Overview

URL ybo.biz/
IP104.16.14.194
ASNCLOUDFLARENET
Location
Report completed2022-09-24 07:49:17 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-24 2 ybo.biz/ Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (94)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS statics.myclickfunnels.com (3) 408156 2022-03-17 11:58:47 UTC 2022-09-23 07:45:44 UTC 104.18.18.229
mnemonic passive DNS script.hotjar.com (1) 887 2020-11-05 16:23:46 UTC 2022-09-23 19:48:08 UTC 18.164.68.15
mnemonic passive DNS cdn.segment.com (8) 1618 2016-02-25 21:39:56 UTC 2022-09-24 04:47:00 UTC 108.138.235.79
mnemonic passive DNS dpm.demdex.net (2) 204 2017-01-30 04:59:39 UTC 2022-09-24 05:07:47 UTC 52.51.135.205
mnemonic passive DNS sync-t1.taboola.com (1) 1269 2020-06-29 11:52:33 UTC 2022-09-24 04:44:47 UTC 141.226.228.48
mnemonic passive DNS dis.criteo.com (2) 660 2012-06-02 15:38:12 UTC 2022-09-23 23:13:03 UTC 178.250.2.151
mnemonic passive DNS ups.analytics.yahoo.com (1) 287 2019-05-09 15:57:40 UTC 2022-09-23 04:34:19 UTC 3.126.56.137
mnemonic passive DNS beacon.krxd.net (1) 408 2012-05-22 04:25:40 UTC 2022-09-24 04:29:02 UTC 52.215.16.237
mnemonic passive DNS cdn.cfptaddons.com (1) 237703 2020-10-09 14:11:19 UTC 2022-09-23 07:45:44 UTC 151.101.86.133
mnemonic passive DNS player.vimeo.com (10) 1858 2013-09-26 03:16:08 UTC 2022-09-23 05:03:27 UTC 162.159.138.60
mnemonic passive DNS fresnel.vimeocdn.com (6) 3128 2014-12-13 09:04:00 UTC 2022-09-24 03:30:00 UTC 34.120.202.204
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-24 04:24:09 UTC 142.251.1.155
mnemonic passive DNS r.casalemedia.com (2) 1896 2012-06-24 01:17:14 UTC 2022-09-23 19:55:03 UTC 104.18.19.126
mnemonic passive DNS ad.yieldlab.net (3) 3515 2014-05-07 00:17:56 UTC 2022-09-23 04:46:38 UTC 23.13.245.180
mnemonic passive DNS analytics.tiktok.com (4) 1182 2020-02-29 13:09:05 UTC 2022-09-24 04:36:33 UTC 23.36.79.32
mnemonic passive DNS eb2.3lift.com (1) 402 2014-09-24 15:03:42 UTC 2022-09-23 10:55:44 UTC 76.223.111.18
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-24 04:06:14 UTC 34.160.144.191
mnemonic passive DNS www.clickfunnels.com (7) 51002 2014-10-08 20:01:35 UTC 2022-09-24 01:21:37 UTC 104.16.12.194
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-24 04:22:42 UTC 104.18.21.226
mnemonic passive DNS ocsp.sca1b.amazontrust.com (9) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 18.165.196.217
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-24 04:22:29 UTC 34.120.237.76
mnemonic passive DNS ct.pinterest.com (2) 852 2015-03-12 08:12:48 UTC 2022-09-24 04:44:46 UTC 23.38.200.197
mnemonic passive DNS visitor.omnitagjs.com (1) 1722 2017-01-30 04:58:42 UTC 2022-09-23 05:12:31 UTC 185.255.84.153
mnemonic passive DNS wsmcdn.audioeye.com (1) 28232 2020-03-27 11:30:12 UTC 2022-09-24 00:32:07 UTC 104.18.25.76
mnemonic passive DNS cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2022-09-24 04:23:04 UTC 151.101.85.229
mnemonic passive DNS 22vod-adaptive.akamaized.net (14) 133834 2019-09-12 20:30:15 UTC 2022-09-23 09:15:10 UTC 23.36.76.138
mnemonic passive DNS ag.gbc.criteo.com (1) 5925 2018-12-17 13:17:41 UTC 2022-09-24 04:07:05 UTC 178.250.6.5
mnemonic passive DNS api.appcues.net (1) 3188 2021-04-04 06:15:43 UTC 2022-09-23 22:47:53 UTC 52.13.154.164
mnemonic passive DNS web-sdk.aptrinsic.com (1) 7232 2017-11-28 13:16:40 UTC 2022-09-24 07:40:11 UTC 35.190.35.221
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-24 05:36:42 UTC 35.163.147.190
mnemonic passive DNS s.pinimg.com (2) 732 2017-01-13 22:40:08 UTC 2022-09-24 04:32:59 UTC 23.38.200.197
mnemonic passive DNS status.geotrust.com (2) 3662 2017-12-01 08:55:31 UTC 2022-09-24 05:11:53 UTC 93.184.220.29
mnemonic passive DNS pixel.rubiconproject.com (1) 314 2012-10-09 03:17:38 UTC 2022-09-23 04:33:31 UTC 213.19.162.80
mnemonic passive DNS 44vod-adaptive.akamaized.net (10) 112211 2019-10-02 08:08:58 UTC 2022-09-23 16:43:39 UTC 23.36.76.160
mnemonic passive DNS popping-torch-9334.firebaseio.com (1) 759903 2016-03-09 11:09:24 UTC 2022-09-23 07:45:47 UTC 34.120.160.131
mnemonic passive DNS images.clickfunnel.com (1) 525844 2017-12-04 15:04:03 UTC 2022-09-23 07:45:44 UTC 104.26.3.26
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-24 04:22:23 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (16) 86 2012-05-21 07:02:23 UTC 2022-09-24 04:16:00 UTC 93.184.220.29
mnemonic passive DNS snap.licdn.com (1) 1044 2014-10-06 08:43:45 UTC 2022-09-23 04:34:37 UTC 23.36.76.210
mnemonic passive DNS fast.appcues.com (3) 5455 2015-02-20 11:31:09 UTC 2022-09-23 22:47:52 UTC 151.101.86.110
mnemonic passive DNS analytics.audioeye.com (1) 4123 2018-08-17 20:13:43 UTC 2022-09-24 07:24:45 UTC 108.156.28.75
mnemonic passive DNS s.thebrighttag.com (1) 1487 2014-11-26 15:16:07 UTC 2022-09-23 17:21:44 UTC 3.12.105.184
mnemonic passive DNS sync.outbrain.com (1) 757 2016-08-02 06:37:14 UTC 2022-09-23 04:34:20 UTC 64.202.112.223
mnemonic passive DNS sync-criteo.ads.yieldmo.com (1) 2354 2019-12-10 21:28:48 UTC 2022-09-24 06:59:44 UTC 52.209.142.214
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-23 04:34:39 UTC 23.36.77.32
mnemonic passive DNS use.fontawesome.com (3) 942 2017-01-30 04:43:25 UTC 2022-09-23 04:44:31 UTC 172.64.132.15
mnemonic passive DNS i.vimeocdn.com (4) 3126 2014-03-27 22:24:57 UTC 2022-09-23 05:34:18 UTC 151.101.86.109
mnemonic passive DNS dnacdn.net (2) 3760 2019-09-02 15:07:45 UTC 2022-09-24 04:44:45 UTC 178.250.2.146
mnemonic passive DNS api.segment.io (1) 1076 2020-01-31 20:17:26 UTC 2022-09-24 04:44:50 UTC 44.237.227.30
mnemonic passive DNS ad.360yield.com (2) 657 2012-11-28 11:30:25 UTC 2022-09-24 04:43:27 UTC 3.122.36.107
mnemonic passive DNS dna8twue3dlxq.cloudfront.net (1) 0 2022-07-13 23:57:46 UTC 2022-09-24 05:13:23 UTC 18.165.122.70 Unknown ranking
mnemonic passive DNS cf2-private-production-workspaces-assets.s3.amazonaws.com (1) 0 2022-03-17 11:58:49 UTC 2022-09-23 07:45:45 UTC 52.217.107.44 Unknown ranking
mnemonic passive DNS vars.hotjar.com (1) 1014 2020-11-05 10:13:14 UTC 2022-09-23 20:48:28 UTC 143.204.68.5
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-24 02:52:51 UTC 142.250.74.164
mnemonic passive DNS cm.g.doubleclick.net (2) 202 2013-05-30 23:19:45 UTC 2022-09-24 02:00:55 UTC 142.250.74.130
mnemonic passive DNS ocsp.pki.goog (17) 175 2017-06-14 07:23:31 UTC 2022-09-23 04:33:33 UTC 142.250.74.3
mnemonic passive DNS x.bidswitch.net (2) 286 2017-08-28 15:21:00 UTC 2022-09-24 04:44:58 UTC 54.93.141.89
mnemonic passive DNS ocsp.entrust.net (1) 1208 2013-07-24 12:09:14 UTC 2022-09-23 04:33:48 UTC 104.110.10.32
mnemonic passive DNS gem.gbc.criteo.com (1) 6039 2019-02-06 06:21:41 UTC 2022-09-23 23:13:01 UTC 185.235.84.240
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-24 07:11:24 UTC 142.250.74.174
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-23 05:06:18 UTC 142.250.74.3
mnemonic passive DNS contextual.media.net (1) 513 2019-04-30 08:49:36 UTC 2022-09-24 04:44:47 UTC 23.38.200.22
mnemonic passive DNS s3content.s3.amazonaws.com (1) 480129 2012-12-30 04:55:59 UTC 2022-09-23 07:46:01 UTC 52.217.107.44
mnemonic passive DNS widget.wickedreports.com (1) 35709 2018-07-31 06:06:07 UTC 2022-09-23 21:24:57 UTC 108.156.28.6
mnemonic passive DNS ib.adnxs.com (2) 241 2012-05-23 22:36:14 UTC 2022-09-24 04:14:24 UTC 37.252.172.37
mnemonic passive DNS status.thawte.com (1) 5123 2017-11-27 12:33:51 UTC 2022-09-24 05:48:27 UTC 93.184.220.29
mnemonic passive DNS static.cloudflareinsights.com (1) 1294 2019-09-24 14:34:56 UTC 2022-09-23 12:32:56 UTC 172.64.156.26
mnemonic passive DNS dynamic.criteo.com (1) 4826 2018-04-12 10:04:05 UTC 2022-09-24 05:39:49 UTC 178.250.2.140
mnemonic passive DNS criteo-partners.tremorhub.com (1) 2360 2017-11-20 17:11:05 UTC 2022-09-23 17:21:43 UTC 107.21.155.240
mnemonic passive DNS firefox.settings.services.mozilla.com (1) 867 2020-06-04 20:08:41 UTC 2022-09-24 05:30:17 UTC 18.164.68.15
mnemonic passive DNS cmp.osano.com (1) 8763 2019-11-22 13:02:42 UTC 2022-09-24 03:10:01 UTC 108.156.28.53
mnemonic passive DNS ocsp.starfieldtech.com (2) 6616 2012-06-22 18:08:50 UTC 2022-09-23 23:20:05 UTC 192.124.249.24
mnemonic passive DNS www.linkedin.com (1) 608 2014-04-09 13:16:08 UTC 2022-09-23 04:48:36 UTC 13.107.42.14
mnemonic passive DNS esp.aptrinsic.com (2) 3738 2017-11-28 13:16:41 UTC 2022-09-24 06:44:16 UTC 35.184.35.160
mnemonic passive DNS widget.us.criteo.com (1) 19445 2015-08-23 19:59:38 UTC 2022-09-24 06:30:25 UTC 74.119.119.150
mnemonic passive DNS f.vimeocdn.com (3) 3234 2014-04-09 18:24:34 UTC 2022-09-24 04:45:00 UTC 151.101.86.109
mnemonic passive DNS dev.visualwebsiteoptimizer.com (3) 5085 2012-05-21 13:21:05 UTC 2022-09-24 05:50:56 UTC 34.96.102.137
mnemonic passive DNS px.ads.linkedin.com (1) 522 2017-08-08 16:28:50 UTC 2022-09-24 05:06:58 UTC 13.107.42.14
mnemonic passive DNS rtb-csync.smartadserver.com (1) 583 2012-12-17 16:38:47 UTC 2022-09-24 04:44:47 UTC 185.86.139.115
mnemonic passive DNS cm.adform.net (1) 1667 2015-03-30 07:47:01 UTC 2022-09-23 04:45:46 UTC 37.157.4.28
mnemonic passive DNS ybo.biz (1) 0 2019-05-29 07:48:01 UTC 2022-09-23 07:46:01 UTC 104.16.16.194 Unknown ranking
mnemonic passive DNS fonts.gstatic.com (6) 0 2014-08-29 13:43:22 UTC 2022-09-24 04:21:47 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS wsv3cdn.audioeye.com (6) 3722 2019-09-06 08:09:56 UTC 2022-09-24 00:38:08 UTC 104.18.25.76
mnemonic passive DNS ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-09-23 22:41:40 UTC 104.18.32.68
mnemonic passive DNS simage2.pubmatic.com (1) 578 2012-07-21 03:13:48 UTC 2022-09-24 06:42:09 UTC 185.64.189.110
mnemonic passive DNS match.sharethrough.com (1) 604 2015-12-22 22:55:59 UTC 2022-09-23 04:34:19 UTC 52.29.43.144
mnemonic passive DNS app.clickfunnels.com (1) 34727 2015-03-12 08:40:23 UTC 2022-09-23 21:55:28 UTC 104.16.12.194
mnemonic passive DNS cdnjs.cloudflare.com (8) 235 2020-10-20 10:17:36 UTC 2022-09-23 05:06:17 UTC 104.17.25.14
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-09-24 00:11:40 UTC 142.250.74.10
mnemonic passive DNS images.clickfunnels.com (4) 95357 2014-10-08 20:00:42 UTC 2022-09-24 00:08:49 UTC 104.16.12.194
mnemonic passive DNS my.capibox.com (1) 340018 2020-12-28 10:54:21 UTC 2022-09-24 05:37:34 UTC 78.46.194.138
mnemonic passive DNS gum.criteo.com (5) 381 2015-01-22 10:58:57 UTC 2022-09-24 04:38:23 UTC 178.250.2.146
mnemonic passive DNS criteo-sync.teads.tv (1) 1786 2017-02-17 10:06:41 UTC 2022-09-24 06:59:44 UTC 23.195.255.234
mnemonic passive DNS cdn.firebase.com (1) 61404 2012-12-21 18:09:50 UTC 2022-09-23 15:54:36 UTC 151.101.65.195


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.16.14.194

Date UQ / IDS / BL URL IP
2022-12-08 15:22:36 +0000
0 - 0 - 2 eco-innovation.info/primes-chauffage 104.16.14.194
2022-12-02 11:00:49 +0000
0 - 0 - 1 deodigital.biz/ 104.16.14.194
2022-11-21 12:15:10 +0000
0 - 0 - 32 karriere-mayer-madel.com/ 104.16.14.194
2022-11-12 17:37:50 +0000
0 - 0 - 11 www.joinclasshere.com/pemni-live 104.16.14.194
2022-11-09 23:36:12 +0000
0 - 0 - 27 us-septifix.com/buy-septifix 104.16.14.194

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-12-08 18:50:09 +0000
0 - 0 - 0 oo.pe/https://urlmask.pythonanywhere.com/go/g (...) 188.114.97.1
2022-12-08 18:43:35 +0000
0 - 0 - 0 www.hygeiaivf.gr 188.114.96.1
2022-12-08 18:46:15 +0000
0 - 0 - 1 fuckthisgirl.net/fr/multi/ms/1-131736/ 172.67.149.70
2022-12-08 18:44:39 +0000
0 - 0 - 1 judge-store.com/?flux_fts=tppppaopipqxictttpz (...) 188.114.97.1
2022-12-08 18:44:12 +0000
0 - 0 - 4 judge-store.com/go/plexpressnc/index.html?ses (...) 188.114.97.1

Last 5 reports on domain: ybo.biz

Date UQ / IDS / BL URL IP
2022-11-25 08:47:03 +0000
0 - 0 - 1 ybo.biz/ 104.16.13.194
2022-10-26 07:44:51 +0000
0 - 0 - 1 ybo.biz/ 104.16.15.194
2022-09-24 07:49:17 +0000
0 - 0 - 1 ybo.biz/ 104.16.14.194
2022-09-23 07:45:55 +0000
0 - 0 - 1 ybo.biz/ 104.16.13.194
2022-09-06 09:27:54 +0000
0 - 0 - 1 ybo.biz/ 104.16.13.194

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-23 19:43:27 +0000
0 - 0 - 1 prometheusrobot.com/ 104.16.13.194
2022-10-23 18:22:24 +0000
0 - 0 - 1 releadengine.com/ 104.16.14.194
2022-10-23 16:53:28 +0000
0 - 0 - 1 sayikropsterapi.com/ 104.16.13.194
2022-10-23 02:49:27 +0000
0 - 0 - 1 jwteam.net/ 104.16.16.194
2022-10-22 23:48:24 +0000
0 - 0 - 1 pelvichealthhub.click/ 104.16.13.194


JavaScript

Executed Scripts (97)


Executed Evals (5)

#1 JavaScript::Eval (size: 63, repeated: 1) - SHA256: 28ba4481533721710b0c78f3e273481791279590f1cd9253248a3b7c936c8d46

                                        (_vwo_s().f_n_b(_vwo_s().gC('subscription_package_plan_name')))
                                    

#2 JavaScript::Eval (size: 61, repeated: 1) - SHA256: 24444e02c924076d6fe39a97d460c05be995e9d7e68814c0d33b5026fd524a96

                                        (_vwo_s().f_b(_vwo_s().gC('subscription_package_plan_name')))
                                    

#3 JavaScript::Eval (size: 10343, repeated: 1) - SHA256: 4104c72b53bedb9f5b693f6e37e456ee2975fbd1619add77b8cfaa3e436c44e3

                                        AudioEye.smartRemediations = [];
AudioEye.autoSmartRemediations = [{
    "id": "96c542c8-aa72-4ae7-b330-085496fbe3c6",
    "type": "addDownloadableDocumentWarnings",
    "params": [],
    "smart_remediation_number": "754d8119-ddd8-422e-ad79-081971e1c2cf",
    "parent_id": ""
}, {
    "id": "715ec794-f5b5-4015-a02c-5f97a06d39bc",
    "type": "addFormLabels",
    "params": [],
    "smart_remediation_number": "84def85c-a712-4530-84d1-1649521c2c3c",
    "parent_id": ""
}, {
    "id": "cdc2c4a7-1cb8-4489-80ba-39206697cd30",
    "type": "addFormRequiredAriaLabel",
    "params": [],
    "smart_remediation_number": "848b8ec0-3f18-47bd-b588-2e18620688e0",
    "parent_id": ""
}, {
    "id": "0d4aca84-c92c-4cd8-9034-99e5e4140e09",
    "type": "addFrameTitles",
    "params": [],
    "smart_remediation_number": "9f4cf26b-21ba-4a85-806d-a2d64a34f72b",
    "parent_id": ""
}, {
    "id": "f1677d27-5b15-4d45-9f03-4c86df61ef72",
    "type": "addLinkText",
    "params": [],
    "smart_remediation_number": "0e8711f2-9608-424d-8203-ba3f80b8eb93",
    "parent_id": ""
}, {
    "id": "e8017dac-aabf-4e78-b38a-67309601d34c",
    "type": "addNewWindowWarnings",
    "params": [],
    "smart_remediation_number": "10423717-4978-4e39-8b3e-c82022951f9c",
    "parent_id": ""
}, {
    "id": "e55d423e-ef22-4d4e-a8d8-b8a55e06ebd1",
    "type": "addSmartAltText",
    "params": [],
    "smart_remediation_number": "31f6d412-da7b-4827-87b7-7dbb58e0e8a0",
    "parent_id": ""
}, {
    "id": "4240c196-2312-4be0-b54e-8ce161650d64",
    "type": "altDuplicateOptIn",
    "params": [],
    "smart_remediation_number": "81aaa5f7-291b-490e-8115-a8b26d8ddedf",
    "parent_id": ""
}, {
    "id": "8e80d7ee-3440-4ecf-a031-3514f95f19ca",
    "type": "altLong",
    "params": [],
    "smart_remediation_number": "d7b84d4d-f8d1-4ee9-be32-4747f52c8afb",
    "parent_id": ""
}, {
    "id": "4997288d-8921-4b0e-bfce-3220efb4834a",
    "type": "altRedundant",
    "params": [],
    "smart_remediation_number": "8b495a59-5d03-44ac-8a2a-7e30adf63279",
    "parent_id": ""
}, {
    "id": "8e73343e-6020-4f3c-b82f-8bc2f7b2f432",
    "type": "linkSamePageAddButtonRoleAndKeydown",
    "params": [],
    "smart_remediation_number": "1406b175-2b36-4acb-ac9c-c9f3c61568ae",
    "parent_id": ""
}, {
    "id": "62a466dc-3179-488f-890b-6870be260ffc",
    "type": "ariaChildlessMenu",
    "params": [],
    "smart_remediation_number": "ed973357-3735-4903-8b72-f9559688a7fb",
    "parent_id": ""
}, {
    "id": "66a36d97-da14-4bbc-87e2-36614fa31cef",
    "type": "automaticNestedLayoutTable",
    "params": [],
    "smart_remediation_number": "fe148318-f200-426a-8ce9-64fc490428d9",
    "parent_id": ""
}, {
    "id": "86d955a0-74c9-49ba-88e9-26c859f9f483",
    "type": "automaticSingleListItem",
    "params": [],
    "smart_remediation_number": "e8645a3a-4fae-40a6-88ba-1daec7341d9c",
    "parent_id": ""
}, {
    "id": "d129d7fe-099c-4ec2-83ac-27d1b36a7d0f",
    "type": "blinkOptIn",
    "params": [],
    "smart_remediation_number": "15dc6faa-6c5e-49db-ad61-6e8eebff9c4f",
    "parent_id": ""
}, {
    "id": "fe93001d-53ff-4b50-a2c0-025deabff977",
    "type": "buttonTextContentNotFoundOptIn",
    "params": [],
    "smart_remediation_number": "0ce0267d-a300-495b-8cbd-26cf38ebf83a",
    "parent_id": ""
}, {
    "id": "f66f6704-0cce-4331-9453-9a908a5c8bec",
    "type": "deviceIndependentEvent",
    "params": [],
    "smart_remediation_number": "620ea766-5800-4321-941d-e45c492e19d7",
    "parent_id": ""
}, {
    "id": "faf7dd49-314d-45f3-b9aa-9aa570d84d9b",
    "type": "fieldsetLegendEmpty",
    "params": [],
    "smart_remediation_number": "561d9c0f-1282-4705-8ade-60a96e9d8117",
    "parent_id": ""
}, {
    "id": "342c7a4e-abb5-4e67-86df-5279d4d2d269",
    "type": "firstHeaderLevelNot1or2",
    "params": [],
    "smart_remediation_number": "4565ddb2-01fb-426a-9c42-963c0085e4b2",
    "parent_id": ""
}, {
    "id": "186b7643-de78-405e-be3f-a2e8fbf433c1",
    "type": "formFieldGroupCheckboxGroupNotFoundOptIn",
    "params": [],
    "smart_remediation_number": "5767ccf8-c56c-42fd-a4fd-820f1cae1bd8",
    "parent_id": ""
}, {
    "id": "a12bffa8-a8a1-49d9-9bf6-b38842269584",
    "type": "formFieldLabelNotFoundOptIn",
    "params": [],
    "smart_remediation_number": "fc785134-99e2-4373-98a6-ebf8d936fff0",
    "parent_id": ""
}, {
    "id": "7c2e44d8-d8f3-400a-bee6-d90d85a62940",
    "type": "formFieldLabelOptIn",
    "params": [],
    "smart_remediation_number": "8b7d73d0-2685-4550-8b97-510f2d12cfe6",
    "parent_id": ""
}, {
    "id": "978093c6-e774-4055-a163-2695c5ebb9b0",
    "type": "formFieldMetadataBadAnchor",
    "params": [],
    "smart_remediation_number": "966ee1c7-db68-41d1-9de8-2af7e2874d7b",
    "parent_id": ""
}, {
    "id": "5284ecca-71ae-46f4-ae74-451bca54232e",
    "type": "formFieldMetadataNotFoundOptIn",
    "params": [],
    "smart_remediation_number": "5466b4e0-b1bb-46fd-b91b-74c2771c05e7",
    "parent_id": ""
}, {
    "id": "a584fac1-6014-4236-8623-230c3e9e6ec6",
    "type": "frameTitleDuplicate",
    "params": [],
    "smart_remediation_number": "fb84bdc4-6ff1-493e-8af8-a3cbe4a98c12",
    "parent_id": ""
}, {
    "id": "a9848b48-1322-4207-a0b0-a757c1a526e0",
    "type": "headingEmpty",
    "params": [],
    "smart_remediation_number": "73585ca7-2527-4b56-b245-9eca68c08ecd",
    "parent_id": ""
}, {
    "id": "b468e36b-fe0a-425c-a011-b1194373d8b6",
    "type": "headingLevelOneCountMultiple",
    "params": [],
    "smart_remediation_number": "0031bdaf-6b9e-4dd6-a718-53e6a1d454b9",
    "parent_id": ""
}, {
    "id": "5faa5375-ab30-4d4f-9c3a-d346ce211fd5",
    "type": "headingLevelOneCountZero",
    "params": [],
    "smart_remediation_number": "3ee57d82-3f1a-4112-a067-d6fad4694c1f",
    "parent_id": ""
}, {
    "id": "b7b71c23-de3b-4681-ba4d-b9e8ba1fd23e",
    "type": "headingSequenceOutOfOrder",
    "params": [],
    "smart_remediation_number": "e1ebafab-94a6-4077-b244-115123c93b57",
    "parent_id": ""
}, {
    "id": "574ce17d-703a-45ce-b052-b5d01e41794c",
    "type": "hideEmptyHeaders",
    "params": [],
    "smart_remediation_number": "cf9107c1-01e7-4f4d-b7e2-7d8ce6ecb69f",
    "parent_id": ""
}, {
    "id": "32bb7635-3893-4608-b8b0-00a19fbf2464",
    "type": "htmlAccessibleNameMismatchOptIn",
    "params": [],
    "smart_remediation_number": "8169ab8b-176d-4658-b4ef-4ebb9ae13d8b",
    "parent_id": ""
}, {
    "id": "6c354c80-41cf-4684-a895-5b7678d38a3f",
    "type": "htmlAriaRolesAttributeNotAppropriate",
    "params": [],
    "smart_remediation_number": "823ffcea-5cd4-4020-a30d-a32c1468d3c0",
    "parent_id": ""
}, {
    "id": "b78441c9-697e-4dba-b2f3-7c21ddf52392",
    "type": "htmlAriaRolesInvalidRole",
    "params": [],
    "smart_remediation_number": "fea7f0db-dea5-4306-a324-e958d1cf8e0f",
    "parent_id": ""
}, {
    "id": "1fc3612e-ea94-4fec-a837-9f0e9155034d",
    "type": "htmlAriaRolesRoleMissingParent",
    "params": [],
    "smart_remediation_number": "f5cfa93c-cf7f-468b-9f0b-207d692d118d",
    "parent_id": ""
}, {
    "id": "7a7109fa-817e-4e84-9d8c-c707f62fcbe8",
    "type": "htmlFocusSequenceAriaHiddenTabbableOptIn",
    "params": [],
    "smart_remediation_number": "5c23840c-bcc1-45d8-b0f2-c2dc4cc3d920",
    "parent_id": ""
}, {
    "id": "2a7f1977-00b2-475c-aa7e-c6ac193e219b",
    "type": "htmlLandmarksMultipleComplementary",
    "params": [],
    "smart_remediation_number": "7c029484-1fb1-49b1-91d8-a2c4bfea88b6",
    "parent_id": ""
}, {
    "id": "da746eab-4615-4e5a-93f3-3390758d22aa",
    "type": "htmlLandmarksMultipleMains",
    "params": [],
    "smart_remediation_number": "90cf056a-4509-43a5-a29f-e398915bc9ef",
    "parent_id": ""
}, {
    "id": "05ffe10d-f8f5-421d-9312-564d3a5c17d8",
    "type": "htmlLandmarksMultipleNavsOptIn",
    "params": [],
    "smart_remediation_number": "5aebe3d4-912a-423e-80d3-3f5d52828e70",
    "parent_id": ""
}, {
    "id": "31658971-f370-413b-88ab-76a0bf121586",
    "type": "htmlSkipToMainOptIn",
    "params": [],
    "smart_remediation_number": "b92df2a7-495a-4338-b7ee-99667a40d5e3",
    "parent_id": ""
}, {
    "id": "d5463f18-feda-4eb6-a8bc-45722dbf11ae",
    "type": "interactiveElementKeyboardActivation",
    "params": [],
    "smart_remediation_number": "da5adff8-f8e7-430b-b01b-aa6a07be4064",
    "parent_id": ""
}, {
    "id": "2f8f2983-9f7b-492f-9c86-684a52776b81",
    "type": "labelEmpty",
    "params": [],
    "smart_remediation_number": "b92d791b-4138-4670-99f6-38da06e971cc",
    "parent_id": ""
}, {
    "id": "d87dc18d-7de5-404b-8733-fea934c94240",
    "type": "linkAdjacentSameHREFOptIn",
    "params": [],
    "smart_remediation_number": "d5927404-48b7-4726-93fb-001bf533987a",
    "parent_id": ""
}, {
    "id": "11153f50-92c4-4100-a5f9-7bd55e9f204b",
    "type": "linkEmptyOptIn",
    "params": [],
    "smart_remediation_number": "76f4ed34-5cb4-4d5d-be29-5654dff28671",
    "parent_id": ""
}, {
    "id": "611ba8f9-5842-4e25-84a7-59a64e740122",
    "type": "linkHrefNoneOptIn",
    "params": [],
    "smart_remediation_number": "1c0a1cd9-67b6-4d69-bbc1-50516ea6be53",
    "parent_id": ""
}, {
    "id": "20d8f7fb-c983-4293-abcd-9e8da6ab0931",
    "type": "linkImgTextAltBlankOptIn",
    "params": [],
    "smart_remediation_number": "4b85a9f3-c880-4d54-b246-22a55804aa13",
    "parent_id": ""
}, {
    "id": "128e67c5-7317-4931-84a2-a4d0c54adcec",
    "type": "linkImgTextAltNotFoundOptIn",
    "params": [],
    "smart_remediation_number": "e47f22d3-b8c3-4e64-b4fc-211c61810a67",
    "parent_id": ""
}, {
    "id": "92672fb2-cec6-4fdf-a7d7-7dbd413807ad",
    "type": "linkSamePageAnchorInvalidOptIn",
    "params": [],
    "smart_remediation_number": "648d5960-e3a5-4b5c-9ba1-e0d0e5126915",
    "parent_id": ""
}, {
    "id": "b123c014-912c-46c6-b178-a56ffdaa71ff",
    "type": "linkTextContentNotDescriptiveOptIn",
    "params": [],
    "smart_remediation_number": "fa534af1-18f4-42bd-b3ad-1efe59f101cb",
    "parent_id": ""
}, {
    "id": "e7f60246-3fe5-42aa-ad9d-28e3a95c62f8",
    "type": "linkTextContentNotFoundOptIn",
    "params": [],
    "smart_remediation_number": "5ceca38f-dbd7-41da-99f3-edc6f65453b7",
    "parent_id": ""
}, {
    "id": "82e7b0d0-3f92-4ef1-911d-4d439a439133",
    "type": "linkTextContentRedundantOptIn",
    "params": [],
    "smart_remediation_number": "c2bf2655-0bf2-48a8-ac23-306ccde0207a",
    "parent_id": ""
}, {
    "id": "810ca228-59f2-49f2-9e3d-1ab36cfe03f6",
    "type": "makeLinkImgAltDecorative",
    "params": [],
    "smart_remediation_number": "4f280d96-0289-476d-bfdd-1f7333a02b01",
    "parent_id": ""
}, {
    "id": "35525d6e-d904-4405-b9a7-cda922dda782",
    "type": "oneItemList",
    "params": [],
    "smart_remediation_number": "ec1f704b-08d9-4c8a-ae7a-66a2ed712110",
    "parent_id": ""
}, {
    "id": "ae824ce5-8f3c-4366-8725-16bb4138ed24",
    "type": "removeInvalidLabelReferences",
    "params": [],
    "smart_remediation_number": "7e65798e-f095-4816-a95b-af29e91738dd",
    "parent_id": ""
}, {
    "id": "e85b56a3-20f1-4ec7-997e-6b450df4496a",
    "type": "removeLinkRedundancies",
    "params": [],
    "smart_remediation_number": "f8e65b03-f6cb-427a-9ecc-34d18dbe718d",
    "parent_id": ""
}, {
    "id": "475776fd-7a93-4f4c-8f68-d494049dc064",
    "type": "setDocLang",
    "params": [],
    "smart_remediation_number": "532552ce-074e-4621-a5b7-9b6e10a95d29",
    "parent_id": ""
}, {
    "id": "bf44c945-c847-4c4e-a9f6-f3cd802b8d42",
    "type": "spacerAlt",
    "params": [],
    "smart_remediation_number": "5ed38e5e-15d9-44d7-966e-978657daea37",
    "parent_id": ""
}, {
    "id": "6ff42df4-d7bd-4d7a-9a07-e262f6722e93",
    "type": "tabindexGreater",
    "params": [],
    "smart_remediation_number": "edb9e103-1a30-469d-9903-1ac0b786d2bd",
    "parent_id": ""
}, {
    "id": "eecac94a-a786-4586-8492-29252f23a0b9",
    "type": "tableLayout",
    "params": [],
    "smart_remediation_number": "d7b73d70-9bcf-4a2a-94a5-926863fb4919",
    "parent_id": ""
}, {
    "id": "8f394431-d5ac-4504-b5a1-1de60627980d",
    "type": "thEmpty",
    "params": [],
    "smart_remediation_number": "7204b345-810f-48ca-83f2-0bbce7b14cc9",
    "parent_id": ""
}, {
    "id": "ea5fc052-cd27-4e8e-b3d1-186d1cace691",
    "type": "titleRedundantOptIn",
    "params": [],
    "smart_remediation_number": "6e3e0c6d-8d83-448a-bf56-814caf3af0fc",
    "parent_id": ""
}];
                                    

#4 JavaScript::Eval (size: 77, repeated: 1) - SHA256: caa2ab907b4a61c5029ae3060485785164a8e9d8229883e94a733da6ba54d969

                                        (function() {
    var a = document.getElementByName("email").value;
    if (a) return a
})();
                                    

#5 JavaScript::Eval (size: 158, repeated: 1) - SHA256: f723a4ed2f15538a005e58abf36a547b023c5723d2861b91cd2bfccd45906697

                                        (function() {
    try {
        return google_tag_manager["GTM-NNWVTGK"].macro(4).replace(/\/.*-app/, "//app")
    } catch (a) {
        return google_tag_manager["GTM-NNWVTGK"].macro(5)
    }
})();
                                    

Executed Writes (0)



HTTP Transactions (248)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.164.68.15
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 07:05:35 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8671c9c28d4abb06df55e1091d0f124a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: qNW_cyC_L9pPa6AXyN2qrj0iow74pRvzMNCQ-WVPLSulGl7wn4D_ew==
Age: 2611


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12150
Expires: Sat, 24 Sep 2022 11:11:36 GMT
Date: Sat, 24 Sep 2022 07:49:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232"
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19187
Expires: Sat, 24 Sep 2022 13:08:53 GMT
Date: Sat, 24 Sep 2022 07:49:06 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: NSEIMejL/NBQdSLTP1b7cBsXXfhGj8M6ms94ogqTnzsZgiliBPr+sKMBoHGTUuqG/Mx9Y/IzWcg=
x-amz-request-id: BF374GD407X8CG35
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 24 Sep 2022 07:45:02 GMT
age: 244
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET / HTTP/1.1 
Host: ybo.biz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.16.16.194
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Date: Sat, 24 Sep 2022 07:49:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.clickfunnels.com?aff_sub=domain_redirect&utm_campaign=domain_redirect
CF-Ray: 74f9ebe9fb87b4ee-OSL
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store
Vary: Accept-Encoding
CF-Cache-Status: BYPASS
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
Access-Control-Request-Method: *
Pragma: no-cache
Status: 302 Found
X-Frame-Options: ALLOWALL
X-Powered-By: Phusion Passenger Enterprise 6.0.7
X-Rack-Cache: miss
X-Request-Id: cece6832ae2dfbfccc1ee62afbad61a8
X-Runtime: 0.183831
Set-Cookie: __cf_bm=YdihmQ3gY7jFugOhkaU3BguC3E5nV62PavWBctcd9UE-1664005746-0-AWud+cu/S4OFv7GZBv21KMB38ad0z/JIr4aOXgkG7RubmSuJzpEiTkcNTe3o4DLwbltYRSXHlm9gBif2VPIID2JLIs7VDI2+d3RkWFQ0wHco; path=/; expires=Sat, 24-Sep-22 08:19:06 GMT; domain=.ybo.biz; HttpOnly; SameSite=None
Server: cloudflare
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (516)
Size:   531
Md5:    c1bde42690c7d94917768c9a7cf18980
Sha1:   dee046783537e362703f830c3eb25e15401f8d38
Sha256: 29abdfce89abd1c406831317a63a1e5f4428e8c9baedf5629b29319f5c56eb30

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 24 Sep 2022 07:49:06 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sat, 24 Sep 2022 07:49:06 GMT
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9449450
expires: Thu, 14 Sep 2023 07:49:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0StAHa8EnAJ%2BqNxKJXRY2s43r8tQQH0iuG84FxDIV6zlsIJKFgq8HKysMXSiKd1eDQK42SBqmcapjl95b3KjDempZvGs4cfVGjWAq8ZFR5f%2BjOwa4SIYP9NXR30WJbpFllzGt3q9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f9ebedfc58b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   27958
Md5:    4b5f47439b640180cc3450f7de05d0d8
Sha1:   5a0dc9bcab80ddc409dd35fcb00a88fe6846fee2
Sha256: 1f85e8b327f42c17c025d69849914068536d9aa95412fe473ae90ffb2f4ebd82
                                        
                                            GET /ajax/libs/lazysizes/5.3.2/lazysizes.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sat, 24 Sep 2022 07:49:06 GMT
content-length: 3150
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60641588-1ed1"
last-modified: Wed, 31 Mar 2021 06:24:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1742110
expires: Thu, 14 Sep 2023 07:49:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AAoL%2Fnu1RX2Yb%2BAGug%2Bm3tBJCy9yo5HmC9fHph7F2IedWmwEiBufYzvSjx2Hj4lWzK8%2FiRQBADZyAZb6bss9Vp2yJ36AOga%2B1gFmrAj%2BUZF8tC3uGlyDQ8ez0u5CdXnZYrnLxZrJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f9ebee0c5db4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7862)
Size:   3150
Md5:    69e8daa3e28b1ac6b1fc4f678b678787
Sha1:   99bc84bbab57fa3c0f00f73bd90866680c9c857d
Sha256: a347e631a0dff734a1e5878c81a016c73ab08c2d2ec6b83643c90006c0eff585
                                        
                                            GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sat, 24 Sep 2022 07:49:06 GMT
content-length: 591
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-514"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1822727
expires: Thu, 14 Sep 2023 07:49:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mPtCjm5nUlQw8UGctmzBFHSr93Ssjq01kIGmEPXiI4cefZtgUTxRLjB1r0mWUwLsJ3Cda21A9B9I6Ucx7AsijYZjr9HZFV%2F%2FdtNkPQ9TRc15qiMvh6qsQSIu9We6RRGdY3BAyBRL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f9ebee0c5fb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1266)
Size:   591
Md5:    414869f16aa77a65b4928a018f7f1abb
Sha1:   cea521f7a2958a50239526ed6b068f0937527653
Sha256: afee364ce513c6517247b81cce5eb5eadb1dbbb35e439eb3fa97bbc15fac2cd3
                                        
                                            GET /ajax/libs/video.js/7.11.5/video-js.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Sat, 24 Sep 2022 07:49:06 GMT
content-length: 9062
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "601c4deb-9c87"
last-modified: Thu, 04 Feb 2021 19:41:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 18880709
expires: Thu, 14 Sep 2023 07:49:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1xQV922VYqMIZSKmYo6MQexILYoAE1oz7tOLoc%2BLpsf2BqPk6LYYSYugKXD0oX350pA%2Fb7fNNr%2FId1vOy9tuwj5kI9B3Q3zqwSq6nCXUiqHjDT42T%2F11EBjqy7ebuCuwO9Sni7jP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f9ebee0c5ab4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (40067), with no line terminators
Size:   9062
Md5:    3254f042ca0979d22645398fa80be3d7
Sha1:   97a5e5b18dd600268caee9e3f1d6e4d1e4cbc34e
Sha256: fa6e06ed2a55412af4d32d9c2a749896ecb4b8e2519102e8bc7897bbf7a05d39
                                        
                                            GET /ajax/libs/video.js/7.11.5/video.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sat, 24 Sep 2022 07:49:06 GMT
content-length: 123694
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "601c4deb-831be"
last-modified: Thu, 04 Feb 2021 19:41:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 8590471
expires: Thu, 14 Sep 2023 07:49:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zklHs3jJ6hWD0lHxTjuDAVIVrz75vDYmQrpoo6U2cYQZE3vdrmTVATKwnERjBJa48wi68L2XJFgjrnFKPkaBc0nLoODHMxfdEgE7xWEnFBeLsf1WjD%2F4EsHQ1cSST7mQj%2B0yN3V1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f9ebedfc59b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (47843)
Size:   123694
Md5:    c8acd0c391c3dd83609a45e2bc68879f
Sha1:   ce69fbf230de77446a44e6ae3d98a31c7d115752
Sha256: fb5b82a028361d8c65c32de4fd1863da8402ef4c7ffe3cdf453592abed75c22d
                                        
                                            GET /ajax/libs/fitvids/1.2.0/jquery.fitvids.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sat, 24 Sep 2022 07:49:06 GMT
content-length: 658
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5c-724"
last-modified: Mon, 04 May 2020 16:10:04 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9889385
expires: Thu, 14 Sep 2023 07:49:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZiA7TDoR0dFCtfW3GuSxFm4fc8moP2l%2F2XVKvC6g9HSe3BIcdYglcI2RSvj2jnH4WV6NhPBUaaRcXFsKqnsnZgdNO5rNUcfMSVaxJcUxogaMxQ2O0Y6lqItZQUDTvYozeap%2F%2BQqf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f9ebee1c6fb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (1781)
Size:   658
Md5:    a3793fda68bf7dfa7e4bb860e8c64dcd
Sha1:   ea502f364e7fedeaf142eda0ebfe93dcbaeb04c9
Sha256: 7a6d7d82a342c5eb15937f2ce10f19e9d766b30eee0455071824d9172d4e0d4d
                                        
                                            GET /ajax/libs/bodymovin/5.5.3/lottie.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sat, 24 Sep 2022 07:49:06 GMT
content-length: 52781
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d8b-3d0a4"
last-modified: Mon, 04 May 2020 16:06:35 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 4885311
expires: Thu, 14 Sep 2023 07:49:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4LfCG2g%2FxK2aA14qbGkDkTTURiRAP9oXGgOsBfVo8campqzIoAKK%2BBhVFzyTho04vWh8NTqvKFYIOKcIULb2wkNnAt1vxWknyZK0knxZ8gC%2FXvtCtkmKjdMS9KQDBOAj4rle1ARP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f9ebeeafeb0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   52781
Md5:    6d07992fb90763c5c19e9e5faf8c5099
Sha1:   a0db636fbfbe378969ff878d051a426dde2f8e6c
Sha256: 6e4e7973170ec4f623732b62421099d7ef14d5bdd8609c3bd737d77c7911f269
                                        
                                            GET /ajax/libs/countup.js/1.9.3/countUp.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Sat, 24 Sep 2022 07:49:07 GMT
content-length: 2161
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e2d-1eb4"
last-modified: Mon, 04 May 2020 16:09:17 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9449919
expires: Thu, 14 Sep 2023 07:49:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pj1FlImsVqa0tEsjZwUWTKoFNv%2B6%2BktKyq4%2BmdIMA4IiObGILmDUFBoDrS8SZ5SFkAeBoId2hTV9eGduKIne%2BfogDmhbW3grQzjLWpAPc0CqpSmanlAa7uoC34ULMobPIECoYGUB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f9ebeec8040b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   2161
Md5:    58ff444b6681c773e4c9b054ecb6c553
Sha1:   768b55fa898cb4ee4b31d62a4b3a070dfac980bc
Sha256: a24f2ffb2c25a6fa16dd8501b1397980d45b471b3cb3a23d1d5ed49f2f353a6b
                                        
                                            GET /npm/@videojs/http-streaming@2.12.0/dist/videojs-http-streaming.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.12.0
x-jsd-version-type: version
etag: W/"4c8e9-F+lCUr+TzLo2aUt7zzNc326ch7U"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 24 Sep 2022 07:49:07 GMT
age: 3402047
x-served-by: cache-fra19164-FRA, cache-bma1624-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 88151
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (60658)
Size:   88151
Md5:    dc70b0b42163413d9c50aef40270720c
Sha1:   b82549d46889dd272af72694dcbb37e8352a4141
Sha256: d5b327ecc0f569eb14e336b09ce630cea99f7320f0fb47df6949b39d83717df7
                                        
                                            GET /2e07a442-7a52-4be0-b8a8-92e95fd3a29e.js HTTP/1.1 
Host: cdn.cfptaddons.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.133
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
server: Cowboy
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, public
etag: W/"aef81420db9b33f5425a018f0ae6309e"
x-request-id: e8d7617b-ab41-42e4-9b0b-907cbd08e0ac
x-runtime: 0.011717
strict-transport-security: max-age=31536000; includeSubDomains
via: 1.1 vegur, 1.1 varnish
accept-ranges: bytes
date: Sat, 24 Sep 2022 07:49:07 GMT
age: 243
x-served-by: cache-bma1623-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664005747.060616,VS0,VE1
content-length: 6809
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5487)
Size:   6809
Md5:    48893f598b8a3659b65b6089f4637e84
Sha1:   f21cc179dab26697b6f40e61b9680bd8f8d65896
Sha256: aef81420db9b33f5425a018f0ae6309ed569795109ee97bd76f35b0d4c512090
                                        
                                            GET /assets/cf_modal.js HTTP/1.1 
Host: www.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/?aff_sub=domain_redirect&utm_campaign=domain_redirect
Cookie: __cf_bm=ht.b1MX.MmNVg41LiMIACXAnx6Nm47o4UIYtSxA4jGc-1664005746-0-AXCYgEBOI1/FyAz6ZAFETygCEh8/bVSqJEXDYxfiayR0+jZZzimpcQDSEa+E+o6w5w27We7XxschsCLQO36OuS5+8MXOrV/ainVNriZu38cl
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Sat, 24 Sep 2022 07:49:06 GMT
cf-ray: 74f9ebeddecdb51e-OSL
access-control-allow-origin: *
age: 516
cache-control: public, max-age=1200
etag: W/"632b3356-101c"
expires: Sat, 24 Sep 2022 08:09:06 GMT
last-modified: Wed, 21 Sep 2022 15:52:54 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4124), with no line terminators
Size:   1721
Md5:    66e08c24071549de6c538b6aa74494a4
Sha1:   7b9c47adcbfad18a583eb5b1c14a8a9ee244a019
Sha256: 1fe24c2fdf53fafaf0ef2b79552ea2c672bb7d0055701bcc4545b23c27adb605
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "E675477D513C4B5E9D2AC73A2D49858CC6CE1A1B"
Expires: Sat, 24 Sep 2022 18:00:00 GMT
Last-Modified: Sat, 24 Sep 2022 06:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3458
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74f9ebef5b51fab8-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    200b711b9eb36f4f4ac110fa7163db89
Sha1:   acf7398c876d1addb929a62e89514a6e2c1f7d85
Sha256: a4e93a31ca87894a4b02e395b45a09320bc8744abcb9d286e9f5b4b8575dfcac
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css?family=Roboto:regular,bold,400|Source+Sans%20Pro:regular,bold,500,400|Caveat:regular,bold,400|Open+Sans:regular,bold,400,700|Poppins:regular,bold,800,700,500|Montserrat:regular,bold,500| HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Sep 2022 07:49:07 GMT
date: Sat, 24 Sep 2022 07:49:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1761
Md5:    fdacda3588334d1dc2d386f5f2efdfd8
Sha1:   8bb44872cc290e11388a992a49de15886d8a4066
Sha256: 1d6edc3b5180e068ed400897c0e9f56bd4be28b338915905f12be5a85a326c1c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         18.165.196.217
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 24 Sep 2022 07:49:07 GMT
Last-Modified: Sat, 24 Sep 2022 06:39:57 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 04bb33465149b34afca4988622dca584.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: WqgWqeacst0RYzGpMsHrbogh0FWRNInlYf9khCe4QLA2-noeCTZsOA==
Age: 4150

                                        
                                            POST /s/gts1d4/UuxGnyxiNDw HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /6olhDSSVLPvv1DuK/f770cba2-81ec-46b9-abd2-dba51fbd162d/osano.js HTTP/1.1 
Host: cmp.osano.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         108.156.28.53
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
content-length: 54018
server: CloudFront
date: Sat, 24 Sep 2022 07:49:07 GMT
etag: "ed406efaeaefc60caeda9f14fb7dcf4a"
last-modified: Mon, 23 Aug 2021 15:33:47 GMT
content-encoding: br
cache-control: public, max-age=86400, s-maxage=86400, must-revalidate, proxy-revalidate, no-transform
strict-transport-security: max-age=2592000
x-frame-options: SAMEORIGIN
x-xss-protection: mode=block
x-content-type-options: nosniff
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 a6a1a17bbe377bf7c4423397c71959da.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: WPp267AIMr5itFFZkAS3ZfCda2njBJQXPnDE2ay-OQ1XhIR0VQU7HQ==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65413)
Size:   54018
Md5:    d146e29144f2598ce79123d53e6f48e2
Sha1:   f162e5a8af8abef4b66ac93ea01f2f24f1089fbc
Sha256: 3afd44ef8c3ad75bf8b6458e5af237ec2f003c82365aa8775662299f9c45e703
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Sat, 24 Sep 2022 07:49:07 GMT
Server: ECS (amb/6B94)
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4656
Cache-Control: 'max-age=158059'
Date: Sat, 24 Sep 2022 07:49:07 GMT
Last-Modified: Sat, 24 Sep 2022 06:31:31 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /clickfunnels/svg_image_data/funnelFlowImageData-v2.js HTTP/1.1 
Host: s3content.s3.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.217.107.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
x-amz-id-2: IMhArSr9jUeKcDzOFr3GF9qmJhOKcNi1cIhiS+BrV2c4G2+eTWbMKCMaI+cDidPgUwPMj5NVBiA=
x-amz-request-id: Y23C0M4F405WT6X5
Date: Sat, 24 Sep 2022 07:49:08 GMT
Last-Modified: Mon, 18 Nov 2019 19:08:11 GMT
ETag: "bd45b4e04f993d58db0a98b7f56f494b"
Cache-Control: max-age=86400
Accept-Ranges: bytes
Server: AmazonS3
Content-Length: 57132


--- Additional Info ---
Magic:  ASCII text, with very long lines (57030)
Size:   57132
Md5:    bd45b4e04f993d58db0a98b7f56f494b
Sha1:   3601aeae69f4428f63faebfa8a9e63a63e90d0e3
Sha256: 63c718b76be7b2dfbed15c1b7f277abe9e6493d46a61b64984c40171d247072f
                                        
                                            GET /user_pages-packs/js/user_pages-a4be5411d220515efba4.js HTTP/1.1 
Host: statics.myclickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.18.229
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 24 Sep 2022 07:49:07 GMT
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
access-control-expose-headers: ETag
cf-bgj: minify
cf-polished: origSize=177108
etag: W/"19613ec9e37844c428fa2ff69f72e90d"
last-modified: Mon, 12 Sep 2022 18:40:52 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-id-2: vFgLagqbd1GIL7XcvHvFbkBVMEtrPMx20tyvsuOJOEgdnJH4LWw5i4gnDxDWRR8yhG+5wuM3vOQ=
x-amz-request-id: FHZEJPZB795PJE21
cf-cache-status: HIT
age: 148323
expires: Wed, 29 Mar 2023 07:49:07 GMT
cache-control: public, max-age=16070400
set-cookie: __cf_bm=mOj4dKzXlmOxhvkz05FpYR.pqz55mzJLx6KBKwdzA7I-1664005747-0-AcSlYGfcZD8/RrZFxh9CPD1rgI6MVj1GBMXoB+dmfZUvKPS8hguVnOvuplmWZOzmD4EHRRWceoV9eGf044V0s5U=; path=/; expires=Sat, 24-Sep-22 08:19:07 GMT; domain=.myclickfunnels.com; HttpOnly; Secure; SameSite=None
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 74f9ebf0db3eb50c-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   58101
Md5:    9090acddfd987f33006c7d8154fc1ef3
Sha1:   8fd71679ea0421fef9832e9a20dc3b842d400b8f
Sha256: 7e5f16f4ea186ca1dec2683c77d5ab685e2d9084b31043eddd5ec3c636dc8161
                                        
                                            GET /image/12177/file/a0eb7ffcb38ca25afc4d3116085395d3.svg HTTP/1.1 
Host: statics.myclickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.18.229
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Sat, 24 Sep 2022 07:49:07 GMT
x-amz-id-2: BzA5vmzPtNylvCOgqSSgYnZEbYhUmxPPWfRDiMAFUbqntVE8FbpvqrVE+KMm+Jecexy62tFXaxQ=
x-amz-request-id: KNFCN6HWSJ9FV8CC
last-modified: Thu, 04 Aug 2022 20:25:21 GMT
etag: W/"06dbf51e97cdca22ba5b01e5c8ce6be8"
content-disposition: inline; filename="clickfunnels-dark-logo.svg"; filename*=UTF-8''clickfunnels-dark-logo.svg
cf-cache-status: HIT
age: 148323
expires: Wed, 29 Mar 2023 07:49:07 GMT
cache-control: public, max-age=16070400
set-cookie: __cf_bm=cH26rp0evIS5sGIsse2ROPx2G6g7H8ovVrCChbLQ8gk-1664005747-0-AQNmABZN1anoSOBRmURXzB1xDXx3bsj5WG6yhDklHj5H4ELoB81afK23OV7itLiZXlV0ZYyZRFBHzc5RMdzaTpk=; path=/; expires=Sat, 24-Sep-22 08:19:07 GMT; domain=.myclickfunnels.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 74f9ebf0ea950b39-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (8643), with no line terminators
Size:   84736
Md5:    106c5741abe8c8a50c59f4840d7fb285
Sha1:   41ba66b918551a5fe3e3295ffb4f91e26becac75
Sha256: ab1233c0c382ec40c032b92fcba44d72e7fede202a905dd1d161893e45591fb3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:26:57 GMT
expires: Thu, 21 Sep 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 217330
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Size:   12924
Md5:    4610010f425c140b99c88b6819ce1c02
Sha1:   a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
Sha256: 7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:30:59 GMT
expires: Thu, 21 Sep 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 217088
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size:   7816
Md5:    25b0e113ca7cce3770d542736db26368
Sha1:   cb726212d5d525021752a1d8470a0fb593e0c49e
Sha256: 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
                                        
                                            GET /releases/v5.15.0/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.132.15
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Sat, 24 Sep 2022 07:49:07 GMT
content-length: 80240
x-amz-id-2: bOpSUvCu+I083qgvK25G3LBE7Swx8qUy7JCxU3t3EHtzVOmO8IfWuaUfTFUErQsEdqvA/nlAXRo=
x-amz-request-id: 4JQPR35RHF4WCBV1
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:40:30 GMT
etag: "55071ae1abc18726e23174192ebc0b68"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2125900
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=066aAKbzNzikF4aiT4LrSPqOnw1KnRMm0lIk3U99p00We5PXjBlH36DwhaOZOtQ9x947a2%2F%2BhceM3xFVcTtx7PXGBmBUqCyannAmcm%2FWTE7v7Ot%2B2nQMttvEyftL5QQOI0lpxuFQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f9ebf2894d06f5-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 80240, version 331.-31458\012- data
Size:   80240
Md5:    55071ae1abc18726e23174192ebc0b68
Sha1:   6de203af57e5be1a565bce963703d96b0bf1c156
Sha256: 6dd2553b6fc4b336faac7d73ccc1e28ab420603c77800b9c14fd8df7c4547996
                                        
                                            GET /video/512712952?muted=1&autoplay=1&&title=0&byline=0&wmode=transparent&autopause=0 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.138.60
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 24 Sep 2022 07:49:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*; report-uri /_csp
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sat, 24 Sep 2022 07:58:58 GMT
x-host: player-84c9846b45-fbthd
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-2
x-backend-proxy: playproxy3
x-bapp-server: player-84c9846b45-fbthd
Age: 0
X-Served-By: cache-bma1683-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1664005747.491232,VS0,VE126
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=IoszhJSpe4yq.ZJkY9tOw8bMoRMOufc4iXvMyuWWy3o-1664005747-0-AXNBzoHuNJwxyXTq7S22/HWm8+oNetrRpe4gO7DWHiGtKRTiB9AiC+fE7jAYFq0fvEBSKLUg3a3t/Dm3TpiFOpI=; path=/; expires=Sat, 24-Sep-22 08:19:07 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74f9ebf1bc97b4ee-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14534)
Size:   4862
Md5:    f7fccee72c7a1529634da09be122340d
Sha1:   4088792ecce6098de306c5279bca79ee21a70dc4
Sha256: f97c4571cb344b7d151ea237905ee625f5de5895356a7c24f00e90247ee47da3
                                        
                                            GET /s/caveat/v17/Wnz6HAc5bAfYB2Q7ZjYY.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 73892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 05:42:03 GMT
expires: Fri, 22 Sep 2023 05:42:03 GMT
cache-control: public, max-age=31536000
age: 180424
last-modified: Fri, 24 Jun 2022 19:31:36 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 73892, version 1.0\012- data
Size:   73892
Md5:    635348e072c68e9688cc691f988eddd1
Sha1:   2a86c0cee213c342a68620bf3b3dde31b786637e
Sha256: 9a1f63454ea0b7caaecaeb0d801e866c6cb7d49a987d41e796976f4f00bed86a
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 08:31:01 GMT
expires: Wed, 20 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 343086
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:26:57 GMT
expires: Thu, 21 Sep 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 217330
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Size:   13036
Md5:    0ad032b3d07aaf33b160ac4799dda40f
Sha1:   06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
Sha256: c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
                                        
                                            GET /video/379117028?autoplay=0&title=0&byline=0&wmode=transparent&autopause=0 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.138.60
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 24 Sep 2022 07:49:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sat, 24 Sep 2022 07:57:39 GMT
x-host: player-84c9846b45-ppqdb
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-2
x-backend-proxy: playproxy3
x-bapp-server: player-84c9846b45-ppqdb
Age: 0
X-Served-By: cache-bma1633-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1664005748.535184,VS0,VE116
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=jFtOhX43ICTed1gV73LhTK329nI3HBOctRVKwsmNRTA-1664005747-0-AVaX3jNx2wmMSxIVNl3XaRO+D7fISp4oE+Yf7ASCnS5j9sKtglHkPaT5uh4GxffqQoCKruhfxeMqHgoE35/wRys=; path=/; expires=Sat, 24-Sep-22 08:19:07 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74f9ebf20ac81bfa-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (16872)
Size:   5248
Md5:    b5fe5d4ace6ddd35eca1c41296b7023c
Sha1:   28aa5ad613a10b6d854fa34f436964ff387e42ea
Sha256: c2be839170c6468ff46aa37349b925128f09b94f425b27beefbbeeffce33689e
                                        
                                            GET /video/379115978?autoplay=0&title=0&byline=0&wmode=transparent&autopause=0 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.138.60
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 24 Sep 2022 07:49:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sat, 24 Sep 2022 07:54:29 GMT
x-host: player-84c9846b45-2945s
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-5
x-backend-proxy: playproxy6
x-bapp-server: player-84c9846b45-2945s
Age: 0
X-Served-By: cache-bma1626-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1664005748.536473,VS0,VE117
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=xQOqNceL5TH8m4.eokal0kgOnzP4u9Jr6IRBtWz3R8Y-1664005747-0-ATcB2vhWyxPDwB2DQCOVPnZ15a4RqnzhBTpsOStIune1h8vhoTV/KqK5T5nxcaR57+KZT6+MaNwO3aB5g9G19vY=; path=/; expires=Sat, 24-Sep-22 08:19:07 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74f9ebf2087db4ff-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (16860)
Size:   5255
Md5:    d0e3face83bbabc57c2b5fef2369d96b
Sha1:   fd814836eafb02de36f8088cb26545af3b0dc858
Sha256: 9a484d7ee0bb01c9f429e31ae189a45e18d503e19b397000cd88ce2e696ce05c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /cdn-cgi/image/f=auto,q=95/https://statics.myclickfunnels.com/image/1100/file/dda0b60b40bd555850fa292ec7288286.png HTTP/1.1 
Host: images.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Cookie: __cf_bm=ht.b1MX.MmNVg41LiMIACXAnx6Nm47o4UIYtSxA4jGc-1664005746-0-AXCYgEBOI1/FyAz6ZAFETygCEh8/bVSqJEXDYxfiayR0+jZZzimpcQDSEa+E+o6w5w27We7XxschsCLQO36OuS5+8MXOrV/ainVNriZu38cl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/webp
                                        
date: Sat, 24 Sep 2022 07:49:07 GMT
content-length: 26148
cf-ray: 74f9ebf2fc0ab51e-OSL
accept-ranges: bytes
cache-control: public, max-age=16070400
etag: "cfEyP5rzty-WKDUCfuAlIA2w:b3114de69757a18d2f382ab4924f0a76"
last-modified: Mon, 24 Jan 2022 19:32:00 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:96,h2pri
cf-resized: internal=ok/m q=0 n=125 c=61 v=2022.8.0 l=26148
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF rate limited"
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   26148
Md5:    c9731d8436921677ddbb8834a7b915fe
Sha1:   f6c9ca05b81f6ddbd4250404fc0b5b18d96e14f4
Sha256: 98ec702f28d9edd38ca35d6d5e3de45d9c8f276f9fb91b21e4c721bbd01df8c0
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7aLJcTteYnuiXyklTab5pQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.163.147.190
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mPEyBOPUFZ5khvQHRtC6dibPRbk=

                                        
                                            GET /cache/ffe42393bdc5493779dcb20b98c37cd7.webp?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=ASIAULXLPKYZKHYAXPDA%2F20220124%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20220124T184443Z&X-Amz-Expires=900&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEFIaCXVzLWVhc3QtMSJGMEQCIDxicyMDwm6UfUx3XZWgsm%2FYRBOX3JI0IAeAOAsGd5jbAiAzDfZDf4y4t2bqqWRwua1mCRTMxbsnqMNsj00MG%2FMVZyr6Awh7EAEaDDMwMDA2NzgwNDcyMiIM3dfZtpEO9viBxyI%2BKtcD6oJOclw%2FVaCd9Q7JN9oFN9LQ%2BuM6TWkP%2Br8EzWeenvHFLMrXp5FqOOrK1YFPZZ0MVslPiMvgHqrvfc0X%2BX4r64X2bS8r5dIleecUzuWKV7l32l32WWpvhnYgqxBpdlmSlw2VkuZW%2BOZUP%2B7ilqAjsJZHFJRRZnQh4QOR7wGjjHkHTauB4kItpCj7rE40rpetf0vvG8jOtnN9BGXkD41asPe%2F3octSdYuOtxxZxuwYM8Z%2F%2BGRTwOnL41euOgCgcY63wkTl8c%2BivgnBRMjshpzIT6RcjlOcgCeIwzNj3klPi3zbgg1%2BuHS8u7PFVvtQvNf2M3hKZNkszktOZOS6%2FP9EKu%2B586BuWqN%2FWg3q4eJQtdXFiWOSlZXlEF29RmXmRqjYRuMbM8dJOJtUa2VVRQtn93mjkBytP85gWn%2Bv7W4odwa2VYoPRFAxK1cgXErJbjgKza3bUHklVgSz4mastN5acLXujbRO8pwTlANaBD8YPfU3wPDi1wYEgukYFChLsgvwAvQFjNIO5HNe8N810ib%2Bk12Yw5DKhklOO0HVL9rwBB5gZuznmYiGoB%2BmcxveCZMJKu81Zfv0VH54MDrhvu7AIfe9UWbBd%2FDWzN24xaxEO6lH%2BrSka%2BEMLvBu48GOqYBz%2FoeCOLqXXuDyPLuUFb37vsJcjWaKd4CwrmKJAkjllaZhHdMZv%2FpZUtyD%2B7QIHEc6ctU6V%2BGAFdfZZCXCY61RXQFYki0iCxV8hdyiqNqSMXUo5NNB6ROLw9YRr4CVyplBwQFBCY6ffxJvL7xOTSncjpxgzCq3Ud9bU56hs9bfcGSSnpWnwck4XZeFEcGFBNOS9EVM89CtsXX1yUlyiSQhlV6uqrjfA%3D%3D&X-Amz-SignedHeaders=host&X-Amz-Signature=1222ebba5cd8fbe318a487e0762b157b3e586885ff9eeb3edb3cb7db23c272e7 HTTP/1.1 
Host: cf2-private-production-workspaces-assets.s3.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.217.107.44
HTTP/1.1 403 Forbidden
Content-Type: application/xml
                                        
x-amz-request-id: Y232GC29JDVTHP0G
x-amz-id-2: ihp+eKmTseVyi6R5IxwfmWNLpXw0qs5lJ7zmggjz9vbp2EDy17+rDSU8UWJsu5m8lopA22AQ6Io=
Transfer-Encoding: chunked
Date: Sat, 24 Sep 2022 07:49:07 GMT
Server: AmazonS3


--- Additional Info ---
Magic:  XML 1.0 document text\012- XML document, ASCII text, with very long lines (328)
Size:   367
Md5:    2acc41ce8b551607c181d122cdebb54a
Sha1:   d62c869df217ca6cb745933a1fc2a147149b9c9c
Sha256: 6516bf1a4a8241c3dc1f8d6678b242a35d31002afb14fbdf2b88bb1582684091
                                        
                                            GET /editor/closemodal-v2.png HTTP/1.1 
Host: www.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/?aff_sub=domain_redirect&utm_campaign=domain_redirect
Cookie: __cf_bm=ht.b1MX.MmNVg41LiMIACXAnx6Nm47o4UIYtSxA4jGc-1664005746-0-AXCYgEBOI1/FyAz6ZAFETygCEh8/bVSqJEXDYxfiayR0+jZZzimpcQDSEa+E+o6w5w27We7XxschsCLQO36OuS5+8MXOrV/ainVNriZu38cl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
                                        
date: Sat, 24 Sep 2022 07:49:07 GMT
cf-ray: 74f9ebf19a85b51e-OSL
access-control-allow-origin: *
cache-control: private
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 404 Not Found
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: d83382fda4bfe10814fcb596e9f4678e
x-runtime: 0.143631
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   6159
Md5:    104e078fb52381647454347023636961
Sha1:   b0103bd88da7d4042fd8716e0544692869a5254e
Sha256: 2560be4b1dd391663527a31f5b4984c2334830a7b3c427e83623e8fae44806fe
                                        
                                            POST / HTTP/1.1 
Host: ocsp.starfieldtech.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Sat, 24 Sep 2022 07:49:08 GMT
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 23 Sep 2022 23:42:39 GMT
Expires: Sat, 24 Sep 2022 23:42:39 GMT
ETag: "34357b92eca900ae3b9cd058c5e4cfe9b046f7aa"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1845
Md5:    367062e8ab7c07d127712031f488481a
Sha1:   34357b92eca900ae3b9cd058c5e4cfe9b046f7aa
Sha256: 64ea3dfb7be94374e2d2748a12f654ed86064429384d6d2c119d2c8ec7f4c9c1
                                        
                                            GET /video/839074679-099ceff63eb028c27564862ade8abd608468205b768772dd9ef1ee482ce65af4-d.jpg?mw=80&q=85 HTTP/1.1 
Host: i.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: image/jpeg
                                        
etag: c485a4d8571e77d6409f892cfab8146a
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-hbrn
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Sat, 24 Sep 2022 07:49:08 GMT
age: 1015604
x-served-by: cache-dfw-kdfw8210029-DFW, cache-bma1669-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 3
x-timer: S1664005748.171489,VS0,VE0
content-length: 1613
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Size:   1613
Md5:    c485a4d8571e77d6409f892cfab8146a
Sha1:   515b46f35993fb6433a6edfc5786a0a5b7dd87c5
Sha256: 3348263a50cf631967715e8c1feef67dc48a163b60f02dcd69365e44e668aa16
                                        
                                            GET /video/839073367-91d603ab6836f1cc5de583c5edc76437fc56c4e836eb953ca4a8bd4318ca1c25-d.jpg?mw=80&q=85 HTTP/1.1 
Host: i.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: image/jpeg
                                        
etag: 9da31d2dff3fdbd4d3edf08953489d9a
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-gf4p
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Sat, 24 Sep 2022 07:49:08 GMT
age: 1525202
x-served-by: cache-dfw-kdfw8210114-DFW, cache-bma1669-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 1
x-timer: S1664005748.182192,VS0,VE1
content-length: 1938
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Size:   1938
Md5:    9da31d2dff3fdbd4d3edf08953489d9a
Sha1:   a53a6d979e825a9738d18fbd225463e621a28e62
Sha256: 7cee1f0e7d154c3bfde85fb73a9663a5cce4ca214989249e530af89020c7268b
                                        
                                            GET /video/379115978?autoplay=0&title=0&byline=0&wmode=transparent&autopause=0 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.138.60
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 24 Sep 2022 07:49:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sat, 24 Sep 2022 07:54:29 GMT
x-host: player-84c9846b45-2945s
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-5
x-backend-proxy: playproxy6
x-bapp-server: player-84c9846b45-2945s
Age: 0
X-Served-By: cache-bma1678-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1664005748.195279,VS0,VE117
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=NMIMBzx7X7k9PLR_eOUkS.87d8q59rk6K0FFUksF._8-1664005748-0-AWqU9otRxdzl0qArIoab8s60ExZI8X/4N/YXqL2SFVyrym7gXktZdqlOLMqpO5cf9ahsjQMkq251vRcAMykjDxA=; path=/; expires=Sat, 24-Sep-22 08:19:08 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74f9ebf62e6a1bfa-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (16860)
Size:   5255
Md5:    021c4476f68ef5be03211de0813a532c
Sha1:   f81fad714c06c985b588392ed4bf033e5282c2f5
Sha256: 3777594a9986541ef82fdea6d8cf7ccd4537a79775f6bcb71bb32426b6b9ff2c
                                        
                                            GET /video/512712952?muted=1&autoplay=1&&title=0&byline=0&wmode=transparent&autopause=0 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.138.60
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 24 Sep 2022 07:49:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*; report-uri /_csp
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sat, 24 Sep 2022 07:58:58 GMT
x-host: player-84c9846b45-fbthd
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-2
x-backend-proxy: playproxy3
x-bapp-server: player-84c9846b45-fbthd
Age: 0
X-Served-By: cache-bma1652-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1664005748.195643,VS0,VE119
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=Dj3Zls3WlPlC.uE9jNDs4YrHrgb_uhnKRKdW0L8pV7Y-1664005748-0-ARjr31038SP+J5DeIamMPygnb9Uf7PCL3p8FbiRF/NZdV7r2RtIJVK+pfZanusn0SGdTIS5iiBT6+P/R6beudEA=; path=/; expires=Sat, 24-Sep-22 08:19:08 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74f9ebf61c9fb4ff-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (15602)
Size:   4935
Md5:    f800fc6af7db5bb517bb0ec13daf9d49
Sha1:   c29bde3c9b8e8d2a2824236792a42bac38f943d7
Sha256: 2a82dbab1dc14cc6653007b9103ac13f77194961c2b1a06ce4e4a56a3d32257a
                                        
                                            GET /video/379117028?autoplay=0&title=0&byline=0&wmode=transparent&autopause=0 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.138.60
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 24 Sep 2022 07:49:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sat, 24 Sep 2022 07:55:28 GMT
x-host: player-84c9846b45-mzg4w
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-8
x-backend-proxy: playproxy9
x-bapp-server: player-84c9846b45-mzg4w
Age: 0
X-Served-By: cache-bma1650-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1664005748.207458,VS0,VE128
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=P6jQf_P9_J1qP1JR9k8WaJt6Pc8xOMYE7lI9DQHhnrY-1664005748-0-AeRX4Rj1E3+seICQaoeOyC8z/aXzaesWDEUf5X8R2w1AWuzePYlHc8vz5MsRJ58Mk4lBSWcx8HlLi8xGUmuBsA0=; path=/; expires=Sat, 24-Sep-22 08:19:08 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74f9ebf639beb4ee-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (15988)
Size:   5159
Md5:    1499f0900b57630bada22a5a3c5d7450
Sha1:   2a9d17d7d681d0510227fbffd2019dd013108ccb
Sha256: db9879a9caf23a32b3d24ca2a2abef700f593949d7c03b30159e9d5a575e2415
                                        
                                            GET /p/4.10.1/css/player.css HTTP/1.1 
Host: f.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: text/css
                                        
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 24 Sep 2022 07:49:08 GMT
age: 303096
x-served-by: cache-iad-kjyo7100154-IAD, cache-bma1624-BMA
x-cache: HIT, HIT
x-cache-hits: 61, 57227
x-timer: S1664005748.355926,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20284
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65495)
Size:   20284
Md5:    674ea13d207a5c2820c92eb236796548
Sha1:   439a3a05f926e21e43ed043e47197aec6c02358f
Sha256: 99105d0c1f2a3eee4823bc2f2151f1747c3f7fa45df401596bc2273328abc22f
                                        
                                            GET /js_opt/modules/utils/vuid.min.js HTTP/1.1 
Host: f.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 24 Sep 2022 07:49:08 GMT
age: 397909
x-served-by: cache-iad-kiad7000169-IAD, cache-bma1624-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 64892
x-timer: S1664005748.368388,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1839)
Size:   997
Md5:    a726e1c270a0429ccce67d981a12ac33
Sha1:   7319cca36fa04ee8d74ea677a0bb5dd113649011
Sha256: 2601818bf89176145a614b0d50b1ef1cd95272a5bc6be5526d54c464f6172dbf
                                        
                                            GET /p/4.10.1/js/player.js HTTP/1.1 
Host: f.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 24 Sep 2022 07:49:08 GMT
age: 303096
x-served-by: cache-iad-kcgs7200127-IAD, cache-bma1624-BMA
x-cache: HIT, HIT
x-cache-hits: 52, 44469
x-timer: S1664005748.368264,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
content-length: 212091
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64649)
Size:   212091
Md5:    0178a74556a8c2ae4b0adc1e5896add3
Sha1:   a2187164dbe08839a3bed391ee10f5b3ef24542b
Sha256: 0ab6e243b2068c5ba3620a078364c9b73c7075d70f8e73a00be48fad7bf707ae
                                        
                                            GET /v.gif?cd=0&a=611747&d=clickfunnels.com&u=D4BFEF0CEF1F93371F4354EC140FF5A3C&h=7f1b1d6452bf7f59b02422e3508c13be&t=false&r=0.8804412250653757 HTTP/1.1 
Host: dev.visualwebsiteoptimizer.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.96.102.137
HTTP/2 200 OK
content-type: image/gif
                                        
date: Sat, 24 Sep 2022 07:49:08 GMT
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
expires: Mon, 10 Jan 2005 00:00:01 GMT
pragma: no-cache
x-content-type-options: nosniff
content-length: 35
server: gnv1c
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /images/closemodal.png HTTP/1.1 
Host: www.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/?aff_sub=domain_redirect&utm_campaign=domain_redirect
Cookie: __cf_bm=ht.b1MX.MmNVg41LiMIACXAnx6Nm47o4UIYtSxA4jGc-1664005746-0-AXCYgEBOI1/FyAz6ZAFETygCEh8/bVSqJEXDYxfiayR0+jZZzimpcQDSEa+E+o6w5w27We7XxschsCLQO36OuS5+8MXOrV/ainVNriZu38cl; cfhoy_visit=5d8ce586-5b67-4eef-a779-baa682f14e8b; cfhoy_visitor=29bfd532-29c7-4f89-904a-878f96c3adda; _vwo_uuid_v2=D4BFEF0CEF1F93371F4354EC140FF5A3C|7f1b1d6452bf7f59b02422e3508c13be
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/webp
                                        
date: Sat, 24 Sep 2022 07:49:08 GMT
cf-ray: 74f9ebf8598db51e-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 118268
cache-control: public, max-age=2678400
content-disposition: inline; filename="closemodal.webp"
etag: "632b3357-314"
expires: Tue, 25 Oct 2022 07:49:08 GMT
last-modified: Wed, 21 Sep 2022 15:52:55 GMT
strict-transport-security: max-age=0
vary: Accept, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=788
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   218876
Md5:    58fb71831b2d0b509591152f797f91a7
Sha1:   7ec96a742aacf499ab73c65d81b128aeb94b01be
Sha256: 765cbc39a4a621203e55f6131526271dcaa107c3d60380ef5fc4517412c3fcf1
                                        
                                            GET /video/839074679-099ceff63eb028c27564862ade8abd608468205b768772dd9ef1ee482ce65af4-d?mw=800&mh=451 HTTP/1.1 
Host: i.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: image/avif
                                        
etag: c3efd811a142c2a77a02566476048da2
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-jbm1
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Sat, 24 Sep 2022 07:49:08 GMT
age: 938587
x-served-by: cache-dfw-kdfw8210114-DFW, cache-bma1669-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 2, 1
x-timer: S1664005749.774503,VS0,VE1
vary: Accept
content-length: 16827
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   16827
Md5:    c3efd811a142c2a77a02566476048da2
Sha1:   625941fe3113cbbc8f728223d36dcfca65f83a60
Sha256: 2eecf381f1c91040016db807bbb8d319d2b2ecc63eec00f156a31187e77d4416
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4963
Expires: Sat, 24 Sep 2022 09:11:51 GMT
Date: Sat, 24 Sep 2022 07:49:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4963
Expires: Sat, 24 Sep 2022 09:11:51 GMT
Date: Sat, 24 Sep 2022 07:49:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4963
Expires: Sat, 24 Sep 2022 09:11:51 GMT
Date: Sat, 24 Sep 2022 07:49:08 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c80a02c-1515-49a8-8ea9-716d3094dcfa.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6510
x-amzn-requestid: 1d584980-5495-4925-b420-ef8b5a5e30e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7ruGGusoAMFe6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e265a-370b00862dfed1606ac36797;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:34:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UKUo6081ZsJZLGVpaTA4z6S2fAciJj7IW4RtS7Kl2CiAZjhljs8-ig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:18:53 GMT
age: 34215
etag: "b0697adfd0fab611ba6afae2218645977846c341"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6510
Md5:    146cb832dec96067e5e003b2f7617941
Sha1:   b0697adfd0fab611ba6afae2218645977846c341
Sha256: e3ebac2261c6243caf678babe5350ae70da1e24fd7a0bbfdb449fd2b933eb237
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lAQOV9_fZ2RFvhRKMtDOeRTWJc-Jo1u-DrtJshcQuCSOUXVbNMjhaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:56:56 GMT
age: 35532
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10032
Md5:    aa150280eb113504d61a25935c0f0127
Sha1:   ed04f74fbb4c77b21e2babc51a82857f5e23d169
Sha256: 07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NcnEyVD-vG10pOpPCBMjKGqVw-rstkPIt-oqkIc5urAGE934fxL0VQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 04:12:38 GMT
age: 12990
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10279
Md5:    8ea5f06ad31f0cedd2cb5c6df82f35f4
Sha1:   60a83a1618ffae06e49ca3002bac1db9980dcfe8
Sha256: 5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:59:08 GMT
age: 35400
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8029
Md5:    02a682b4703bb9d6381c762726c05531
Sha1:   1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
Sha256: fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:52:36 GMT
age: 35792
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6386
Md5:    d8d9af95acfc8b9b431eb1e020157f6d
Sha1:   f6f926be6e265a597aaede424f05fcd7c76fcc20
Sha256: 0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F993a9251-cb79-4060-b043-aacb127c6565.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8907
x-amzn-requestid: 974b20af-4775-45bd-9e3f-55e5aa363c2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQRGPtIAMFZCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2734-18aebf577efb8aaa0182aeed;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ANAYROIRBWe_Y5TxqYp9IDnqnuOHQGjvyj1K8Z85m7C9DGCXXuQ-Cw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:47:49 GMT
age: 36079
etag: "24d4dcad1590e79e89a1ffe343bd7fe616528c5a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8907
Md5:    f727cc665bfa383779422949037a83a7
Sha1:   24d4dcad1590e79e89a1ffe343bd7fe616528c5a
Sha256: 72dc66286d9ea7b71b6c9a116ff69380a97253c73f1ba2a5b3da34790e321e05
                                        
                                            GET /video/839073367-91d603ab6836f1cc5de583c5edc76437fc56c4e836eb953ca4a8bd4318ca1c25-d?mw=700&mh=394 HTTP/1.1 
Host: i.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.109
HTTP/2 200 OK
content-type: image/avif
                                        
etag: 822e22501395ff75ca3f7d512c40b4b1
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-east1-k0q5
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Sat, 24 Sep 2022 07:49:08 GMT
age: 1381104
x-served-by: cache-dfw-kdfw8210115-DFW, cache-bma1669-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 1, 1
x-timer: S1664005749.874862,VS0,VE1
vary: Accept
content-length: 43246
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO Media, AVIF Image\012- data
Size:   43246
Md5:    822e22501395ff75ca3f7d512c40b4b1
Sha1:   9410092b54a73ed3e190a5907d54f39569a137d0
Sha256: 6f04c3b496975379eeeceb32f2a033b0020460203280235ddafe50fb4b4db3b2
                                        
                                            GET /35/663790d4c411e899cbf7997697a31b/big-play-button.png HTTP/1.1 
Host: images.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Cookie: __cf_bm=ht.b1MX.MmNVg41LiMIACXAnx6Nm47o4UIYtSxA4jGc-1664005746-0-AXCYgEBOI1/FyAz6ZAFETygCEh8/bVSqJEXDYxfiayR0+jZZzimpcQDSEa+E+o6w5w27We7XxschsCLQO36OuS5+8MXOrV/ainVNriZu38cl; _vwo_uuid_v2=D4BFEF0CEF1F93371F4354EC140FF5A3C|7f1b1d6452bf7f59b02422e3508c13be; aff_sub=domain_redirect; utm_campaign=domain_redirect
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/webp
                                        
date: Sat, 24 Sep 2022 07:49:09 GMT
content-length: 16730
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=20462
content-disposition: inline; filename="big-play-button.webp"
etag: "357cc44bc52f2f52c2e6ee3b32b64e62"
last-modified: Sat, 20 Oct 2018 23:59:43 GMT
vary: Accept
x-amz-id-2: xzC8obbE9XXzksdFRvbe4GzylqOTdWWZkuyOaZZUOIoonrIwqdB4kUlj96qyyLGP/Ffsw90+wk8=
x-amz-request-id: WFWK7253TEAR6H75
cf-cache-status: HIT
age: 6295
expires: Tue, 18 Oct 2022 07:49:09 GMT
cache-control: public, max-age=2073600
accept-ranges: bytes
server: cloudflare
cf-ray: 74f9ebfbfd37b51e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   16730
Md5:    cb31a00146496569d0dd2a9f55600743
Sha1:   3a01412644c32b929c0e48d2838cf9ba48bb85c6
Sha256: c8665200581de312ee71061fa11d45817b2fb16f92e28d717032a7a15e07a99b
                                        
                                            GET /ba/09a7a0cb2a11e8a233973e775a70ad/sound-on3.png HTTP/1.1 
Host: images.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Cookie: __cf_bm=ht.b1MX.MmNVg41LiMIACXAnx6Nm47o4UIYtSxA4jGc-1664005746-0-AXCYgEBOI1/FyAz6ZAFETygCEh8/bVSqJEXDYxfiayR0+jZZzimpcQDSEa+E+o6w5w27We7XxschsCLQO36OuS5+8MXOrV/ainVNriZu38cl; _vwo_uuid_v2=D4BFEF0CEF1F93371F4354EC140FF5A3C|7f1b1d6452bf7f59b02422e3508c13be; aff_sub=domain_redirect; utm_campaign=domain_redirect
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/webp
                                        
date: Sat, 24 Sep 2022 07:49:09 GMT
content-length: 26710
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=45005
content-disposition: inline; filename="sound-on3.webp"
etag: "037de615230e760f15d259ee8fc8bd81"
last-modified: Mon, 08 Oct 2018 18:48:27 GMT
vary: Accept
x-amz-id-2: AY13bmpsu7fKQtdBvvj0uxJgcEBUC+kIO0WixI3OnIL3RFtGD3HegT3+Rxm+nWXrUaFQJw7xaFQ=
x-amz-request-id: 2FGDGYWH8FY2PMND
cf-cache-status: HIT
age: 6295
expires: Tue, 18 Oct 2022 07:49:09 GMT
cache-control: public, max-age=2073600
accept-ranges: bytes
server: cloudflare
cf-ray: 74f9ebfbed33b51e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   26710
Md5:    bf9d0de75ae0f56af789ee3aa2bcc0e8
Sha1:   2da00f177db4c310c12580c1cc2fef77b48cd19b
Sha256: cb1f55132ced515c970a40afc57933d0d1d986a8f6a0de4485368711dc791adf
                                        
                                            GET /e0/641cd0cb3611e8a5efdf0f4d679b5f/playbutton.png HTTP/1.1 
Host: images.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Cookie: __cf_bm=ht.b1MX.MmNVg41LiMIACXAnx6Nm47o4UIYtSxA4jGc-1664005746-0-AXCYgEBOI1/FyAz6ZAFETygCEh8/bVSqJEXDYxfiayR0+jZZzimpcQDSEa+E+o6w5w27We7XxschsCLQO36OuS5+8MXOrV/ainVNriZu38cl; _vwo_uuid_v2=D4BFEF0CEF1F93371F4354EC140FF5A3C|7f1b1d6452bf7f59b02422e3508c13be; aff_sub=domain_redirect; utm_campaign=domain_redirect
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.16.12.194
HTTP/2 200 OK
content-type: image/webp
                                        
date: Sat, 24 Sep 2022 07:49:09 GMT
content-length: 53878
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=81347
content-disposition: inline; filename="playbutton.webp"
etag: "a1ef531f738bfbbb3f8e9ea289308b05"
last-modified: Mon, 08 Oct 2018 20:15:25 GMT
vary: Accept
x-amz-id-2: jRS6JHU92Oyr5DgXeQLr8C293rJ+Y33xskss7xmZopqBRnvMXNcI0Jz++taKGCFxn1+QxDSE7EU=
x-amz-request-id: K7HNZW4B0H6GMX1G
cf-cache-status: HIT
age: 888
expires: Tue, 18 Oct 2022 07:49:09 GMT
cache-control: public, max-age=2073600
accept-ranges: bytes
server: cloudflare
cf-ray: 74f9ebfbed34b51e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   53878
Md5:    722b100ec6f80eab4222d751e1a0a8b7
Sha1:   875c1efd3e19ddbee05ac83f4ab2b47dd256df23
Sha256: 5eadc9edf663f153cd1ad927276f2a9409c0b88f0b34f6cc64465412a9089d03
                                        
                                            GET /exp=1664009648~acl=%2Fab71b475-0e35-43da-b723-64893b792f2b%2F%2A~hmac=bfd4d27ecad701db71687d47d6259edb24497102851c509aa57c162af01963df/ab71b475-0e35-43da-b723-64893b792f2b/sep/video/d9eabe33,30e8219e,a5b84d84,f0f3943f,ccfe2c94/master.json?base64_init=1 HTTP/1.1 
Host: 44vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.160
HTTP/1.1 200 OK
Content-Type: application/json
                                        
origin-retrieved-hour: 1656165600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 5897
Aka-c-hit: cache-hit
Cache-Control: max-age=26031204
Date: Sat, 24 Sep 2022 07:49:09 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.9c4c2417.1664005749.3eae2e7
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.160
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (33971)
Size:   5897
Md5:    273ea4d49628854ef18f0e5a47014836
Sha1:   f138ef84192443aa051e0f30acb4b49296b13a8a
Sha256: 791838f3d748877785117a1a3d6bd982a0afe071f586ece8d82bbcd9026b20d1
                                        
                                            GET /exp=1664009648~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=2f029c0a6ffbac48794b163a5ffdfb241bfa65d61d68122b6487cf435fa2b3cd/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/sep/video/8b85d74b,7fc34c59,e0804459,9f9d0c89,303adf91/audio/0ebf24e1,32f5b81a/master.json?query_string_ranges=1&base64_init=1 HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.138
HTTP/1.1 200 OK
Content-Type: application/json
                                        
origin-retrieved-hour: 1658289600
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 4797
Aka-c-hit: cache-hit
Cache-Control: max-age=25822622
Date: Sat, 24 Sep 2022 07:49:09 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.864c2417.1664005749.5ba9ef2
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.138
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (22441)
Size:   4797
Md5:    303a850b758cc938aecfe5da1b5f82c4
Sha1:   637ae1888c8852c8f4f0be6600502905d5f23e3a
Sha256: 0aff687cb804e0d9e4f5bfbcbf008e22322a21e9df5daa7c1b1f8bc75c5c9d0c
                                        
                                            GET /exp=1664009648~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=2f029c0a6ffbac48794b163a5ffdfb241bfa65d61d68122b6487cf435fa2b3cd/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/sep/audio/e0804459/chop/segment-1.m4s?r=dXM%3D HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.138
HTTP/1.1 200 OK
Content-Type: video/mp4
                                        
Content-Length: 96272
using-starlord: true
origin-retrieved-hour: 1658610000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=26141042
Date: Sat, 24 Sep 2022 07:49:09 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.864c2417.1664005749.5ba9ef3
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.138
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  data
Size:   96272
Md5:    59affa340baacb47f39f3c5cb1fdfc18
Sha1:   5e5266378cfdd3ac284a63f6bd977d3b06ea8084
Sha256: e25c8f8c200c6a2ca547a103f79d5ee97fdc60dd948b8de6bdb93f27d06f73a6
                                        
                                            POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /add/player-test-impression?beacon=1 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sat, 24 Sep 2022 07:49:09 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST /add/player-stats?beacon=1&session-id=1de90982c6ac1ccf2b695cb6e80ce5fcc9d785511664005748 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1435
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sat, 24 Sep 2022 07:49:09 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST /add/player-test-impression?beacon=1 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sat, 24 Sep 2022 07:49:09 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /add/player-stats?beacon=1&session-id=de216cb2856c580605203b64609b8c390f0dfacf1664005748 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1437
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sat, 24 Sep 2022 07:49:09 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5881
Cache-Control: 'max-age=158059'
Date: Sat, 24 Sep 2022 07:49:09 GMT
Last-Modified: Sat, 24 Sep 2022 06:11:08 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 314

                                        
                                            GET /v2/4420/wr-051bb36b7693c10a1a1d5ce2dc1a4f6e.js HTTP/1.1 
Host: widget.wickedreports.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         108.156.28.6
HTTP/2 200 OK
content-type: text/javascript
                                        
content-length: 423
last-modified: Wed, 31 Aug 2022 15:52:21 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 24 Sep 2022 01:51:56 GMT
etag: "052fee2b15ba47b2bd07e94d738bb3f0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 7334e58f541a6f336bf4941e79456558.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: eurQHpGxPvp51H5OIXqWw8vMeX2jGVH1Mj3v4Ei9__v_QZCalsCZLg==
age: 21434
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (423), with no line terminators
Size:   423
Md5:    052fee2b15ba47b2bd07e94d738bb3f0
Sha1:   49301d210d1ba78608ba4a9a97a23d1ac3c53f84
Sha256: e374368491681e74bcfa0243db9e7e55d58561351db134fdda588ed58cab5ea7
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4BEA20A051DA9F03E4735487FFB64AF4F4EB1A894315A9EA64DA7E8317AFCBF4"
Last-Modified: Wed, 21 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5944
Expires: Sat, 24 Sep 2022 09:28:13 GMT
Date: Sat, 24 Sep 2022 07:49:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4163
Cache-Control: 'max-age=158059'
Date: Sat, 24 Sep 2022 07:49:09 GMT
Last-Modified: Sat, 24 Sep 2022 06:39:47 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST /add/player-test-impression?beacon=1 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sat, 24 Sep 2022 07:49:09 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            POST /add/player-stats?beacon=1&session-id=808dddecdf1f857488d17bf05351a013112488841664005748 HTTP/1.1 
Host: fresnel.vimeocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1437
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.202.204
HTTP/2 200 OK
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sat, 24 Sep 2022 07:49:09 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

                                        
                                            GET /app/public/script/c6f367af-544a-4136-93d5-3ae34d896add HTTP/1.1 
Host: my.capibox.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         78.46.194.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Server: nginx/1.16.1
Date: Sat, 24 Sep 2022 07:49:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.25
Cache-Control: max-age=0, must-revalidate, no-cache, no-store, private
pragma: no-cache
expires: -1


--- Additional Info ---
Magic:  ASCII text
Size:   6685
Md5:    62249962b60f415fb12b887ea9478dc4
Sha1:   8aced83aabb7722eba937e80b7bac6d3769b510b
Sha256: 808f487f52ad72e801d1292f23d50c91c03efb8398f8b0be27d0e2590517aaae
                                        
                                            POST /s/gts1d4int/S8bfnalmCqs HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /web/djIkdGU6Ny4wOmFzeW5jJWdxdWVyeQ==/tag-936b81785076dd602377feb58651d58b.js HTTP/1.1 
Host: dev.visualwebsiteoptimizer.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.96.102.137
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Sat, 24 Sep 2022 07:49:09 GMT
content-length: 49217
last-modified: Sat, 24 Sep 2022 05:04:29 GMT
content-encoding: br
etag: "632e8fdd-c041"
server: gams1
vary: Accept-Encoding
cache-control: public, max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47951)
Size:   49217
Md5:    63724f9a126052cb684321e430194b93
Sha1:   e3243fba7c970cca107c2b9cf59bb703518682af
Sha256: 693e26d1296260531dd4c1c58bc86430ba10a83bbf4cfe9c330e59f9f78fd56c
                                        
                                            GET /api/player.js HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.159.138.60
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=utf-8
                                        
Date: Sat, 24 Sep 2022 07:49:09 GMT
Content-Length: 6136
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: default-src 'none'; style-src 'unsafe-inline'
x-content-type-options: nosniff
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sat, 24 Sep 2022 07:54:22 GMT
x-host: player-84c9846b45-pf2cd
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-0
x-backend-proxy: playproxy1
x-bapp-server: player-84c9846b45-pf2cd
Accept-Ranges: bytes
Age: 1488
X-Served-By: cache-bma1633-BMA
X-Cache: HIT
X-Cache-Hits: 1958
X-Timer: S1664005750.705297,VS0,VE0
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=sisQFH.iYyPntM3Jol9cc35oqt2lOc4g3szCTkZOn8E-1664005749-0-AVPhsXJp/g7X8jLQn8u8Jt83eywicvunvGqYREtDDqVqhSFTiOIkgX4o/y5k2RAPjeJrve/88qUu4DOGxGY++jU=; path=/; expires=Sat, 24-Sep-22 08:19:09 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74f9ebff9f681bfa-OSL


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (20390)
Size:   6136
Md5:    517096278768b4afc862e5816d65a0cd
Sha1:   efb337f1d1c369be5b5fa5fb34c3742d54dcb87d
Sha256: e39f4bcf8422e05cf4600c00ec36a02ee3ef772f947874272456534c6bffbe13
                                        
                                            GET /api/player.js HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.159.138.60
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=utf-8
                                        
Date: Sat, 24 Sep 2022 07:49:09 GMT
Content-Length: 6136
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: default-src 'none'; style-src 'unsafe-inline'
x-content-type-options: nosniff
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sat, 24 Sep 2022 07:54:22 GMT
x-host: player-84c9846b45-pf2cd
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-0
x-backend-proxy: playproxy1
x-bapp-server: player-84c9846b45-pf2cd
Accept-Ranges: bytes
Age: 1487
X-Served-By: cache-bma1678-BMA
X-Cache: HIT
X-Cache-Hits: 1287
X-Timer: S1664005750.776636,VS0,VE0
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=oawWlvoz9txNYJuDtTlioLqfiHD0sKPcIpXreC9EjoQ-1664005749-0-Ae17JvuzXRliJ9uptYF2I2ZF5Df3pirA0w+cYalYSRaCGCYXKTARTJuPzGLXPhtR4tN6dE2db6yVGz+LHxQZLq4=; path=/; expires=Sat, 24-Sep-22 08:19:09 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74f9ec000fc91bfa-OSL


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (20390)
Size:   6136
Md5:    517096278768b4afc862e5816d65a0cd
Sha1:   efb337f1d1c369be5b5fa5fb34c3742d54dcb87d
Sha256: e39f4bcf8422e05cf4600c00ec36a02ee3ef772f947874272456534c6bffbe13
                                        
                                            GET /.ws?v=5 HTTP/1.1 
Host: popping-torch-9334.firebaseio.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.clickfunnels.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FrCAmtO0MdPhT9Y3V9ek1w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.120.160.131
HTTP/1.1 101 Switching Protocols
                                        
Server: nginx
Date: Sat, 24 Sep 2022 07:49:09 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: o+kuEaPn28xv5rekQSWqHgDCg2Q=
Strict-Transport-Security: max-age=31556926; includeSubDomains; preload

                                        
                                            GET /exp=1664009648~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=2f029c0a6ffbac48794b163a5ffdfb241bfa65d61d68122b6487cf435fa2b3cd/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/sep/audio/e0804459/chop/segment-2.m4s?r=dXM%3D HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.138
HTTP/1.1 200 OK
Content-Type: video/mp4
                                        
Content-Length: 95017
using-starlord: true
origin-retrieved-hour: 1658610000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=26140796
Date: Sat, 24 Sep 2022 07:49:09 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.864c2417.1664005749.5ba9eff
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.138
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  data
Size:   95017
Md5:    f2be6a325c4dafec87c37fd8138376dd
Sha1:   5671400df4578f49c64354f1e0ae6a7fb56d57a8
Sha256: a54f370feb17d632d53ebd7cb862dbc1ab5fde9557db79c68c53cbbd01ab682c
                                        
                                            GET /exp=1664009648~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=2f029c0a6ffbac48794b163a5ffdfb241bfa65d61d68122b6487cf435fa2b3cd/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/parcel/video/7fc34c59.mp4?r=dXM%3D&range=232869-442639 HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.138
HTTP/1.1 200 OK
Content-Type: video/mp4
                                        
Accept-Ranges: bytes
Content-Length: 209771
Last-Modified: Thu, 15 Jul 2021 16:22:58 GMT
Server: parcel
Timing-Allow-Origin: *
Origin-Retrieved-Hour: 1626364800
Aka-c-hit: cache-hit
Cache-Control: private, max-age=25615343
Expires: Mon, 17 Jul 2023 19:11:32 GMT
Date: Sat, 24 Sep 2022 07:49:09 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.864c2417.1664005749.5ba9f0f
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.138
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.138~requestid:5ba9f0f~time:1664005749~ghostforwardip:~edgecache:cache-hit~rtt:1~region:NO-; path=/; domain=.akamaized.net;


--- Additional Info ---
Magic:  data
Size:   209771
Md5:    c6b754893014a45c0a198c8794da90f1
Sha1:   49c4689471fea264fdddddc669cef0cbfd045716
Sha256: 9ad3461c1dc17147262325bc5d6af9571f86db9d32b5ee4b3b92746e4d8cf0e6
                                        
                                            GET /exp=1664009648~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=2f029c0a6ffbac48794b163a5ffdfb241bfa65d61d68122b6487cf435fa2b3cd/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/sep/audio/e0804459/chop/segment-3.m4s?r=dXM%3D HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.138
HTTP/1.1 200 OK
Content-Type: video/mp4
                                        
Content-Length: 95672
using-starlord: true
origin-retrieved-hour: 1656691200
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=24223614
Date: Sat, 24 Sep 2022 07:49:09 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.864c2417.1664005749.5ba9f12
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.138
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  data
Size:   95672
Md5:    6e9c4725727bf6396ddb8377f5dba9c4
Sha1:   321c3a78fa68e92a42131744cfe00823f3e4da2d
Sha256: 14b6b14ea94f5ebac0857689a7ab6902c71890f7107c2105909b7eb351b15ae8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 901
Cache-Control: 'max-age=158059'
Date: Sat, 24 Sep 2022 07:49:09 GMT
Last-Modified: Sat, 24 Sep 2022 07:34:09 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 312

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sat, 24 Sep 2022 06:41:09 GMT
expires: Sat, 24 Sep 2022 08:41:09 GMT
cache-control: public, max-age=7200
age: 4080
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   22065
Md5:    e96f14929b46e0a19a67e824bff6f77e
Sha1:   bde5f65d8c33091bbe71689e263bdd349ec7938e
Sha256: 2e6f28b5c8371c94a37420464dfc22bb00cd2a3e913e9220645018ee8fec719f
                                        
                                            GET /dna HTTP/1.1 
Host: dnacdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         178.250.2.146
HTTP/2 200 OK
                                        
date: Sat, 24 Sep 2022 07:49:09 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=2Pj5MF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czk0UWxUMnJ0WXJEbG1iM2JmN2tmJTJGWGs5a0d5R09kWFdHY3lOVFdXJTJGdkVz; expires=Thu, 19 Oct 2023 07:49:09 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 319306
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

                                        
                                            GET /li.lms-analytics/insight.min.js HTTP/1.1 
Host: snap.licdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.210
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
                                        
last-modified: Fri, 12 Aug 2022 20:23:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=32270
date: Sat, 24 Sep 2022 07:49:10 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7751)
Size:   3063
Md5:    57efbbeb3e1d23c82b677511c67c8b0e
Sha1:   f927ba115ef4be362694c22850ddbdd1c1b054d1
Sha256: 873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
                                        
                                            GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1 
Host: vars.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         143.204.68.5
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1044
date: Wed, 07 Sep 2022 09:17:07 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Wed, 07 Sep 2022 09:16:57 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a722c9027177d3632a532772908191ea.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: NF_9KEE-FTCdPhdDQC3wt2nQKW52ogc8S1DVsjcBFKJWyfA21gmioQ==
age: 1463523
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Size:   1044
Md5:    f6a9ca04b0687ea3c0d98e8430c8c77b
Sha1:   35503b2deb23091a9a9c6c68d4020dbdf879588e
Sha256: 8e4328ecb6b395499567369e3c227231dbdaf361f43ce315934d7a2a3abbed41
                                        
                                            GET /ct/core.js HTTP/1.1 
Host: s.pinimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.197
HTTP/2 200 OK
content-type: application/javascript
                                        
etag: "cd5f811dc7c19de8566479150bc37ef8"
cache-control: max-age=7200
accept-ranges: bytes
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1146), with no line terminators
Size:   1146
Md5:    cd5f811dc7c19de8566479150bc37ef8
Sha1:   d17e9c54bce997b95bd0b6fceb0ad936077bbbf8
Sha256: dbcef3b5ce770e8a3e8350473f04fbe627a78fa93a4441a24afec965643733e8
                                        
                                            GET /exp=1664009648~acl=%2F479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d%2F%2A~hmac=2f029c0a6ffbac48794b163a5ffdfb241bfa65d61d68122b6487cf435fa2b3cd/479b4e4b-70fb-4be5-a7fa-eb0fe9752e9d/parcel/video/7fc34c59.mp4?r=dXM%3D&range=442640-658494 HTTP/1.1 
Host: 22vod-adaptive.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.138
HTTP/1.1 200 OK
Content-Type: video/mp4
                                        
Accept-Ranges: bytes
Content-Length: 215855
Last-Modified: Thu, 15 Jul 2021 16:22:58 GMT
Server: parcel
Timing-Allow-Origin: *
Origin-Retrieved-Hour: 1626364800
Aka-c-hit: cache-hit
Cache-Control: private, max-age=26070208
Expires: Sun, 23 Jul 2023 01:32:38 GMT
Date: Sat, 24 Sep 2022 07:49:10 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.864c2417.1664005750.5ba9f13
X-VIM-CACHEBC: EP:H11,E:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.138
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
Set-Cookie: aka_debug=cpcode:877678~clientip:91.90.42.154~ghostip:23.36.76.138~requestid:5ba9f13~time:1664005750~ghostforwardip:~edgecache:cache-hit~rtt:1~region:NO-; path=/; domain=.akamaized.net;


--- Additional Info ---
Magic:  data
Size:   215855
Md5:    c1ff52a72500ca380286ddd04493da52
Sha1:   24ffe3a3935f9e990ad37a4573d7e9ffeeddb0ac
Sha256: d1a51f6042adc538582b3f3778f3d70f2e3dfbf69f5bd3813683d3b894b6003e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6006
Cache-Control: 'max-age=158059'
Date: Sat, 24 Sep 2022 07:49:10 GMT
Last-Modified: Sat, 24 Sep 2022 06:09:04 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 314

                                        
                                            GET /video/512712952?title=0&byline=0&wmode=transparent&autopause=0&autoplay=1&muted=1 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.138.60
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 24 Sep 2022 07:49:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*; report-uri /_csp
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sat, 24 Sep 2022 07:58:58 GMT
x-host: player-84c9846b45-fbthd
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-2
x-backend-proxy: playproxy3
x-bapp-server: player-84c9846b45-fbthd
Age: 0
X-Served-By: cache-bma1624-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1664005750.973426,VS0,VE119
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=zN7xJ9kzLhgLCREih_QTfZe_vobf1QnawkGfUBMLtTA-1664005750-0-AVZMSagac/9i52S60mSXp7OybQitMiI5xwRFFRqszOR5m7gEx6r1wXbWJ7P6OVtuhIccpfrIw7VDg87afyy0c2I=; path=/; expires=Sat, 24-Sep-22 08:19:10 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74f9ec0148f91bfa-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (15602)
Size:   4937
Md5:    8cd963ec28b12e63a89c1f5ffbe8e078
Sha1:   cc585848917a090a2646fe9f40bddf6cc1d0b26c
Sha256: a065fc6e6e4ab9b5fcf71bb1c1b4b6a3d445fb67f582b8866f78a027e664548a
                                        
                                            GET /video/379115978?title=0&byline=0&wmode=transparent&autopause=0&autoplay=1&muted=1 HTTP/1.1 
Host: player.vimeo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         162.159.138.60
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 24 Sep 2022 07:49:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*; report-uri /_csp
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sat, 24 Sep 2022 07:58:04 GMT
x-host: player-84c9846b45-62qjc
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-5
x-backend-proxy: playproxy6
x-bapp-server: player-84c9846b45-62qjc
Age: 0
X-Served-By: cache-bma1626-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1664005750.976127,VS0,VE122
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=Xqoux1tBGmAuI86t2FuFEBOYLTU6o53e8IoZm5FaAtc-1664005750-0-AXPtnWPPkl4icxyQYPVXap45ojmc6WRriKV/+dwP9L9oPpAHvacVCySsoDBUtvDADMlERYhFy89kXLrNM4rWWXA=; path=/; expires=Sat, 24-Sep-22 08:19:10 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 74f9ec0149a1b4ff-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (15532)
Size:   4917
Md5:    06bf18ac8b560f7d874990b28838e756
Sha1:   04ba1df0c52d0e3a5c19038a06200498ec50c003
Sha256: 842a47911ef5ecff21767bd8e0d36bc058f0ebf9465ef483317f196a3b6b8dfb
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6006
Cache-Control: 'max-age=158059'
Date: Sat, 24 Sep 2022 07:49:10 GMT
Last-Modified: Sat, 24 Sep 2022 06:09:04 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 314

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5676
Cache-Control: 'max-age=158059'
Date: Sat, 24 Sep 2022 07:49:10 GMT
Last-Modified: Sat, 24 Sep 2022 06:14:34 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.starfieldtech.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Sat, 24 Sep 2022 07:49:10 GMT
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 23 Sep 2022 23:42:39 GMT
Expires: Sat, 24 Sep 2022 23:42:39 GMT
ETag: "34357b92eca900ae3b9cd058c5e4cfe9b046f7aa"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1845
Md5:    367062e8ab7c07d127712031f488481a
Sha1:   34357b92eca900ae3b9cd058c5e4cfe9b046f7aa
Sha256: 64ea3dfb7be94374e2d2748a12f654ed86064429384d6d2c119d2c8ec7f4c9c1
                                        
                                            GET /newidsd HTTP/1.1 
Host: ag.gbc.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         178.250.6.5
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Sat, 24 Sep 2022 07:49:09 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 126263
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /modules.01a02f6e8b126e8c8358.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         18.164.68.15
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 65760
date: Fri, 23 Sep 2022 10:32:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "88b47d3464ed75957aaec1d6b297a6e8"
last-modified: Fri, 23 Sep 2022 10:32:03 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 73afe8565c6794e933a665f6672c4b12.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P4
x-amz-cf-id: bZG04dNg-eZFR1SS44W2zAqHkNQ2Cf4fTmyE3RcTVcY6zMZol_olGQ==
age: 76624
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (48714)
Size:   65760
Md5:    88b47d3464ed75957aaec1d6b297a6e8
Sha1:   760b0f75cc7a47bfd293e211fc950218675cdf41
Sha256: 84812290eadd6391e8c8083c3016bbb7de5a43346f873080b74052eda996392b
                                        
                                            GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XJMXXSCP9Q&cid=1413295990.1664005749&gtm=2oe9l0&aip=1&z=714581952 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 24 Sep 2022 07:49:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /sid/json?origin=onetag&domain=clickfunnels.com&sn=FirefoxSyncframe&so=0&topUrl=www.clickfunnels.com&info=wJd4z180M0RITmhlJTJCZkMwOUJGQlhaMUN2czk0UWxUMnJ0WXJEbG1iM2JmN2tmJTJGV2EyR1c1RVExb1BkTmclMkJpMTR5MlFr&idsd=-1305422292,-1949345039&cw=1&lsw=1 HTTP/1.1 
Host: gum.criteo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=www.clickfunnels.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         178.250.2.146
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Sat, 24 Sep 2022 07:49:09 GMT
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 932082
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (385), with no line terminators
Size:   308
Md5:    603431df3b624a76052b64214dc683e6
Sha1:   7e35932d19095b5dd5dc5c52d76e9c6a9a5e9358
Sha256: 1ad42f74ae5be496bc75e85c2a465ce265c61bebdcb9a14d8cb868eaa5ef7d23
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-36443564-3&cid=1413295990.1664005749&jid=569446292&uid=user_ID&gjid=389385873&_gid=152832122.1664005749&_u=YGBACEAABAAAAC~&z=998394127 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.clickfunnels.com
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.155
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.clickfunnels.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 24 Sep 2022 07:49:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            GET /analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js HTTP/1.1 
Host: cdn.segment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         108.138.235.79
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 21 Sep 2022 07:40:13 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 02:58:32 GMT
etag: W/"3e448afdfea355c0f19700d04431ce7d"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: 0lhFs5Jk9vujwaxMjO71NImSgvM_kgaV
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d9e39db76d4eb1cb60c16c8415f1262.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P4
x-amz-cf-id: nthBKBjTclwXhy_nfXAbn9tZVKXt8AVSngHt3ofy0aEL8giDcfOy5A==
age: 259738
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1508)
Size:   14296
Md5:    0f61c34a9b2eb7b2752a87f25db3dc56
Sha1:   989d207bc1ea09a0e1c83b02af46a65bda1f4793
Sha256: e1c48843ef8f4cf636ebbd92c5e631f00288fe3d54b0b4e5c987465b75c12ed5
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v2/build/jquery.bundle.35a547d.js HTTP/1.1 
Host: wsv3cdn.audioeye.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.25.76
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Sat, 24 Sep 2022 07:49:10 GMT
last-modified: Fri, 23 Sep 2022 18:31:47 GMT
etag: W/"632dfb93-17d35"
access-control-allow-origin: *
cf-cache-status: HIT
age: 1174
expires: Sun, 24 Sep 2023 07:49:10 GMT
cache-control: public, max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 74f9ec043ae40b4d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65457)
Size:   34788
Md5:    8ac7245309c68ba0e282f3bab2eaa2be
Sha1:   4a877dd528707e1c6af7438e566c6bf67bf9b176
Sha256: 3e41edb02df30d039cd3ae32f956cdfd268301f9e74c44791df4c7cbd089529e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-36443564-3&cid=1413295990.1664005749&jid=569446292&_u=YGBACEAABAAAAC~&z=1532849389 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 24 Sep 2022 07:49:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 24 Sep 2022 07:49:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /next-integrations/integrations/appcues/2.3.0/appcues.dynamic.js.gz HTTP/1.1 
Host: cdn.segment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         108.138.235.79
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1179
date: Fri, 23 Sep 2022 21:54:11 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 21:38:20 GMT
etag: "905c12e41319765b76dedc0709cdbf70"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: edXDm1jHnhqRRlopjkDJD9hEEEZTCC8h
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 2d9e39db76d4eb1cb60c16c8415f1262.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P4
x-amz-cf-id: LgqH0HefuYkm4cYWw_JRFMbx3ZensqHQSooLnydmlTE8XJz0tIbb6A==
age: 35700
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2673)
Size:   1179
Md5:    905c12e41319765b76dedc0709cdbf70
Sha1:   e28df800a559815f1ea3da362862f09beb5937bc
Sha256: b6a68a7937885a0e82b51d906d298ea7303996ea1444351e1cf9215cc9a814c0
                                        
                                            GET /next-integrations/integrations/visual-website-optimizer/2.4.6/visual-website-optimizer.dynamic.js.gz HTTP/1.1 
Host: cdn.segment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         108.138.235.79
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 2154
date: Fri, 23 Sep 2022 21:54:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 21:38:21 GMT
etag: "a148a3c6784c33366edf563fbc4b1154"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: w50fMJADlu5mOr2GTg_MrG_X8DzqY9Iz
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 2d9e39db76d4eb1cb60c16c8415f1262.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P4
x-amz-cf-id: 5VFt0ce7Acogb_hu-Y0MipF6CJRWC9ofHdvJZMoOujM0EX8YAaL7Ng==
age: 35690
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5008)
Size:   2154
Md5:    a148a3c6784c33366edf563fbc4b1154
Sha1:   dda2afd0642b18a72b3eeb022901664c57e134d6
Sha256: bf9106c39b239f881c9a9fbb4985d3721ebcda886567c571e7373904e33911a6
                                        
                                            GET /ct/lib/main.8f82d377.js HTTP/1.1 
Host: s.pinimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickfunnels.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers