modified: Wed, 23 Nov 2022 23:18:38 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-18309154-6&cid=322187190.1669322598&jid=391712132&gjid=1905822233&_gid=1064159038.1669322598&_u=YADAAEAAQAAAACAAI~&z=461711617 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.150.154
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.rev.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 24 Nov 2022 20:43:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-18309154-6&cid=322187190.1669322598&jid=2105999232&gjid=2074916223&_gid=1064159038.1669322598&_u=aADAAEABQAAAACAAI~&z=1055270736 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.150.154
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.rev.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 24 Nov 2022 20:43:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            GET /tr/?id=658102074251173&ev=PageView&dl=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&rl=&if=false&ts=1669322598528&sw=1280&sh=1024&v=2.9.89&r=stable&a=seg&ec=0&o=30&fbp=fb.1.1669322598527.1062306709&it=1669322598238&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 24 Nov 2022 20:43:19 GMT
X-Firefox-Spdy: h2

                                        
                                            POST /rec/page HTTP/1.1 
Host: rs.fullstory.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: text/plain
Content-Length: 443
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.186.194.58
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://www.rev.com
content-encoding: gzip
date: Thu, 24 Nov 2022 20:43:19 GMT
content-length: 1432
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (4470)
Size:   1432
Md5:    85b8c8555f41d202ab9811670d87f400
Sha1:   65189fb94c996e99722c73508310be4fb725a472
Sha256: 3b7138c6a2cd867b0b3611d29a2ff67571959c2e3c040506036822fe9caf96e9
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E821136385B83549CF4661B8D084C5A14492719AA466DC7700045C62D1A538A6"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10782
Expires: Thu, 24 Nov 2022 23:43:01 GMT
Date: Thu, 24 Nov 2022 20:43:19 GMT
Connection: keep-alive

                                        
                                            GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D56622%26time%3D1669322598129%26url%3Dhttps%253A%252F%252Fwww.rev.com%252Faccount%252Fauth%252Flogin%253FreturnUrl%253Dhttps%25253A%25252F%25252Fwww.rev.com%25252Ftranscript-editor%25252FEdit%25253Ftoken%25253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%252526loadFrom%25253DDocumentDeeplink%2526viewType%253DExpiredToken%26liSync%3Dtrue HTTP/1.1 
Host: www.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.42.14
HTTP/2 302 Found
                                        
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=56622&time=1669322598129&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None bcookie="v=2&5c531e66-cc16-4ee3-8d55-207df9a3a444"; Domain=.linkedin.com; Expires=Fri, 24-Nov-2023 20:43:19 GMT; Path=/; Secure; SameSite=None bscookie="v=1&20221124204319ee0aec23-0671-45a6-8372-9b08bb1617b5AQFIUakzpmFNTPyizOaTtTAxD5byR9f2"; Domain=.www.linkedin.com; Expires=Fri, 24-Nov-2023 20:43:19 GMT; Path=/; HttpOnly; Secure; SameSite=None li_gc=MTswOzE2NjkzMjI1OTk7MjswMjFQXUMy+t52qw4a6JGVDYA2zBhY55ULgbYaWp7U33RQUg==; Domain=.linkedin.com; Expires=Tue, 23 May 2023 20:43:19 GMT; Path=/; Secure; SameSite=None lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2377:u=1:x=1:i=1669322599:t=1669408999:v=2:sig=AQE9ErzlGtDl0LADW3GAFogpA9dXAuqD"; Expires=Fri, 25 Nov 2022 20:43:19 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXuPXSKME8Sk3sX5syvKQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 158344261B174220A57FB7BADE67912F Ref B: OSL30EDGE0519 Ref C: 2022-11-24T20:43:19Z
date: Thu, 24 Nov 2022 20:43:18 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /i/adsct?bci=3&eci=2&event_id=10c8064a-0dcc-4029-8063-4dbe12ab56ab&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=edb8ccf9-afd8-4f61-b6a4-42e7413d36e7&tw_document_href=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxh9s&type=javascript&version=2.3.29 HTTP/1.1 
Host: analytics.twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.244.42.195
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:18 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_xka2lnzoOjT1i6CpwwrQYw=="; Max-Age=63072000; Expires=Sat, 23 Nov 2024 20:43:19 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: a27ec952153d511a
strict-transport-security: max-age=631138519
x-response-time: 107
x-connection-hash: fc34a15d91fbbf7197c817a7695a43cf96b8359df5e512c02f8ee3ed4c95be21
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:19 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 23:26:21 GMT
Expires: Mon, 28 Nov 2022 23:26:20 GMT
Etag: "8a67d16fd4cf61a03db32cc01cd374736a9357de"
Cache-Control: max-age=354780,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f4f9e6da1fb503-OSL

                                        
                                            GET /collect?v=2&fmt=js&pid=56622&time=1669322598129&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&liSync=true HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         13.107.42.14
HTTP/2 200 OK
content-type: application/javascript
                                        
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&f7d2b97e-48a2-4db4-8fd6-3018527e0af2"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 24-Nov-2023 20:43:19 GMT; SameSite=None lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2377:u=1:x=1:i=1669322599:t=1669408999:v=2:sig=AQE9ErzlGtDl0LADW3GAFogpA9dXAuqD"; Expires=Fri, 25 Nov 2022 20:43:19 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXuPXSPUAbp2u81mVQSAA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B9B6BEEAE12944F78F38F1B7F6A65377 Ref B: OSL30EDGE0519 Ref C: 2022-11-24T20:43:19Z
date: Thu, 24 Nov 2022 20:43:19 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST /s/gts1d4/S_oXU3H4Jpc HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/S_oXU3H4Jpc HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/S_oXU3H4Jpc HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /is HTTP/1.1 
Host: 100.20.58.101
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         100.20.58.101
HTTP/1.1 200 OK
content-type: text/plain;charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:19 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-length: 32
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   32
Md5:    62e14737f01a0d2ac1299b2b64f633eb
Sha1:   5dbb0496342c232de7d920b36014cea557a5b001
Sha256: 8a24778933cafbca6e8e1183a64bd0ea4e135b7327ad290d94065eb6ee127850

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /data/guide.gif/dab970e7-a0d4-4e86-407e-3536dbfcc619?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1669322599264&v=2.161.1_prod HTTP/1.1 
Host: data.pendo.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.107.204.85
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 24 Nov 2022 20:43:19 GMT
content-length: 42
access-control-allow-credentials: false
access-control-allow-headers: Origin,Accept,Content-Type,Authorization
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 600
x-content-type-options: nosniff
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /s/gts1d4/S_oXU3H4Jpc HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /data/ptm.gif/dab970e7-a0d4-4e86-407e-3536dbfcc619?v=2.161.1_prod&ct=1669322599255&jzb=eJxNkW9v2jAQxr-LpewVNCPO0gWpmgCHLutm-idsZdMUmcRQF2Mb5-LAqn73GoamSX7hu3vu8aOff70gOBiOhkhqVqMeWlrdNdyWILa-O0iSFEfRhzSNcNpDTjQCtC1F7RfK24ySWVmUcgzU8AkAab0BqyrdKjhpVCtlD7VWevkTgGmGYdh13YXl7qLS2_CsDVkLT6HUa6E-WQ6tVXMrr04LAR4F0dSf_9Z8BZapprLCQJ_Xx0i-l_lLgKegN1wFmKzcQ75XIrue7Gj2-edE3F1ykovrZEzvy0U_VzTdfYm-PccfKZH16usD0JvR2AxmyfNdu9o5RkaHdP74o8_-4GKazyQd7RuD8f0yD6LkSGtqfRZMiK7aLVdAODdSqM07J3hXeKhX2d4Iy-vimMiTMVabBg1fTqjPgHEaR69-xKx3KNgy_0cN_hYoHyfu0bnBwmyonVjwRivLtvw0_L6Y367d5ftod2Niuj4cP_AA3L8SJ_Hr7zcsFKD2 HTTP/1.1 
Host: data.pendo.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.107.204.85
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 24 Nov 2022 20:43:19 GMT
content-length: 42
access-control-allow-credentials: false
access-control-allow-headers: Origin,Accept,Content-Type,Authorization
access-control-allow-methods: GET,POST
access-control-allow-origin: *
access-control-max-age: 600
x-content-type-options: nosniff
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5979
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 20:43:20 GMT
Last-Modified: Thu, 24 Nov 2022 19:03:41 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=21451281&rcu=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin&pu=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&t=Sign+In+-+Rev&cts=1669322599246&vi=5d2c49fe588b1477cf17bd893ae3adc6&nc=true&ce=false&pt=1&cc=0 HTTP/1.1 
Host: track.hubspot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.19.154.83
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 24 Nov 2022 20:43:20 GMT
content-length: 45
cf-ray: 76f4f9ea1f7d0b41-OSL
cache-control: no-cache, no-store, no-transform
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
p3p: CP="NOI CUR ADM OUR NOR STA NID"
x-hubspot-correlation-id: 55134b4c-3fa8-4a3f-9d3b-752ff153cd47
x-robots-tag: none
set-cookie: __cf_bm=5mCil_1ogo2sJ53EOqUCQ.AJwNklsPMbi1_quPYMCTs-1669322600-0-AeoodPsSfGVvTNFE8s8W46CeOLWUJG4DQsBkACFmhrAd4WUbPwEp2SHxk1rmuuR9qbKZDYMk0goJpid4VDwIOjE=; path=/; expires=Thu, 24-Nov-22 21:13:20 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PnPWRykBU%2FQoa3TrjYn8e9HMW28LzzRbiv0%2FJgkp8scBVOvefjqtIkvB6jYoB24haJKZA3WqCxBkwSoHqlYTGIUk8aasmXyKeSpLXAyPkm8ItLGcvBirq4DokL0O8UrgKQAi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   45
Md5:    c8817d472077ebfc04593c1fa019d32d
Sha1:   e1e86f41c86c7b9cd2e8b76c6a925a1a3e7e3247
Sha256: dc111a70984a9eda00752b06277113029ef288f1125c31eff2477413e15e8aa4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5366
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 20:43:20 GMT
Last-Modified: Thu, 24 Nov 2022 19:13:54 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /st?ga_tracking_id=UA-18309154-6&ga_client_id=322187190.1669322598&shpt=Sign%20In%20-%20Rev&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-18309154-6%22%2C%22ga_client_id%22%3A%22322187190.1669322598%22%2C%22shpt%22%3A%22Sign%20In%20-%20Rev%22%2C%22dcm_cid%22%3A%221669322597.1%22%2C%22dcm_gid%22%3A%221064159038.1669322598%22%2C%22mntnis%22%3A%22rr1bRzCOjvAyschXxuayVePd0d0IN1gu%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1669322597.1&dcm_gid=1064159038.1669322598&dxver=4.0.0&shaid=32131&plh=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&cb=1564302734515366term%3Dvalue&shadditional=multiple_conv_types%3Dtrue%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue HTTP/1.1 
Host: px.steelhousemedia.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         44.237.157.168
HTTP/1.1 200 OK
content-type: application/javascript;charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:20 GMT
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=a1bd0101-6c38-11ed-a0e6-6773de210ce3;Domain=steelhousemedia.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close


--- Additional Info ---
Magic:  data
Size:   1410
Md5:    798df3d4a59f6e039be957bed5f51f8c
Sha1:   72ef4c1e608132466bc1e9cd0a0d96b51556f659
Sha256: 64bc9d52180712c300a77997548df76e69c8358ff097f1c484eb78a2f3c11764
                                        
                                            POST /gsgccr3dvtlsca2020 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 24 Nov 2022 20:43:22 GMT
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 28 Nov 2022 18:58:28 GMT
ETag: "41e54d9a450bd36cce2eea6cabf225d41f9de765"
Last-Modified: Thu, 24 Nov 2022 18:58:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2226
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f4f9f78e79b51e-OSL


--- Additional Info ---
Magic:  data
Size:   1414
Md5:    c86b407b666386507cbbf5d5e28414f1
Sha1:   41e54d9a450bd36cce2eea6cabf225d41f9de765
Sha256: 00c60636ec6508b0344d6e2b1392d5654539735e3c56afb8909d34d7695e03d0
                                        
                                            GET /track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=35b0bce9-d250-329d-b012-c0426f88d0bd&gdpr=&gdpr_consent= HTTP/1.1 
Host: match.adsrvr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         15.197.193.217
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 24 Nov 2022 20:43:22 GMT
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   70
Md5:    58a7930cd4577fc33c35828c271eab8f
Sha1:   406e57f86dc101e10f3a57be1e2f7b93c4580474
Sha256: 8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
                                        
                                            GET /st?ga_tracking_id=UA-18309154-6&ga_client_id=322187190.1669322598&shpt=Sign%20In%20-%20Rev&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-18309154-6%22%2C%22ga_client_id%22%3A%22322187190.1669322598%22%2C%22shpt%22%3A%22Sign%20In%20-%20Rev%22%2C%22dcm_cid%22%3A%221669322597.1%22%2C%22dcm_gid%22%3A%221064159038.1669322598%22%2C%22mntnis%22%3A%22rr1bRzCOjvAyschXxuayVePd0d0IN1gu%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1669322597.1&dcm_gid=1064159038.1669322598&dxver=4.0.0&shaid=32131&plh=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfvSIxniEGCqNEHZCiQ7eDIiG6BNR_Y-InN9qJ2Mj48NDldfLStNKABp1O6jQufqvaDAy9UXW-az3TFIOlNAxsp33RbI%2526loadFrom%253DDocumentDeeplink%26viewType%3DExpiredToken&shadditional=multiple_conv_types%3Dtrue%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue&cb=1669322600584253&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1669322601291 HTTP/1.1 
Host: px.steelhousemedia.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         44.237.157.168
HTTP/1.1 200 OK
content-type: application/javascript;charset=utf-8
                                        
date: Thu, 24 Nov 2022 20:43:21 GMT
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: rt=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;Domain=steelhousemedia.com;Max-Age=63113852;Path=/;SameSite=None;Secure guid=35b0bce9-d250-329d-b012-c0426f88d0bd;Domain=steelhousemedia.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close


--- Additional Info ---
                                        
                                            GET /track/evnt/?adv=epw6bin&ct=0:lilvc4h&fmt=3 HTTP/1.1 
Host: insight.adsrvr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         15.197.193.217
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 24 Nov 2022 20:43:22 GMT
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /21451281.js HTTP/1.1 
Host: js.hs-banner.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.154.85
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
date: Thu, 24 Nov 2022 20:43:18 GMT
x-amz-id-2: DxFKsPFo6A7NQGoUk2s/3mIkmfjVCx0ebvlnA6lN3A57ynVGTM8ORkZoi4Z+boMQqvDTmJao4qs=
x-amz-request-id: WY55T450VCW086WR
last-modified: Tue, 25 Oct 2022 23:00:58 GMT
etag: W/"b9c047860d21bc3177c6f438d52d3299"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: 5gySMbMv.nEYkSe1hM8TRef_ngJcepv8
access-control-allow-origin: https://www.rev.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Thu, 24 Nov 2022 20:46:26 GMT
cf-cache-status: HIT
age: 112
server: cloudflare
cf-ray: 76f4f9e10b5eb4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /signals/config/658102074251173?v=2.9.89&r=stable HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff