firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: d6XAVt5Ah7-Fil9Bv-MhIq4BaCz_m8ami7AjEg9jJPSRvnrqXX7ytA==
Age: 212991
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf768e41672570b0a4a9fe86045915fc
2249064a86b2ba11e28208b9fba1c9f1db4f3e9e
a049499f78078df12f4d1c5180f1f36715a5c99db4f31c18ee06bcf0b6382b30
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A049499F78078DF12F4D1C5180F1F36715A5C99DB4F31C18EE06BCF0B6382B30"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6249
Expires: Sat, 08 Oct 2022 04:41:18 GMT
Date: Sat, 08 Oct 2022 02:57:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20191
Expires: Sat, 08 Oct 2022 08:33:40 GMT
Date: Sat, 08 Oct 2022 02:57:09 GMT
Connection: keep-alive
acceleratorcoachingprogram.com/wp-admin/365-2019/365/login.php
192.64.119.53302 Found 43 B URL HTTP/1.1 acceleratorcoachingprogram.com/wp-admin/365-2019/365/login.php
IP 192.64.119.53:0
File type HTML document, ASCII text
Hash 0db24077ceaad0cc7bbf43dbf6142ffa
b2f6bdc65ed452f01990af59a29db2e861e7b395
b4d0833c01310c63d9920a52d5c6ea972feaac495835d3d2bc6bbe7f561a9724
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/365-2019/365/login.php HTTP/1.1
Host: acceleratorcoachingprogram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sat, 08 Oct 2022 02:57:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 43
Connection: keep-alive
Location: https://frnation.com
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: RExfs5s/2pD35sAF9tvwIDcUVIDbiYQbqdMurbuMQpUBs6aZBWh1hBfidVF1VeRrYFqciT2AXlg=
x-amz-request-id: QCQTAHXHQB0PVWX1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 08 Oct 2022 02:31:27 GMT
age: 1542
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 02:57:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 02:29:42 GMT
Cache-Control: max-age=3600
Expires: Sat, 08 Oct 2022 03:22:49 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UOgun-Rjti7LXuGgjf5U-Gza7IKRYVHSnEQfhWZPbGT57--v3LF6qw==
Age: 1649
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d6c404502c7987174a84d8f0a3efab23
fc3a3f6d63acab3f659fb3536b65fd8564ec8628
94b5693df873bd923ffbf31f576fff01d2628e5796af4c6b91306a743e27d19b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4636
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:10 GMT
Last-Modified: Sat, 08 Oct 2022 01:39:54 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.210.158.59101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.158.59:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vN8ZYhb5t2M3K2SY80YFrg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: M6DyV6xIMg18QhNnl9/LgTiwiwA=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1d13c38762edee3ea0af663f3e4553be
894a45402ded63c20b5062b2aae8b3894be80996
781d3684b9efe9d34182e7a740c759749a80c085576681bd5077d342e4448ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 00776157dc98913405595c4b126e9ee2
8ee3950fa60340b03e0c53c8e5e07d18321a69f0
daa313ad6f0cb705d8a4fdb55aa65ffd6c1695326409c2ccf378e3c7e36de35c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-66677749-1
142.250.74.168200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-66677749-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (2039)
Hash 627f7e7c1de53ff5112467816470240a
b8ac305a8622984038e50d688e688dfdaf727ec6
f46395122b991c137451138a88d5104c1998869a72f5c29cdd6de6191ca641f8
GET /gtag/js?id=UA-66677749-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 08 Oct 2022 02:57:10 GMT
expires: Sat, 08 Oct 2022 02:57:10 GMT
cache-control: private, max-age=900
last-modified: Sat, 08 Oct 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42426
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
190.92.156.77200 OK 848 B URL HTTP/2 frnation.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 190.92.156.77:0
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: text/css
last-modified: Fri, 02 Sep 2022 01:13:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/css/style.css?ver=6.0.2
190.92.156.77200 OK 3.1 kB URL HTTP/2 frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/css/style.css?ver=6.0.2
IP 190.92.156.77:0
File type ASCII text, with very long lines (532)
Hash 9b0959b3d28c6bcdc216e5d9f367f1fc
2d3ba1cee27f858265d031e2b8a5c221d46d23fe
e99c213878cc7feffae00493f6cf8d9f45e8bb155a9cdec6b754cc98ae694ad0
GET /wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/css/style.css?ver=6.0.2 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 01:18:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3067
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/css/style.css?ver=1.0.8
190.92.156.77200 OK 10 kB URL HTTP/2 frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/css/style.css?ver=1.0.8
IP 190.92.156.77:0
File type ASCII text, with very long lines (1119)
Hash 7a313fde1f4086a57a5006c564651a89
2be84664b6fdca87ae43bcfc201c9eef4e1c5ce4
5b9740f6cc725a5b8f8a3073cda50bbbb23ff9bf0adeff5b384885deddd9deef
GET /wp-content/plugins/infusionsoft-official-opt-in-forms/css/style.css?ver=1.0.8 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 01:18:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10433
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/popup-builder/public/css/theme.css?ver=4.1.14
190.92.156.77200 OK 10 kB URL HTTP/2 frnation.com/wp-content/plugins/popup-builder/public/css/theme.css?ver=4.1.14
IP 190.92.156.77:0
File type ASCII text, with very long lines (4774)
Hash ef4420afca05dab07df289ba4cb319ef
84c5233602a4e8b9b4d8248019a9432b126961af
438025d35de0c730d781b97beab8f38ca089414b2f9dca54501bc57844ba7ec0
GET /wp-content/plugins/popup-builder/public/css/theme.css?ver=4.1.14 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: text/css
last-modified: Tue, 04 Oct 2022 01:13:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10482
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/responsive-youtube-vimeo-popup/assets/css/wp-video-popup.css?ver=2.9.3
190.92.156.77200 OK 291 B URL HTTP/2 frnation.com/wp-content/plugins/responsive-youtube-vimeo-popup/assets/css/wp-video-popup.css?ver=2.9.3
IP 190.92.156.77:0
File type ASCII text, with very long lines (849)
Hash a7101821d1382f327e5222da577bb88a
aeaa986be38bbe741f38b281b0d05b4c01b6ebf4
01583c9b563ae225c238e265f158870dacae2dc356697abb384c6132c0af8bf8
GET /wp-content/plugins/responsive-youtube-vimeo-popup/assets/css/wp-video-popup.css?ver=2.9.3 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: text/css
last-modified: Sat, 02 Jul 2022 01:11:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 291
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/popups-for-divi/styles/front.min.css?ver=3.0.5
190.92.156.77200 OK 1.5 kB URL HTTP/2 frnation.com/wp-content/plugins/popups-for-divi/styles/front.min.css?ver=3.0.5
IP 190.92.156.77:0
File type ASCII text, with very long lines (7327), with no line terminators
Hash cf6dadf9dd1cd472e49afc687b24e512
d7a7d49389db20338ba83321cb6069889eabbabf
993a1a37f7649745a9d4902dea6cefb67dd04d18b3adc1fe8a5176030a762313
GET /wp-content/plugins/popups-for-divi/styles/front.min.css?ver=3.0.5 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: text/css
last-modified: Mon, 27 Jun 2022 10:59:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1494
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1d13c38762edee3ea0af663f3e4553be
894a45402ded63c20b5062b2aae8b3894be80996
781d3684b9efe9d34182e7a740c759749a80c085576681bd5077d342e4448ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
frnation.com/wp-content/et-cache/15978/et-divi-dynamic-tb-16032-15978.css?ver=1663819586
190.92.156.77200 OK 2.5 kB URL HTTP/2 frnation.com/wp-content/et-cache/15978/et-divi-dynamic-tb-16032-15978.css?ver=1663819586
IP 190.92.156.77:0
File type ASCII text, with very long lines (14024)
Hash 3a14069bb31b5f895ea4af771e3a92b6
671b98d06465c801b87a2e449c0a23d5210170ad
5d6f94849c6e76733281e4e92fd99fc6a822fe2889fe6d02cb3c88381723494c
GET /wp-content/et-cache/15978/et-divi-dynamic-tb-16032-15978.css?ver=1663819586 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 04:06:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2493
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/themes/Divi%20Child/style.css?ver=4.18.0
190.92.156.77200 OK 3.4 kB URL HTTP/2 frnation.com/wp-content/themes/Divi%20Child/style.css?ver=4.18.0
IP 190.92.156.77:0
Hash f43b833919a0f590b7efc8f3c5c0626a
df1f16bb20c0b5d1593f5614a2a0845ff28d281f
a117588ee044b761495f2f1f51c37a4fc1a28baa09de8e440181e03b0acf9686
GET /wp-content/themes/Divi%20Child/style.css?ver=4.18.0 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: text/css
last-modified: Thu, 03 Feb 2022 15:51:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3397
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 00776157dc98913405595c4b126e9ee2
8ee3950fa60340b03e0c53c8e5e07d18321a69f0
daa313ad6f0cb705d8a4fdb55aa65ffd6c1695326409c2ccf378e3c7e36de35c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 579e733097a7260db68f6ab5fc4ab3c9
bcee618650f7eb1595974812db6995d7ee0e9764
c025aa32afae5edb4c793bcc3076c86ae945438c7d2e96f7847054aeb1ed690b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
frnation.com/wp-content/plugins/optimizePressPlugin/lib/assets/default.min.css?ver=2.5.22
190.92.156.77200 OK 54 kB URL HTTP/2 frnation.com/wp-content/plugins/optimizePressPlugin/lib/assets/default.min.css?ver=2.5.22
IP 190.92.156.77:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 879247c844d252c6cd1c9b295251aaa1
25cd18c80cb0991fcc8f79f727980c8d62d5654f
3166d9334e9051f61e6a83af88a4ff1d5575b324058f268ce3755d7b48d3654f
GET /wp-content/plugins/optimizePressPlugin/lib/assets/default.min.css?ver=2.5.22 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: text/css
last-modified: Tue, 15 Feb 2022 08:36:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 54105
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
190.92.156.77200 OK 30 kB URL HTTP/2 frnation.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 190.92.156.77:0
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: application/javascript
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
x-robots-tag: noindex
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?onload=onloadInfusionRecaptchaCallback&render=explicit
142.250.74.164200 OK 589 B URL HTTP/2 www.google.com/recaptcha/api.js?onload=onloadInfusionRecaptchaCallback&render=explicit
IP 142.250.74.164:0
File type ASCII text, with very long lines (926), with no line terminators
Hash a35378bdb271186f7ec6856c9dd35969
544726c915350e06bf1318f0808afb1996b402eb
90432d3ed99c799ac17129f1762f19b6b4d863c4cb58ce5f5628c8b3dead2a3d
GET /recaptcha/api.js?onload=onloadInfusionRecaptchaCallback&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 08 Oct 2022 02:57:11 GMT
date: Sat, 08 Oct 2022 02:57:11 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 589
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/popup-builder/public/js/PopupBuilder.js?ver=4.1.14
190.92.156.77200 OK 16 kB URL HTTP/2 frnation.com/wp-content/plugins/popup-builder/public/js/PopupBuilder.js?ver=4.1.14
IP 190.92.156.77:0
Hash 92bff8494f66d718bddf217c3bd3be1c
f99a7672fa26709671fa11e7fda455882940628b
63a3e8dea834c3d766292857b946529039cbbed4c4ae7e7fedb8d13bfa072abf
GET /wp-content/plugins/popup-builder/public/js/PopupBuilder.js?ver=4.1.14 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 01:13:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15809
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/popup-builder/public/js/Popup.js?ver=4.1.14
190.92.156.77200 OK 7.7 kB URL HTTP/2 frnation.com/wp-content/plugins/popup-builder/public/js/Popup.js?ver=4.1.14
IP 190.92.156.77:0
File type ASCII text, with very long lines (5515)
Hash cd66ccff605d132c727e0f880c45839e
f5c4913747fd2053c86851c7dd041a41d0a816c8
3a27927456ab29c4930e41c1a56dc2455f31187f0167092066709d7a97dc476c
GET /wp-content/plugins/popup-builder/public/js/Popup.js?ver=4.1.14 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 01:13:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7746
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700
142.250.74.10200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700
IP 142.250.74.10:0
Hash 43b1f7cdb21cc70c4928c7db9f1c5ce6
fe2d8bf0d6dafaee5c46c19257c312c45f3c031c
d90c045ca988af3227d23665f6e654cdaa73bf0bdc63e54a883dcbba62b40c85
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 08 Oct 2022 02:57:10 GMT
date: Sat, 08 Oct 2022 02:57:10 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
frnation.com/
190.92.156.77200 OK 55 kB IP 190.92.156.77:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (44620)
Hash f6782050ed2f4c94ca0f6f8fcd67c605
5b243ee0c7fa256e555954ce42fadb8270589c37
00dcf4d87e74270c71bf1c46196849be47f29fe70d3c968524f751267eb6e301
GET / HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.32
content-type: text/html; charset=UTF-8
link: <https://frnation.com/wp-json/>; rel="https://api.w.org/", <https://frnation.com/wp-json/wp/v2/pages/15978>; rel="alternate"; type="application/json", <https://frnation.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 74b63831a0a449c3e37b584db0009072
929f9f036c4a6a078c51c3b3dc2a7f902c9ee9ac
686845b4cf9a67078f03cb221ce13175a72074f6aa3804ba4fa06623ab856bae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
frnation.com/wp-content/plugins/optimizePressPlugin/lib/js/op-jquery-base-all.min.js?ver=2.5.22
190.92.156.77200 OK 16 kB URL HTTP/2 frnation.com/wp-content/plugins/optimizePressPlugin/lib/js/op-jquery-base-all.min.js?ver=2.5.22
IP 190.92.156.77:0
File type ASCII text, with very long lines (32006)
Hash 8805d2a1b558c0961f06bf1841dd09d8
37ec2b35aba83dc7ad052cc84d5af04a2ee36230
f64dff2c5951cd39693825978deb5f3b1e7b02e90b5da8e2a4829454838c6775
GET /wp-content/plugins/optimizePressPlugin/lib/js/op-jquery-base-all.min.js?ver=2.5.22 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: application/javascript
last-modified: Tue, 15 Feb 2022 08:36:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15732
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
190.92.156.77200 OK 4.0 kB URL HTTP/2 frnation.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 190.92.156.77:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
x-robots-tag: noindex
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/popup-builder/public/js/PopupConfig.js?ver=4.1.14
190.92.156.77200 OK 1.6 kB URL HTTP/2 frnation.com/wp-content/plugins/popup-builder/public/js/PopupConfig.js?ver=4.1.14
IP 190.92.156.77:0
File type ASCII text, with very long lines (2826)
Hash ba87b0549ec141ac5407bbbf6d3ea03e
fe34fe6a00ee3d477f56c88d9090834f3cf207ac
6307b5b5b2fa63316648ddf0f1dab5453ee4f1e6ccadc96d6cd61804aee771f3
GET /wp-content/plugins/popup-builder/public/js/PopupConfig.js?ver=4.1.14 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 01:13:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1649
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/uploads/2022/01/Journey-ICON.png.webp
190.92.156.77200 OK 9.1 kB URL HTTP/2 frnation.com/wp-content/uploads/2022/01/Journey-ICON.png.webp
IP 190.92.156.77:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ee7729d3c9624bd443e44c0f648ed427
7bea4cb06ba390190edb24534cc1015daf34a748
d15b2788e175d0c1524b6fe76d41282d8d916a3c593f10acd61c9a778afb92ba
GET /wp-content/uploads/2022/01/Journey-ICON.png.webp HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: image/webp
last-modified: Thu, 03 Feb 2022 15:53:31 GMT
accept-ranges: bytes
content-length: 9108
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/uploads/2022/01/FR-Logo-Wide-2.png.webp
190.92.156.77200 OK 72 kB URL HTTP/2 frnation.com/wp-content/uploads/2022/01/FR-Logo-Wide-2.png.webp
IP 190.92.156.77:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 90a9989bd7432a5b08150050950dd467
bb219919bf0dc80557f0a77fd81d9062eb74ebf4
8adf35699ee9527e345997cd41c1544da45977de70079f6b3e9a6bd26742fece
GET /wp-content/uploads/2022/01/FR-Logo-Wide-2.png.webp HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: image/webp
last-modified: Thu, 03 Feb 2022 15:53:30 GMT
accept-ranges: bytes
content-length: 71894
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/uploads/2022/01/Zach-Byler-150x150.png.webp
190.92.156.77200 OK 4.4 kB URL HTTP/2 frnation.com/wp-content/uploads/2022/01/Zach-Byler-150x150.png.webp
IP 190.92.156.77:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f0825568bde5fccbf6f3e70a78403414
fa8419d0d2c273acea4e4591cdcc38863de998c1
b984732379ab6c269676c5fc345952c235e23eab2be40693ea1854938d8bc7c9
GET /wp-content/uploads/2022/01/Zach-Byler-150x150.png.webp HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: image/webp
last-modified: Thu, 03 Feb 2022 15:53:32 GMT
accept-ranges: bytes
content-length: 4372
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/uploads/2022/01/HPCP-2.jpg.webp
190.92.156.77200 OK 35 kB URL HTTP/2 frnation.com/wp-content/uploads/2022/01/HPCP-2.jpg.webp
IP 190.92.156.77:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 700x518, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 34c09c7cd394fd936fd380f572d3cf77
870848261c4965252b78c467cf5ed40dcbbb5616
aceadb13b7d7ddfaf71f4afce1f04d74424a052a20c4ed32b9799ad17f48de3f
GET /wp-content/uploads/2022/01/HPCP-2.jpg.webp HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: image/webp
last-modified: Thu, 03 Feb 2022 15:53:30 GMT
accept-ranges: bytes
content-length: 34714
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ubsystems.infusionsoft.com/js/infusionsoft.js
104.18.39.145200 OK 3.0 kB URL HTTP/2 ubsystems.infusionsoft.com/js/infusionsoft.js
IP 104.18.39.145:0
Hash f8d1535a8133643c8b1a336ef698cc71
34d7a7161075c84c8b3df2c95e59eca2a4f4be63
65341b722452f59df3935f84b144fb1aef2728bcd668a7339f44ff84a44a6b01
GET /js/infusionsoft.js HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: application/javascript;charset=UTF-8
expires: Sat, 07 Oct 2023 19:19:37 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"6925-1665020747744"
last-modified: Thu, 06 Oct 2022 01:45:47 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: HIT
cache-control: public, max-age=31508546
set-cookie: __cf_bm=T9FsG7QE7irCP67LKYOToV_udkUOP.3vu0Lzzm4BfVw-1665197831-0-ASbFYG1+spzVLkE1pvVYdhTvUofecsJQWfkemAE0xxhXVoRjpuzyiFPfqkPh8t2hLz5C+suB8idsYJFPn3XX1z0=; path=/; expires=Sat, 08-Oct-22 03:27:11 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 756b9b8bded4b4e8-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4i.woff2
172.217.21.163200 OK 56 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4i.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 56348, version 1.0\012- data
Hash 441a81103fda7f9c3b41cffd77d8c65c
3a2d883b3fc09a347376088e206f5e0fd17aab72
52a27a6a1c1821efdf20d91ece59d5f29ba3ba28cc8480e2f73f3007216e7729
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4i.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 56348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 18:53:50 GMT
expires: Tue, 03 Oct 2023 18:53:50 GMT
cache-control: public, max-age=31536000
age: 374601
last-modified: Mon, 15 Aug 2022 18:12:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
frnation.com/wp-content/uploads/2022/01/FR-FBAS-Graphic-Final.png.webp
190.92.156.77200 OK 13 kB URL HTTP/2 frnation.com/wp-content/uploads/2022/01/FR-FBAS-Graphic-Final.png.webp
IP 190.92.156.77:0
File type Web Open Font Format (Version 2), TrueType, length 12700, version 1.0\012- data
Hash e571167fbcce8d5081bce96a09930063
e12420f5e4da3ccdc75a58ce744e7d5a0c6cf79e
98be19bc78b5bc5d419e4fa6ea055ebd4671a963e2cc644aeed4362f15d14c31
GET /wp-content/uploads/2022/01/FR-FBAS-Graphic-Final.png.webp HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: image/webp
last-modified: Thu, 03 Feb 2022 15:53:30 GMT
accept-ranges: bytes
content-length: 91310
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 12848, version 1.0\012- data
Hash f0b3206d02a2f684530117ce1d7e8ce0
f3708b707b65e241b0f1c819d5f7bf7da8412653
f31b80562610135edd91a86ec7f243c5eeaec2ec08337e6a20c2d135d8e217da
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 16:43:30 GMT
expires: Fri, 06 Oct 2023 16:43:30 GMT
cache-control: public, max-age=31536000
age: 123221
last-modified: Mon, 11 Jul 2022 18:56:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webform/overwriteRefererJs
172.64.151.42200 OK 13 kB URL HTTP/2 ubsystems.infusionsoft.app/app/webform/overwriteRefererJs
IP 172.64.151.42:0
Hash 94ea1aca46f087f1e19012d495782439
996f2b2979a535145c01d4e03b078d62543bbfa9
041797a2bfc1f402fb6863b9a44bfd1178a0834c81f85a44253be045fb1aa9bf
GET /app/webform/overwriteRefererJs HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Sat, 08 Oct 2022 02:57:11 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=9BB17154E6DB2550F866A09E9C6F0A00; Path=/; Secure; HttpOnly
GCLB=CLDEzbSlrvGAowE; path=/; HttpOnly; expires=Sat, 08-Oct-2022 14:57:11 GMT
__cf_bm=mVJdD1IocAnd9aHjxWixsxbATMzrjfhhtwFmxIathGo-1665197831-0-ATU6kkH8twMKj39haIHqSkG0Bq/A3okVVDaeg7OxnehuQO4R5tmBBKRUT9QJxkrQCWyBWv5bCuSOhIeSeDi2wKvPR8mhgeGmdy8q/UT7eSP7; path=/; expires=Sat, 08-Oct-22 03:27:11 GMT; domain=.infusionsoft.app; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 756b9b8c1dad1c12-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
172.217.21.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 05:42:51 GMT
expires: Fri, 06 Oct 2023 05:42:51 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 162860
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXo.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXo.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 12820, version 1.0\012- data
Hash 3f2f6d9e64a95a40ea5dedfc91f42a95
9cd9f5a2f86f1d42390141d91619a0aa41a276b7
ed121b1a8fbf30998a4ed0a7c8343abe9091ac4744f1c24b602b5d3f962bdb78
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 06:05:47 GMT
expires: Fri, 06 Oct 2023 06:05:47 GMT
cache-control: public, max-age=31536000
age: 161484
last-modified: Mon, 11 Jul 2022 18:56:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkaVI.woff2
172.217.21.163200 OK 59 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkaVI.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 59400, version 1.0\012- data
Hash 5904cf8b4636f030874b859a75b1ee62
425ce8516a97451825d31e96b63498b2d93f26ca
0feb67b40a66a3aa0e8ed60f04577fefdf24869fb35b8929ef1e7293f8eaee1c
GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 59400
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 18:53:50 GMT
expires: Tue, 03 Oct 2023 18:53:50 GMT
cache-control: public, max-age=31536000
age: 374601
last-modified: Mon, 15 Aug 2022 18:17:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ubsystems.infusionsoft.app/app/webTracking/getTrackingCode
172.64.151.42200 OK 94 kB URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/getTrackingCode
IP 172.64.151.42:0
Hash 51cdf2cb2963c7a2bfa24c00fb71460e
857d916061bdee1a264341c557c233d128397ef8
f40a59b2bb1c9a10981282b2d6de27d112a0a794e7c7d4122f3e1f2bfac09cb2
GET /app/webTracking/getTrackingCode HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Sat, 08 Oct 2022 02:57:11 GMT
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=FA9C13B828855720C8975F875A3A543C; Path=/; Secure; HttpOnly
GCLB=CIqm1fq87OC7Rw; path=/; HttpOnly; expires=Sat, 08-Oct-2022 14:57:11 GMT
__cf_bm=M3KQGZr1WYIIRm_LqKF0gOnj22yszf.YHBLG5jHLYLI-1665197831-0-AdgcbtLtvhzSn4YcPQEfeq7emee6JUF1x6b0q1Q9kodnj+vl87bUnlh9zTH6zEbf0c0C2H73/6Bw0qbX1hLkwESxCbrWJ8eIyflqYdMWIr/c; path=/; expires=Sat, 08-Oct-22 03:27:11 GMT; domain=.infusionsoft.app; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 756b9b8c3dba1c12-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3509
Expires: Sat, 08 Oct 2022 03:55:40 GMT
Date: Sat, 08 Oct 2022 02:57:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3509
Expires: Sat, 08 Oct 2022 03:55:40 GMT
Date: Sat, 08 Oct 2022 02:57:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3509
Expires: Sat, 08 Oct 2022 03:55:40 GMT
Date: Sat, 08 Oct 2022 02:57:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5c4757ceb6dce32d0f9d26d5b3df038
d8209d82f61c7a09e00756e5dd32c99bc61af4a8
6aa007279ba4cdea3f772e0601e4082d40ee947ef8cc1201ce0009fb42ca9885
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3c3ff89f-8a8c-44ae-981a-0e9adaf7d959
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zj_dSEs8IAMFqFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e45ee-6c97b82d137c2f1951270b82;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 03:05:18 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: 7BtAJuO2hE0x8o49hMZ9NcCh1FI9XD1U-z7_PtI9OMOwmi3LXlDBmg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 45d6a557ecb29942f314e3dd736d817a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 03:29:12 GMT
age: 84479
etag: "d8209d82f61c7a09e00756e5dd32c99bc61af4a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8d22189-9354-45d8-a562-99fb9adeda28.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8d22189-9354-45d8-a562-99fb9adeda28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d67e1b7a9224fb617581c14af1e369ac
941b8fdd8736691d796738233681f12900af92c4
ed88575e76e6919ab4702bb29db5c48c5bd250ad2a89047d4d8a31cf3c77f12e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8d22189-9354-45d8-a562-99fb9adeda28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9112
x-amzn-requestid: 94c5c303-a221-4b00-9d01-95607233fbc4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp2PxHXuoAMFZzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409d97-5080b3765b6cd57c64e36e80;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:43:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: caUfhYpcvVq0JjR0INv3aPuCZDq50dJg9p7Wjlz6TcJaX7kU3OIHDA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:50:09 GMT
age: 18422
etag: "941b8fdd8736691d796738233681f12900af92c4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ca74686-b92a-4cab-8c23-1ccc4a5123b1.jpeg
34.120.237.76200 OK 19 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ca74686-b92a-4cab-8c23-1ccc4a5123b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6e80201718bc421ec31b452291a0517
ebdae89d29c77af3adff4fccba045d7b3f99ac89
81093f1880eb08b2dd58b40c7130bbdf3a37cbc6617a9b6871d2b32b0c210331
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ca74686-b92a-4cab-8c23-1ccc4a5123b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 18697
x-amzn-requestid: c0ef85f7-3cae-4f6c-9980-512f2c9fae5e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1EJEqgIAMFvQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb3-1771adab310e302614d24678;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: h8IQ1NQJaYxTg6-x9GWqWpiQ6miCC5RO1pckPQCWE7Nxbwxz17x3Aw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:39:00 GMT
age: 19091
etag: "ebdae89d29c77af3adff4fccba045d7b3f99ac89"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9bc50d1380ae8fc980ae1cc38f2371c7
be79aecfd7eefa89c409ed743402a292ff0ce6c0
43e015802ba453d4cd79984b53efa8a529ece62760f6693f9daeb2388179201f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57a0ead-deef-46c2-985b-fb7ba539285b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6366
x-amzn-requestid: ddcd915d-2606-4243-969e-19fb02b5b6d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1EJGoSIAMFcSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb3-1c7bd17a2dcdd25e4da6d346;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Cm4uaStVKEsemoOHrc04J9qNysQJoMB7-R8LEzmlRXt47mpXi2NRPA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:50:12 GMT
age: 18419
etag: "be79aecfd7eefa89c409ed743402a292ff0ce6c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
104.16.14.194301 Moved Permanently 16 kB URL HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP 104.16.14.194:0
Hash e591d5bab03f8bda0b665772b1456087
0b0edd00ce4789213b3c3dd0b874d91722b24a77
d2d696f56bd45c6b39c4f4605142063389f31d4e713025e90ce72501090a37ba
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=5TqgbrVcF.g4xTmw9Qp1H22jIYwxr2jNmvRYbm9gFPc-1665197831-0-ARScMJ+VlhYoDqHCaJTjkkpC0hbSQS/TiYWhuXCfHVpIqcoO2kvqRRd66UPxAfY6H7Js+mYpQOmdJt5rBTmxhy7hwKYCHiqQkXdrbvT2GIk4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 756b9b8ead330af6-OSL
access-control-allow-origin: *
age: 480
cache-control: public, max-age=1200
expires: Sat, 08 Oct 2022 03:17:11 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=_VfVl8Zk5LLfehMJ6hY2FeYZNczSAHU8DgxLXSEMkzk-1665197831-0-ARHqXT0Ed_dpYYuBqNuP_yPLlmM2JNotTxvHnMBPlCNTqla9PBc6FP-ORtDGhbAbGfchtaMP9zQxo3gztene-5v_h8JojM5Qfmz_-gQYSt6g"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=_VfVl8Zk5LLfehMJ6hY2FeYZNczSAHU8DgxLXSEMkzk-1665197831-0-ARHqXT0Ed_dpYYuBqNuP_yPLlmM2JNotTxvHnMBPlCNTqla9PBc6FP-ORtDGhbAbGfchtaMP9zQxo3gztene-5v_h8JojM5Qfmz_-gQYSt6g; report-to cf-csp-endpoint
server: cloudflare
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 53b7ffdc3799e0ac7a225145242579ef
c47f0525fe5354ee13fe63c0ec31f0f826a58005
4bb518afc9b3e7bfb976d343e46b306155834adbe71fa35b0d6f509959f78aca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10987
x-amzn-requestid: c2ab1012-1afd-4d74-8114-97977b43da24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZgCHwGdGoAMFvyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633cb097-3237927a0c1e081d22c902f7;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 22:15:51 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: iClOZEPMiFmpeprT8McJ2HI0dCmyxkhEdfYr0qP0YK3U_Pcd9N0Fhg==
via: 1.1 3dde68f1f52282c9e1ee336d97233b0a.cloudfront.net (CloudFront), 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 11:08:01 GMT
age: 56950
etag: "c47f0525fe5354ee13fe63c0ec31f0f826a58005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 08 Oct 2022 02:41:09 GMT
expires: Sat, 08 Oct 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 963
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserratalternates/v17/mFTiWacfw6zH4dthXcyms1lPpC8I_b0juU0xUILFB7xG.woff2
172.217.21.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/montserratalternates/v17/mFTiWacfw6zH4dthXcyms1lPpC8I_b0juU0xUILFB7xG.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 20480, version 1.0\012- data
Hash 141810686d58c9d8f8a130a09da03ace
a7942a1364de22c44790ec3014be74bf8f19c23e
05310548a7b194d49ef3df5f58787d39dd53930f140ef2d649642562d5f000bc
GET /s/montserratalternates/v17/mFTiWacfw6zH4dthXcyms1lPpC8I_b0juU0xUILFB7xG.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20480
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 18:01:07 GMT
expires: Wed, 04 Oct 2023 18:01:07 GMT
cache-control: public, max-age=31536000
age: 291365
last-modified: Tue, 26 Apr 2022 15:45:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvC73w5aXo.woff2
172.217.21.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvC73w5aXo.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 12048, version 1.0\012- data
Hash 2f0591f47be65bab6a3cad2738688dcd
e1bc2e5c486bb85a87d4461cc4b689742c0acc3f
c783f924dc83b1990b7d490eade941b7d4676b799702e2fc6c7fe78a739fbe37
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvC73w5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 03:09:39 GMT
expires: Tue, 03 Oct 2023 03:09:39 GMT
cache-control: public, max-age=31536000
age: 431253
last-modified: Mon, 11 Jul 2022 18:56:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webTracking/getTrackingCode?b=1.70.0.472965-hf-202206200731
172.64.151.42200 OK 15 kB URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/getTrackingCode?b=1.70.0.472965-hf-202206200731
IP 172.64.151.42:0
Hash 7bb0424b4fcbc39befbdc9bc52b3d7b7
848cabac43d26abca31950cf71cc7391cba764ad
d99fae543c533d7b77d0ecdad1c98d81d8f4b22b233126fe73c5ef80ee4401d1
GET /app/webTracking/getTrackingCode?b=1.70.0.472965-hf-202206200731 HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Sat, 08 Oct 2022 02:57:11 GMT
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=E8A06685B7C2265CDF2AF8CAB2036B72; Path=/; Secure; HttpOnly
GCLB=CN_h7qXuoJ6P8AE; path=/; HttpOnly; expires=Sat, 08-Oct-2022 14:57:11 GMT
__cf_bm=Y9bbYi7zvPgNtM.K1pgzI35fxeVVEC46TEmOVAkyvhY-1665197831-0-AXoG+MLkGXfVvlvG6+m5dx6VCRw9FZstJ7RDKdA++/GLIgDbUNhtT+ln3KA9l/MXz/HLYwhDEqz9gjrbsaQ3Vwsh2ea0rzLTEJ7uauvbmmB7; path=/; expires=Sat, 08-Oct-22 03:27:11 GMT; domain=.infusionsoft.app; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 756b9b8c3dbc1c12-OSL
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
104.16.14.194301 Moved Permanently 171 kB URL HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP 104.16.14.194:0
Size 171 kB (170906 bytes)
Hash 2c68cecd4f7a2fe277361996faa90e4e
d80def4d4ff6bd7c495d47fbccabf33c1db3af49
010aa44dcd1330198e938374498d624fd0075bbb22cae407c845eef87de1060e
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=5TqgbrVcF.g4xTmw9Qp1H22jIYwxr2jNmvRYbm9gFPc-1665197831-0-ARScMJ+VlhYoDqHCaJTjkkpC0hbSQS/TiYWhuXCfHVpIqcoO2kvqRRd66UPxAfY6H7Js+mYpQOmdJt5rBTmxhy7hwKYCHiqQkXdrbvT2GIk4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 756b9b8fcd8b0af6-OSL
access-control-allow-origin: *
age: 480
cache-control: public, max-age=1200
expires: Sat, 08 Oct 2022 03:17:11 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
104.16.14.194301 Moved Permanently 19 kB URL HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP 104.16.14.194:0
Hash 51b2cb45c9718b8ae53a40fe56be5c37
239f9e0dcecefe13da84890396b984d5dbaa7efc
4cc28977371b9baeb729d542eb9131233c8ed1f425f960f1de63311a0b4a87f7
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=5TqgbrVcF.g4xTmw9Qp1H22jIYwxr2jNmvRYbm9gFPc-1665197831-0-ARScMJ+VlhYoDqHCaJTjkkpC0hbSQS/TiYWhuXCfHVpIqcoO2kvqRRd66UPxAfY6H7Js+mYpQOmdJt5rBTmxhy7hwKYCHiqQkXdrbvT2GIk4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 756b9b917e060af6-OSL
access-control-allow-origin: *
age: 480
cache-control: public, max-age=1200
expires: Sat, 08 Oct 2022 03:17:11 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
104.16.14.194301 Moved Permanently 39 kB URL HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP 104.16.14.194:0
Hash fdb606a8b50035b9973a69009235c33d
5506a02db4c1d20b3223c1eaa1e2ade520374f1a
2b401ba1a2c9110fa274ce91b6eaf9c1ea4f9bcb99f5fca2e643ca59f00c68b9
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=5TqgbrVcF.g4xTmw9Qp1H22jIYwxr2jNmvRYbm9gFPc-1665197831-0-ARScMJ+VlhYoDqHCaJTjkkpC0hbSQS/TiYWhuXCfHVpIqcoO2kvqRRd66UPxAfY6H7Js+mYpQOmdJt5rBTmxhy7hwKYCHiqQkXdrbvT2GIk4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 756b9b907db30af6-OSL
access-control-allow-origin: *
age: 480
cache-control: public, max-age=1200
expires: Sat, 08 Oct 2022 03:17:11 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
104.16.14.194301 Moved Permanently 168 kB URL HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP 104.16.14.194:0
Size 168 kB (167837 bytes)
Hash 80b8d27905684ec523e7f2966e085e76
85f2791d28f5250b22bfb956d03596954959a0bb
ffef53743fbf4080421abb283fc48ab6142c299952fabad68d2829e7cb2a6192
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=5TqgbrVcF.g4xTmw9Qp1H22jIYwxr2jNmvRYbm9gFPc-1665197831-0-ARScMJ+VlhYoDqHCaJTjkkpC0hbSQS/TiYWhuXCfHVpIqcoO2kvqRRd66UPxAfY6H7Js+mYpQOmdJt5rBTmxhy7hwKYCHiqQkXdrbvT2GIk4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 756b9b8f5d6e0af6-OSL
access-control-allow-origin: *
age: 480
cache-control: public, max-age=1200
expires: Sat, 08 Oct 2022 03:17:11 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
104.16.14.194301 Moved Permanently 99 kB URL HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP 104.16.14.194:0
Hash 499cd90cf86ad7e3f73b7076572a4122
4c3dfc6842228e7d60e0ea18e707f9e2697fe985
a1b2a4e6236c39e44375ae64359f412d1112418b1cbcf8781c9a2c0c86116970
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=5TqgbrVcF.g4xTmw9Qp1H22jIYwxr2jNmvRYbm9gFPc-1665197831-0-ARScMJ+VlhYoDqHCaJTjkkpC0hbSQS/TiYWhuXCfHVpIqcoO2kvqRRd66UPxAfY6H7Js+mYpQOmdJt5rBTmxhy7hwKYCHiqQkXdrbvT2GIk4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 756b9b8f3d600af6-OSL
access-control-allow-origin: *
age: 480
cache-control: public, max-age=1200
expires: Sat, 08 Oct 2022 03:17:11 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2
script.hotjar.com/modules.f0cd1ed70b545da08b60.js
54.230.111.93200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.f0cd1ed70b545da08b60.js
IP 54.230.111.93:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 267f2b8b196cf2f3b560a8c460b335c0
624cdf88b9f13c3e2de1570a7edf4dcdafd9eef9
df17cb23e1eafd9c35d447f12a6231df68274beb29c66a7ef91eeeba05471b39
GET /modules.f0cd1ed70b545da08b60.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 66220
date: Fri, 07 Oct 2022 14:16:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "267f2b8b196cf2f3b560a8c460b335c0"
last-modified: Fri, 07 Oct 2022 14:15:55 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZIhc5SJPeWRTFXDFpz5_1CZKDoFpfMoN8kbRXWikt45pR0RBXUlXdw==
age: 45666
X-Firefox-Spdy: h2
vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
54.230.111.71200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
IP 54.230.111.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Hash f6a9ca04b0687ea3c0d98e8430c8c77b
35503b2deb23091a9a9c6c68d4020dbdf879588e
8e4328ecb6b395499567369e3c227231dbdaf361f43ce315934d7a2a3abbed41
GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Tue, 04 Oct 2022 09:28:08 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Tue, 04 Oct 2022 07:09:34 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NQU8IaLE8lGUTXkM6h4blJexb82MiKs2nnAwDfTNhSbIUmam_uQEtg==
age: 322144
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
104.16.14.194301 Moved Permanently 21 kB URL HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP 104.16.14.194:0
Hash 8ca14dc270ed56ce8077cd1408e4800f
8b6de50c2b94e5352c84aa3688308c191f737ae9
a1ff2da86022005a54fc788495729364c148d5ce29256cd328c8d7e96a51bd2c
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=5TqgbrVcF.g4xTmw9Qp1H22jIYwxr2jNmvRYbm9gFPc-1665197831-0-ARScMJ+VlhYoDqHCaJTjkkpC0hbSQS/TiYWhuXCfHVpIqcoO2kvqRRd66UPxAfY6H7Js+mYpQOmdJt5rBTmxhy7hwKYCHiqQkXdrbvT2GIk4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 756b9b90adc60af6-OSL
access-control-allow-origin: *
age: 480
cache-control: public, max-age=1200
expires: Sat, 08 Oct 2022 03:17:11 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webTracking/getTrackingCode
172.64.151.42200 OK 2.1 kB URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/getTrackingCode
IP 172.64.151.42:0
Hash de21bb4daa9b63620b5cd82422d8a8c4
6830cbb849a4a89fd40a3936f8794af94eb70199
dbdd3dd9c63d30fa8485e0f64add31833757767270af721880a9f19b1bdde7ce
GET /app/webTracking/getTrackingCode HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Cookie: __cf_bm=M3KQGZr1WYIIRm_LqKF0gOnj22yszf.YHBLG5jHLYLI-1665197831-0-AdgcbtLtvhzSn4YcPQEfeq7emee6JUF1x6b0q1Q9kodnj+vl87bUnlh9zTH6zEbf0c0C2H73/6Bw0qbX1hLkwESxCbrWJ8eIyflqYdMWIr/c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Sat, 08 Oct 2022 02:57:11 GMT
set-cookie: JSESSIONID=E74FEDB964DECAAE9B06A05AAE202151; Path=/; Secure; HttpOnly
GCLB=COWwl4Cmo6q_Wg; path=/; HttpOnly; expires=Sat, 08-Oct-2022 14:57:11 GMT
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 756b9b8e4e4b1c12-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23be53f0796c8e41706dcd00284560fc
9608740dde2b8801081f68b9aa0afe9ae048e3fb
08efc4c1977aef68123a25c191e9af752bf3ffc9d9c3a1790ae3ec350a239206
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66677749-1&cid=609319860.1665197832&jid=1764525118&gjid=501569866&_gid=939092429.1665197832&_u=YEBAAUAAAAAAACAAI~&z=1437747641
173.194.73.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66677749-1&cid=609319860.1665197832&jid=1764525118&gjid=501569866&_gid=939092429.1665197832&_u=YEBAAUAAAAAAACAAI~&z=1437747641
IP 173.194.73.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66677749-1&cid=609319860.1665197832&jid=1764525118&gjid=501569866&_gid=939092429.1665197832&_u=YEBAAUAAAAAAACAAI~&z=1437747641 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://frnation.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 08 Oct 2022 02:57:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash bdf8e1804437a7c546ffef052f5e7c0b
231b69697f1392d1458db76f99d2d686f8d6b570
60ab063848edf4ea9b4e3b0502696c05f2480e5f8f0f6f5584001e34e1c5a5d9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 08 Oct 2022 02:57:12 GMT
Last-Modified: Sat, 08 Oct 2022 01:52:44 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HIOmA4dXdJDoi6nC2FDxiLbRvy78kxnmxEoE587vTSHIZGHFJgPvzg==
Age: 3868
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23be53f0796c8e41706dcd00284560fc
9608740dde2b8801081f68b9aa0afe9ae048e3fb
08efc4c1977aef68123a25c191e9af752bf3ffc9d9c3a1790ae3ec350a239206
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da5f54e2d234b159e435039798b4f58c
115cbe08795735df780e8d1a5fb31141187c074e
20fefe2ac7fcd44ae4d6714ff2148b54810a8e7b7f66103e4bbe9c0156b7b2fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66677749-1&cid=609319860.1665197832&jid=1764525118&_u=YEBAAUAAAAAAACAAI~&z=1598320350
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66677749-1&cid=609319860.1665197832&jid=1764525118&_u=YEBAAUAAAAAAACAAI~&z=1598320350
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66677749-1&cid=609319860.1665197832&jid=1764525118&_u=YEBAAUAAAAAAACAAI~&z=1598320350 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 08 Oct 2022 02:57:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da5f54e2d234b159e435039798b4f58c
115cbe08795735df780e8d1a5fb31141187c074e
20fefe2ac7fcd44ae4d6714ff2148b54810a8e7b7f66103e4bbe9c0156b7b2fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 02:57:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
in.hotjar.com/api/v2/client/sites/2963454/visit-data?sv=6
52.215.128.208200 OK 15 kB URL HTTP/2 in.hotjar.com/api/v2/client/sites/2963454/visit-data?sv=6
IP 52.215.128.208:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f5558b0097871e9e5174ad855ad4bb5a
308969400ee504283c6763b487ea2fc802005441
dd97f3c974968476ab2f2ea8578703b4af866883fd3a2e7828be752774370875
POST /api/v2/client/sites/2963454/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:13 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
ws21.hotjar.com/api/v2/client/ws
52.31.174.173101 Switching Protocols 0 B URL HTTP/1.1 ws21.hotjar.com/api/v2/client/ws
IP 52.31.174.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws21.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://frnation.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fz/mycrqQgY6jB5Z00C/QA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sat, 08 Oct 2022 02:57:13 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kc7BB/o1yhC920C8baayrOZAJCc=
Sec-WebSocket-Extensions: permessage-deflate
ubsystems.infusionsoft.app/app/webTracking/websiteTriggerIframe
172.64.151.42200 OK 18 kB URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/websiteTriggerIframe
IP 172.64.151.42:0
Hash 2fb6a9984d63a2900c687d5fb2f750e5
b6e4e7e344264fbfae547e957a0d08dc8d27fba4
2e9e0aa86bd676995662a0e76feff1d603c739dc3e20c8a572e023e6c51798a1
GET /app/webTracking/websiteTriggerIframe HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Cookie: __cf_bm=M3KQGZr1WYIIRm_LqKF0gOnj22yszf.YHBLG5jHLYLI-1665197831-0-AdgcbtLtvhzSn4YcPQEfeq7emee6JUF1x6b0q1Q9kodnj+vl87bUnlh9zTH6zEbf0c0C2H73/6Bw0qbX1hLkwESxCbrWJ8eIyflqYdMWIr/c
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:13 GMT
content-type: text/html;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Sat, 08 Oct 2022 02:57:13 GMT
set-cookie: JSESSIONID=A8F8805019E955CFD4A5321350F28135; Path=/; Secure; HttpOnly
GCLB=CJHnjoHI3sOKVg; path=/; HttpOnly; expires=Sat, 08-Oct-2022 14:57:13 GMT
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-language: en-US
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 756b9b9809ab1c12-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d2aa46d-cfbd-49e3-8f25-0498668c50a9.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d2aa46d-cfbd-49e3-8f25-0498668c50a9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a15dc9ba26fe131b3b4833fb309155cd
334a9163f63c76e4379912c1f2f955f5362de899
36725a6aca89237de25a2234d01472f0100a6bbc09093ee638c9ef0fe3226a07
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d2aa46d-cfbd-49e3-8f25-0498668c50a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6963
x-amzn-requestid: 20f0cf5c-ce36-4b3b-b7cc-8c5430121c0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZdZPoEvDIAMFs0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ba263-25a0cd5d2e7580eb08d66ffa;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tjFV3cSu8aT_YiVBYx04sWIFMB6gez5NNA42OJJpsYNfXwtEvgheNQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:37:15 GMT
age: 19203
etag: "334a9163f63c76e4379912c1f2f955f5362de899"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/app/webTracking/getTrackingCode
104.18.39.145200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/app/webTracking/getTrackingCode
IP 104.18.39.145:0
GET /app/webTracking/getTrackingCode HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Sat, 08 Oct 2022 02:57:11 GMT
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=DFC871E355E15DDD4ADB1275BF1B5C63; Path=/; Secure; HttpOnly
GCLB=CLCC55bwl_KsRg; path=/; HttpOnly; expires=Sat, 08-Oct-2022 14:57:11 GMT
__cf_bm=LjkTr.hyaeYKrYo.eIXjACJnHnI1AxdbqDa3ayNvcoE-1665197831-0-AU5H0AM3nuzUXIeLBi62hrQFQD7uCmduqVAkYQ+fO1ShQJQdLqCvPYKpTtGok4Jhm8Bg3UGJKtclk2cun+77et0=; path=/; expires=Sat, 08-Oct-22 03:27:11 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 756b9b8b2e91b4e8-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webform/overwriteRefererJs?b=1.70.0.472965-hf-202206200731
172.64.151.42200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.app/app/webform/overwriteRefererJs?b=1.70.0.472965-hf-202206200731
IP 172.64.151.42:0
GET /app/webform/overwriteRefererJs?b=1.70.0.472965-hf-202206200731 HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Sat, 08 Oct 2022 02:57:11 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=41176B2650DD503548B4A83EC0683D31; Path=/; Secure; HttpOnly
GCLB=COzD46iM8Kut6gE; path=/; HttpOnly; expires=Sat, 08-Oct-2022 14:57:11 GMT
__cf_bm=YbCv4iQXAolOitI7DtINGIYF93Gld_NueUBSRLL0gxU-1665197831-0-AQ4CzrH69FLVeXjvcqWw19BNOPseUhwocI4jKQy3fWg8561dVdRBjj2+2tW3ZXpPHUTGl9KpmC7JOvvpB7AsGgeInf5APWzCY7kt7fMvdaqg; path=/; expires=Sat, 08-Oct-22 03:27:11 GMT; domain=.infusionsoft.app; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 756b9b8c2db01c12-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/js/jquery/jquery-3.3.1.js
104.18.39.145200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/js/jquery/jquery-3.3.1.js
IP 104.18.39.145:0
GET /js/jquery/jquery-3.3.1.js HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: application/javascript;charset=UTF-8
expires: Sat, 07 Oct 2023 19:19:37 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"85855-1665020747744"
last-modified: Thu, 06 Oct 2022 01:45:47 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: HIT
cache-control: public, max-age=31508546
set-cookie: __cf_bm=WOFj.tMo.EfwlRPj9GtnxQcqDR.n0PExl6fKnGMB2FU-1665197831-0-AbZyTgrkmJz4xWPt21IqPCrfcOT+mDktpPLocSrAgAIAJdcrMKMXudN2VzILvGu2blRgXL8HLkQi0vaTVYVGTqo=; path=/; expires=Sat, 08-Oct-22 03:27:11 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 756b9b8bbec9b4e8-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/resources/external/recaptcha/production/recaptcha.js?b=1.70.0.438779-hf-202202181712
104.18.39.145200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/resources/external/recaptcha/production/recaptcha.js?b=1.70.0.438779-hf-202202181712
IP 104.18.39.145:0
GET /resources/external/recaptcha/production/recaptcha.js?b=1.70.0.438779-hf-202202181712 HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: application/javascript;charset=UTF-8
expires: Sat, 07 Oct 2023 19:19:37 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"7740-1665020748274"
last-modified: Thu, 06 Oct 2022 01:45:48 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: HIT
cache-control: public, max-age=31508546
set-cookie: __cf_bm=scZL6q7pLuxGyAvD3HmyYeUafRcKajAqGI6okRhFVQ0-1665197831-0-AevpW5XB/CESwEl+TNsIXrJXL3pdBegkDPG16DtIwm1WnYv8UK2HC3oBkYsZiDYk2RqgagRDrxi2IZshpFPrPxQ=; path=/; expires=Sat, 08-Oct-22 03:27:11 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 756b9b8baec5b4e8-OSL
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
104.16.14.194301 Moved Permanently 0 B URL HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP 104.16.14.194:0
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=5TqgbrVcF.g4xTmw9Qp1H22jIYwxr2jNmvRYbm9gFPc-1665197831-0-ARScMJ+VlhYoDqHCaJTjkkpC0hbSQS/TiYWhuXCfHVpIqcoO2kvqRRd66UPxAfY6H7Js+mYpQOmdJt5rBTmxhy7hwKYCHiqQkXdrbvT2GIk4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 756b9b8ded070af6-OSL
access-control-allow-origin: *
age: 480
cache-control: public, max-age=1200
expires: Sat, 08 Oct 2022 03:17:11 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/app/timezone/timezoneInputJs?xid=67df0631b852a240c96e2d22cc05b192
104.18.39.145200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/app/timezone/timezoneInputJs?xid=67df0631b852a240c96e2d22cc05b192
IP 104.18.39.145:0
GET /app/timezone/timezoneInputJs?xid=67df0631b852a240c96e2d22cc05b192 HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Sat, 08 Oct 2022 02:57:11 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=8449B945273A245075F9BA2FA2982F23; Path=/; Secure; HttpOnly
GCLB=CIXXmtLY3JGR4QE; path=/; HttpOnly; expires=Sat, 08-Oct-2022 14:57:11 GMT
__cf_bm=9oW3GDZjDen0a2FgUvRT.Nl4jpeRxB02vjyGMP7YAz8-1665197831-0-AfoHy1lmdUOrLaHU4XQhFA+1F/fEP4x9L8CMEYVzXNH23vBtoB8FcOAgVrMAuOqJYJD1DmemhSWVxYcIrOFZgIk=; path=/; expires=Sat, 08-Oct-22 03:27:11 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 756b9b8bbec8b4e8-OSL
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
104.16.14.194301 Moved Permanently 0 B URL HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP 104.16.14.194:0
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=5TqgbrVcF.g4xTmw9Qp1H22jIYwxr2jNmvRYbm9gFPc-1665197831-0-ARScMJ+VlhYoDqHCaJTjkkpC0hbSQS/TiYWhuXCfHVpIqcoO2kvqRRd66UPxAfY6H7Js+mYpQOmdJt5rBTmxhy7hwKYCHiqQkXdrbvT2GIk4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 756b9b8fed960af6-OSL
access-control-allow-origin: *
age: 480
cache-control: public, max-age=1200
expires: Sat, 08 Oct 2022 03:17:11 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/popups-for-divi/scripts/ie-compat.min.js?ver=3.0.5
190.92.156.77200 OK 0 B URL HTTP/2 frnation.com/wp-content/plugins/popups-for-divi/scripts/ie-compat.min.js?ver=3.0.5
IP 190.92.156.77:0
GET /wp-content/plugins/popups-for-divi/scripts/ie-compat.min.js?ver=3.0.5 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 15 Oct 2022 02:57:10 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 10:59:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3531
date: Sat, 08 Oct 2022 02:57:10 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/app/timezone/timezoneInputJs?xid=4fa3b523d0e294cc9218e62e5ac13c17
104.18.39.145200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/app/timezone/timezoneInputJs?xid=4fa3b523d0e294cc9218e62e5ac13c17
IP 104.18.39.145:0
GET /app/timezone/timezoneInputJs?xid=4fa3b523d0e294cc9218e62e5ac13c17 HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Sat, 08 Oct 2022 02:57:11 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=84E1F19DBFC5CCCADE29E21391F966C8; Path=/; Secure; HttpOnly
GCLB=CN3T0tGqs5nzlAE; path=/; HttpOnly; expires=Sat, 08-Oct-2022 14:57:11 GMT
__cf_bm=ejyKYkAS3zPzrnib9Rt9JE4COoIxp.KfBWwrtI4qcqU-1665197831-0-AemzI3ZC/OpAaag1kCg5z0SNYU7xfn0fx3aCdwCbbmjCRPYysTnlCvbWwyUvOeC1FjnObX0cmvoh+DpCzCmFqtE=; path=/; expires=Sat, 08-Oct-22 03:27:11 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 756b9b8bded3b4e8-OSL
X-Firefox-Spdy: h2
ws21.hotjar.com/api/v2/sites/2963454/recordings/content
52.31.174.173200 OK 0 B URL HTTP/2 ws21.hotjar.com/api/v2/sites/2963454/recordings/content
IP 52.31.174.173:0
POST /api/v2/sites/2963454/recordings/content HTTP/1.1
Host: ws21.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 453440
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:13 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1665187200
172.64.151.42200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.app/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1665187200
IP 172.64.151.42:0
GET /cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1665187200 HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=M3KQGZr1WYIIRm_LqKF0gOnj22yszf.YHBLG5jHLYLI-1665197831-0-AdgcbtLtvhzSn4YcPQEfeq7emee6JUF1x6b0q1Q9kodnj+vl87bUnlh9zTH6zEbf0c0C2H73/6Bw0qbX1hLkwESxCbrWJ8eIyflqYdMWIr/c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:13 GMT
content-type: application/javascript; charset=UTF-8
x-control-type-options: nosniff
content-encoding: gzip
vary: accept-encoding
cache-control: max-age=14400, public
server: cloudflare
cf-ray: 756b9b997a4f1c12-OSL
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
104.16.14.194301 Moved Permanently 0 B URL HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP 104.16.14.194:0
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=5TqgbrVcF.g4xTmw9Qp1H22jIYwxr2jNmvRYbm9gFPc-1665197831-0-ARScMJ+VlhYoDqHCaJTjkkpC0hbSQS/TiYWhuXCfHVpIqcoO2kvqRRd66UPxAfY6H7Js+mYpQOmdJt5rBTmxhy7hwKYCHiqQkXdrbvT2GIk4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 756b9b8fad810af6-OSL
access-control-allow-origin: *
age: 480
cache-control: public, max-age=1200
expires: Sat, 08 Oct 2022 03:17:11 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/resources/component/calendar/calendar.js
104.18.39.145200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/resources/component/calendar/calendar.js
IP 104.18.39.145:0
GET /resources/component/calendar/calendar.js HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: application/javascript;charset=UTF-8
expires: Sun, 08 Oct 2023 07:57:11 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000;includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"1388-1665020747870"
last-modified: Thu, 06 Oct 2022 01:45:47 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: MISS
cache-control: public, max-age=31554000
set-cookie: __cf_bm=vlvc6vuN6DCVxmhc..oLhlyuhjgCiKIBB3_gR2ybOFs-1665197831-0-Ae98LYWioakCaNy8VO1W52Pain+bIoV4fCWZohomkrkVn9E4EF6Ci4M9mFPLir54wrCgLjmyjalYvsAZx4liAVE=; path=/; expires=Sat, 08-Oct-22 03:27:11 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 756b9b8bded5b4e8-OSL
X-Firefox-Spdy: h2
app.clickfunnels.com/assets/cfpop.js?ver=1.0.0
104.16.14.194301 Moved Permanently 0 B URL HTTP/2 app.clickfunnels.com/assets/cfpop.js?ver=1.0.0
IP 104.16.14.194:0
GET /assets/cfpop.js?ver=1.0.0 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 756b9b8c3c8d0af6-OSL
access-control-allow-origin: *
cache-control: public, max-age=1200
expires: Sat, 08 Oct 2022 03:17:11 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: EXPIRED
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=5TqgbrVcF.g4xTmw9Qp1H22jIYwxr2jNmvRYbm9gFPc-1665197831-0-ARScMJ+VlhYoDqHCaJTjkkpC0hbSQS/TiYWhuXCfHVpIqcoO2kvqRRd66UPxAfY6H7Js+mYpQOmdJt5rBTmxhy7hwKYCHiqQkXdrbvT2GIk4; path=/; expires=Sat, 08-Oct-22 03:27:11 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
www.clickfunnels.com/assets/cfpop.js
104.16.14.194301 Moved Permanently 0 B URL HTTP/2 www.clickfunnels.com/assets/cfpop.js
IP 104.16.14.194:0
GET /assets/cfpop.js HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://frnation.com/
Connection: keep-alive
Cookie: __cf_bm=5TqgbrVcF.g4xTmw9Qp1H22jIYwxr2jNmvRYbm9gFPc-1665197831-0-ARScMJ+VlhYoDqHCaJTjkkpC0hbSQS/TiYWhuXCfHVpIqcoO2kvqRRd66UPxAfY6H7Js+mYpQOmdJt5rBTmxhy7hwKYCHiqQkXdrbvT2GIk4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 08 Oct 2022 02:57:11 GMT
content-type: text/html
location: https://www.clickfunnels.com/assets/cfpop.js
cf-ray: 756b9b8edd480af6-OSL
access-control-allow-origin: *
age: 480
cache-control: public, max-age=1200
expires: Sat, 08 Oct 2022 03:17:11 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
X-Firefox-Spdy: h2