Overview

URLwww.rev.com/transcript-editor/Edit?token=EPnkATjTM9mDy3-zecZ6VNlNsaAsgOozgJm0IHhHgCZY2MyyL25_plv4H5nfmcDtnUnvrjU1T_1Dm_jcVj1wDWj8CAw&loadFrom=9&ts=1822.53
IP 54.230.111.92 (United States)
ASN#16509 AMAZON-02
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-07 07:35:49 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (61)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
snap.licdn.com (1) 1044 2014-10-06 08:43:45 UTC 2022-12-06 17:12:24 UTC 23.36.76.121
googleads.g.doubleclick.net (1) 42 2012-05-21 07:15:40 UTC 2022-12-07 01:04:57 UTC 142.250.74.98
cdn.linkedin.oribi.io (2) 0 2022-10-19 14:36:39 UTC 2022-12-06 17:12:25 UTC 54.230.111.42 Domain (oribi.io) ranked at: 21988
www.google.com (1) 7 2012-11-08 00:08:21 UTC 2022-12-06 23:42:40 UTC 142.250.74.164
data.pendo.io (3) 1459 2019-01-16 07:26:26 UTC 2022-12-06 18:56:20 UTC 34.107.204.85
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-12-06 17:31:54 UTC 34.120.237.76
utt.impactcdn.com (1) 8800 2021-03-02 19:42:51 UTC 2022-12-06 18:51:53 UTC 35.186.249.72
static.ads-twitter.com (1) 614 2017-01-30 05:00:15 UTC 2022-12-06 17:14:45 UTC 151.101.244.157
cdn.mxpnl.com (1) 2824 2012-08-22 19:52:57 UTC 2022-12-06 17:34:33 UTC 35.186.235.23
www.adblockanalytics.com (1) 128008 2017-01-30 06:20:40 UTC 2022-12-06 23:17:38 UTC 72.167.42.140
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-12-06 17:17:39 UTC 34.160.144.191
js.hs-banner.com (2) 2426 2020-03-26 17:45:21 UTC 2022-12-06 23:51:54 UTC 104.18.33.171
script.hotjar.com (1) 887 2020-11-05 10:02:45 UTC 2022-12-07 01:05:05 UTC 143.204.55.46
ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-12-06 17:12:20 UTC 104.18.21.226
fonts.gstatic.com (2) 0 2014-04-02 10:51:04 UTC 2022-12-06 21:54:56 UTC 216.58.207.227 Domain (gstatic.com) ranked at: 540
q.quora.com (1) 3239 2017-05-08 19:06:57 UTC 2022-12-06 19:02:52 UTC 54.81.151.51
dx.steelhousemedia.com (1) 8530 2013-09-26 09:54:29 UTC 2022-12-06 18:58:51 UTC 44.241.10.203
fonts.googleapis.com (5) 8877 2012-05-23 12:41:44 UTC 2022-12-06 23:11:27 UTC 142.250.74.106
px.ads.linkedin.com (1) 522 2017-08-08 16:28:50 UTC 2022-12-07 00:13:11 UTC 13.107.42.14
ocsp.digicert.com (13) 86 2012-05-21 07:02:23 UTC 2022-12-06 21:45:35 UTC 93.184.220.29
ocsp2.globalsign.com (1) 1544 2012-05-21 07:12:19 UTC 2022-12-06 17:15:03 UTC 104.18.20.226
connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-12-06 17:12:12 UTC 31.13.72.12
script.tapfiliate.com (1) 32485 2018-06-18 12:44:51 UTC 2022-12-06 23:17:38 UTC 54.230.111.8
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-12-06 17:19:43 UTC 54.148.242.254
r3.o.lencr.org (11) 344 2020-12-02 08:52:13 UTC 2022-12-06 17:12:17 UTC 23.33.119.27
ocsp.sca1b.amazontrust.com (2) 1015 2016-02-14 02:37:56 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
js.hs-scripts.com (1) 2571 2016-08-09 10:18:36 UTC 2022-12-06 17:20:58 UTC 104.17.213.204
js.hs-analytics.net (1) 2411 2013-09-26 02:22:44 UTC 2022-12-06 23:51:54 UTC 104.17.70.176
www.redditstatic.com (1) 1440 2012-06-30 12:33:28 UTC 2022-12-06 17:42:54 UTC 151.101.129.140
www.google.no (1) 25607 2012-06-26 23:22:08 UTC 2022-12-06 20:15:41 UTC 142.250.74.35
www.linkedin.com (1) 608 2012-07-31 06:29:59 UTC 2022-12-07 01:06:09 UTC 13.107.42.14
rs.fullstory.com (1) 2455 2017-10-27 13:28:43 UTC 2022-12-06 18:37:13 UTC 35.186.194.58
ww.steelhousemedia.com (1) 16192 2013-04-10 15:22:18 UTC 2022-12-06 18:58:57 UTC 44.238.216.23
firefox.settings.services.mozilla.com (2) 867 2020-05-25 20:06:39 UTC 2022-12-06 17:12:34 UTC 34.102.187.140
vars.hotjar.com (1) 1014 2020-11-05 10:13:14 UTC 2022-12-07 01:05:05 UTC 143.204.55.118
static.hotjar.com (1) 641 2014-11-01 05:14:27 UTC 2022-12-06 17:12:17 UTC 143.204.55.37
www.sjwoe.com (1) 11166 2019-07-24 17:54:43 UTC 2022-12-06 18:49:49 UTC 143.204.55.49
34.215.155.61 (1) 0 No data No data 34.215.155.61 Unknown ranking
track.hubspot.com (1) 2528 2012-05-23 18:12:44 UTC 2022-12-06 23:51:57 UTC 104.19.154.83
px.steelhousemedia.com (1) 7685 2012-07-19 07:21:29 UTC 2022-12-06 18:58:55 UTC 44.237.157.168
vc.hotjar.io (1) 2334 2019-04-16 10:33:25 UTC 2022-12-06 17:12:42 UTC 54.230.111.91
www.facebook.com (1) 99 No data No data 31.13.72.36
www.mczbf.com (2) 9496 2019-07-24 17:55:51 UTC 2022-12-06 18:44:26 UTC 54.230.111.40
tracking.g2crowd.com (1) 9569 2016-10-09 00:30:20 UTC 2022-12-06 16:16:14 UTC 104.18.31.73
alb.reddit.com (1) 1521 2017-06-15 05:33:56 UTC 2022-12-06 23:43:34 UTC 151.101.65.140
ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2022-12-06 17:14:46 UTC 192.124.249.23
stats.g.doubleclick.net (1) 96 2012-07-01 17:13:23 UTC 2022-12-06 18:18:53 UTC 64.233.164.155
in.hotjar.com (1) 1746 2018-07-03 09:33:18 UTC 2022-12-06 17:12:17 UTC 63.34.182.251
insight.adsrvr.org (1) 631 2012-05-30 14:03:18 UTC 2022-12-06 18:24:35 UTC 3.33.220.150
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-06 17:13:17 UTC 34.117.237.239
adblockanalytics.com (1) 111939 2015-03-04 00:42:23 UTC 2022-12-06 23:18:21 UTC 72.167.42.140
www.googletagmanager.com (1) 75 2012-10-04 01:07:32 UTC 2022-12-06 23:57:23 UTC 142.250.74.168
cdn.pendo.io (1) 1165 2017-01-30 10:19:45 UTC 2022-12-06 17:25:39 UTC 54.230.111.55
analytics.twitter.com (1) 526 2013-04-10 19:53:18 UTC 2022-12-06 17:14:22 UTC 104.244.42.131
www.rev.com (10) 210999 2013-08-06 06:39:59 UTC 2022-12-06 09:43:06 UTC 54.230.111.29
ocsp.pki.goog (25) 175 2017-06-14 07:23:31 UTC 2022-12-06 17:12:08 UTC 142.250.74.131
evs.bubo-bubo.rev.com (16) 321076 2020-11-05 01:57:49 UTC 2022-12-06 23:17:37 UTC 54.230.111.8
bat.bing.com (3) 387 2014-04-08 09:23:16 UTC 2022-12-06 17:13:08 UTC 204.79.197.200
www.google-analytics.com (1) 40 2012-05-21 09:41:50 UTC 2022-12-06 23:17:44 UTC 142.250.74.110
edge.fullstory.com (1) 2769 2019-10-31 13:31:26 UTC 2022-12-06 18:13:13 UTC 35.201.112.186
ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-12-06 21:32:26 UTC 104.18.32.68

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
 No alerts detected

mnemonic secure dns
 No alerts detected

Quad9 DNS
Scan Date Severity Indicator Comment
2022-12-07 2 34.215.155.61 Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 54.230.111.92
Date UQ / IDS / BL URL IP
2023-01-29 23:20:15 +0000 0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=vYOA (...) 54.230.111.92
2023-01-28 20:17:58 +0000 0 - 0 - 2 d14hmdqoeso5b5.cloudfront.net/apps/woody/inde (...) 54.230.111.92
2023-01-28 13:53:41 +0000 0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=_928 (...) 54.230.111.92
2023-01-28 00:21:11 +0000 0 - 1 - 0 assets.dlive.com/dlive_installer.exe 54.230.111.92
2023-01-27 20:54:25 +0000 0 - 2 - 0 dl.acdsystems.com/acdsee/en/acdsee-ultimate-9 (...) 54.230.111.92


Last 5 reports on ASN: AMAZON-02
Date UQ / IDS / BL URL IP
2023-01-30 14:32:21 +0000 0 - 2 - 0 download.findmysoft.com/2014/10/24/Pivot_4.1. (...) 54.230.245.209
2023-01-30 14:29:59 +0000 0 - 5 - 0 taragraphy.com/ 54.194.41.141
2023-01-30 14:24:00 +0000 0 - 0 - 0 lw3xv.app.link/ZbSQ5eFz0wb 54.230.111.102
2023-01-30 14:22:31 +0000 0 - 0 - 1 normallink.com/a200ceef-1bbc-45fa-90c8-953812 (...) 18.193.235.10
2023-01-30 14:21:11 +0000 0 - 0 - 6 myonlyprize.xyz/1/prizewheel/iphone13/bd/inde (...) 54.230.111.8


Last 5 reports on domain: rev.com
Date UQ / IDS / BL URL IP
2023-01-30 04:04:45 +0000 0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=Ba-j (...) 54.230.111.109
2023-01-29 23:20:15 +0000 0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=vYOA (...) 54.230.111.92
2023-01-28 13:53:43 +0000 0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=L3x7 (...) 54.230.111.36
2023-01-28 13:53:41 +0000 0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=_928 (...) 54.230.111.92
2023-01-26 23:39:36 +0000 0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=cmTw (...) 54.230.111.109


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-09 08:26:37 +0000 0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=oTMx (...) 54.230.111.92
2023-01-08 23:02:15 +0000 0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=Wdzm (...) 54.230.111.29
2023-01-08 19:42:26 +0000 0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=PtH6 (...) 54.230.111.29
2023-01-08 19:37:57 +0000 0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=Im8P (...) 54.230.111.29
2023-01-07 18:26:08 +0000 0 - 0 - 1 www.rev.com/transcript-editor/Edit?token=xacH (...) 54.230.111.29

JavaScript

Executed Scripts (122)

Executed Evals (6)
#1 JavaScript::Eval (size: 255) - SHA256: b0ef31f31656d506b130d30b7ff52db8bfff0a39a113bb214d26a3f07643a83a
(function() {
    var a = document.createElement("ins");
    a.className = "AdSense";
    a.style.display = "block";
    a.style.position = "absolute";
    a.style.top = "-1px";
    a.style.height = "1px";
    document.body.appendChild(a);
    var b = !a.clientHeight;
    document.body.removeChild(a);
    return b
})();
#2 JavaScript::Eval (size: 26) - SHA256: 93da7a1a8faecce491697056e2fdc9278c55c398a462368a32bc70c142546da3
"multiple_conv_types=true"
#3 JavaScript::Eval (size: 291) - SHA256: bddc52649c8e48d36024b74d4cb54e8377b1504de592c9ad44cfcb721fc759ce
let map_order_id = () => {
    let oid = null;
    for (let x of dataLayer) {
        if (x.orderNumber !== undefined && x.customerStatus !== undefined) {
            oid = `${x.customerStatus}_${x.orderNumber}`;
            break;
        }
    };
    return oid;
};
map_order_id();
#4 JavaScript::Eval (size: 792) - SHA256: be95c8d79151c70258c07974285ecbec353f917fa5054c668968d1e81295a6f0
let searchForTags = (...compTags) => {
    let data = {};
    let scriptNodes = document.getElementsByTagName("script");
    let imageNodes = document.getElementsByTagName("img");
    let nodesArray = [...scriptNodes, ...imageNodes];
    for (let node of nodesArray) {
        for (let i = 0; i < compTags.length; i++) {
            if (node.src && node.src.indexOf(compTags[i].id) > -1) {
                data[compTags[i].id] = compTags[i].name;
            }
        }
    };
    return Object.values(data).join(",");
};
searchForTags({
    id: "criteo",
    name: "criteo=true"
}, {
    id: "shopify",
    name: "shopify=true"
}, {
    id: "adroll",
    name: "adroll=true"
}, {
    id: "adnxs.com",
    name: "appnexus=true"
}, {
    id: "googletagmanager",
    name: "googletagmanager=true"
}, {
    id: "googletagmanager.com/gtag/js?id=G-",
    name: "ga4=true"
}, {
    id: "pixel.mathtag.com",
    name: "mediamath=true"
});
#5 JavaScript::Eval (size: 225) - SHA256: 4b424950e73905ae77b2ec253651bcbc746fdb011b56cfb8ec66c310ed7da581
var sh_audience_type = null;
var check = ["https://www.rev.com/checkout/"];
for (var i = 0; i < check.length; i++) {
    if (window.location.href.indexOf(check[i]) > -1) {
        sh_audience_type = "sh_audience_type=cart";
        break;
    }
};
sh_audience_type;
#6 JavaScript::Eval (size: 2305) - SHA256: 7cb60e734bd182af5949d5d81c525ffb1d4f41acf836669b744e8690538a4df6
(function() {
    if (typeof irongate == 'undefined') irongate = {};
    irongate.gr = function(callback) {
        if (typeof irongate.g != 'undefined') {
            callback()
        } else {
            if (typeof irongate.gcb == 'undefined') {
                irongate.gcb = []
            }
            irongate.gcb.push(callback)
        }
    };
    irongate.gsl = function() {
        var st = document.createElement("script");
        st.type = "text/javascript";
        st.src = "https://ww.steelhousemedia.com/gs";
        var list = document.getElementsByTagName("script");
        var last = Number(list.length) - 1;
        var scpt = document.getElementsByTagName("script")[last];
        scpt.parentNode.insertBefore(st, scpt);
        irongate.timeout = setInterval(irongate.dl, 2000)
    };
    irongate.dl = function() {
        if (typeof irongate.g != 'undefined') {
            clearInterval(irongate.timeout)
        }
        while (irongate.gcb.length > 0) {
            var callback = irongate.gcb.pop();
            callback()
        }
    };
    var request = function() {
        var st = document.createElement('script');
        st.type = 'text/javascript';
        var g = (typeof irongate.g != 'undefined' ? irongate.g() : 'null');
        var gt = (typeof irongate.gt != 'undefined' ? irongate.gt() : 'null');
        var sturl = 'px.steelhousemedia.com/st?ga_tracking_id=UA-18309154-6&ga_client_id=469578751.1670398540&shpt=Sign%20In%20-%20Rev&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-18309154-6%22%2C%22ga_client_id%22%3A%22469578751.1670398540%22%2C%22shpt%22%3A%22Sign%20In%20-%20Rev%22%2C%22dcm_cid%22%3A%221670398540.1%22%2C%22dcm_gid%22%3A%221189583696.1670398541%22%2C%22mntnis%22%3A%22vF4q0uMZ2i%2FxCVpq6f8Gz8bMfpyVeeu%2F%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A6%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1670398540.1&dcm_gid=1189583696.1670398541&dxver=4.0.0&shaid=32131&plh=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%2526loadFrom%253DPastedDeeplink%26viewType%3DExpiredToken&shadditional=multiple_conv_types%3Dtrue%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue&cb=1670398543704116&shguid=' + g + '&shgts=' + gt;
        st.src = ('https:' == document.location.protocol ? 'https://' : 'http://') + sturl;
        var list = document.getElementsByTagName('script');
        var last = Number(list.length) - 1;
        var scpt = document.getElementsByTagName('script')[last];
        scpt.parentNode.insertBefore(st, scpt)
    };
    irongate.gr(request);
    irongate.gsl()
})();

Executed Writes (0)


HTTP Transactions (150)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7158
Expires: Wed, 07 Dec 2022 09:34:55 GMT
Date: Wed, 07 Dec 2022 07:35:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2609
Cache-Control: max-age=99550
Date: Wed, 07 Dec 2022 07:35:37 GMT
Etag: "638f19f6-1d7"
Expires: Thu, 08 Dec 2022 11:14:47 GMT
Last-Modified: Tue, 06 Dec 2022 10:31:18 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 07:20:28 GMT
cache-control: public,max-age=3600
age: 910
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5067
Expires: Wed, 07 Dec 2022 09:00:05 GMT
Date: Wed, 07 Dec 2022 07:35:38 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: pxww8KuPwDCIKzdkNmVZ1Ih7CxYtqSysERTFutdARrtT+/+i37mcyrNq+MwGKBsxbzsAGDQOIpUxKaaY+OTxtA==
x-amz-request-id: 6QVEPXCQ98G8QDMW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 06:49:16 GMT
age: 2782
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    53341dea33f4f3d9b4966f80589f429a
Sha1:   20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
Sha256: 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 07 Dec 2022 07:35:38 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /transcript-editor/Edit?token=EPnkATjTM9mDy3-zecZ6VNlNsaAsgOozgJm0IHhHgCZY2MyyL25_plv4H5nfmcDtnUnvrjU1T_1Dm_jcVj1wDWj8CAw&loadFrom=9&ts=1822.53 HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         54.230.111.29
HTTP/2 302 Found
                                        
content-length: 0
date: Wed, 07 Dec 2022 07:35:38 GMT
set-cookie: AWSALB=XH6m2sErVYN31B1WMU+KuC2dt+cOMybvkUtnJqPU3xGoU+xTd7avXpGQPRJnApVafS936HbN1rDY2UzquNmYG/91obAZixwGnm1ahrIZyToClFiAJD+p3ij00+Jc; Expires=Wed, 14 Dec 2022 07:35:38 GMT; Path=/ AWSALBCORS=XH6m2sErVYN31B1WMU+KuC2dt+cOMybvkUtnJqPU3xGoU+xTd7avXpGQPRJnApVafS936HbN1rDY2UzquNmYG/91obAZixwGnm1ahrIZyToClFiAJD+p3ij00+Jc; Expires=Wed, 14 Dec 2022 07:35:38 GMT; Path=/; SameSite=None; Secure
location: /account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%26loadFrom%3DPastedDeeplink&viewType=ExpiredToken
server: Kestrel
strict-transport-security: max-age=2592000
x-robots-tag: noindex
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: L3UEVsJdCsuBRdVzI-NBhhZBeb9w6_PJ9OFvTjp6CFgbzr9GnamNGg==
X-Firefox-Spdy: h2

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 07:08:58 GMT
cache-control: public,max-age=3600
age: 1600
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2601
Cache-Control: 'max-age=158059'
Date: Wed, 07 Dec 2022 07:35:38 GMT
Last-Modified: Wed, 07 Dec 2022 06:52:17 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: krjmoUQFK1lzbQiuAIkeRg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.148.242.254
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: W/7zsf5AA5NncUrqKl84Ebpht9c=

                                        
                                            GET /Content/curve/img/ultra-logo.svg?v=Tp2lhJ-q6WjczQAux7E7Utwz_YWuKM_MR-Hzqvkeuog HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%26loadFrom%3DPastedDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=DSoHr5Q1UsuKHU3uuElqeg8A6A8fU3h+G5auK0JaQa0V4hZFrd5wmyBy9ZJN15oEf2yhFdTmyvKIP7Xvi8ocw1fZPsBYxBTpVkry5Z5E+JpusBLlHJOz2OttKQdP; AWSALBCORS=DSoHr5Q1UsuKHU3uuElqeg8A6A8fU3h+G5auK0JaQa0V4hZFrd5wmyBy9ZJN15oEf2yhFdTmyvKIP7Xvi8ocw1fZPsBYxBTpVkry5Z5E+JpusBLlHJOz2OttKQdP; __RequestVerificationToken=BI-3c0V7dqUZhFNNsw3mlPWkBGAL5QS3zNI-mKoJW3vy7K-Ref8DMAb0pU4K3CI3iVPjTEMmsPakuCRTu5tWfDZID441; ft_tz=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         54.230.111.29
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-length: 1626
date: Wed, 07 Dec 2022 07:35:39 GMT
set-cookie: AWSALB=B7qYXThbgusg+uVgFuxLAJUPqyDw5RfDA5jHMG6+R/HWj3X7OEeRJdeJQSmomEMoIrcBSdCYcQeBZ33mdyCPamgPMROOLmd3bIX0+vNbB581ZArUrCM+6QCa0sSp; Expires=Wed, 14 Dec 2022 07:35:39 GMT; Path=/ AWSALBCORS=B7qYXThbgusg+uVgFuxLAJUPqyDw5RfDA5jHMG6+R/HWj3X7OEeRJdeJQSmomEMoIrcBSdCYcQeBZ33mdyCPamgPMROOLmd3bIX0+vNbB581ZArUrCM+6QCa0sSp; Expires=Wed, 14 Dec 2022 07:35:39 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Mon, 05 Dec 2022 21:23:06 GMT
accept-ranges: bytes
etag: "1d908efc3d71f5a"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kgca8ZvigfKI1DXxGHtI7pXFbzK8_-XPf6H-Cq7eGECI37ZzdOE_ZA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1626), with no line terminators
Size:   1626
Md5:    ea00c1e4e97842c76e3d3fc4ac21a49c
Sha1:   5e731bfe570fa046a5f44d4d672ed72ad6c7298c
Sha256: 4e9da5849faae968dccd002ec7b13b52dc33fd85ae28cfcc47e1f3aaf91eba88
                                        
                                            GET /build/bundles/legacy/jquery.js?v=0-0 HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%26loadFrom%3DPastedDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=DSoHr5Q1UsuKHU3uuElqeg8A6A8fU3h+G5auK0JaQa0V4hZFrd5wmyBy9ZJN15oEf2yhFdTmyvKIP7Xvi8ocw1fZPsBYxBTpVkry5Z5E+JpusBLlHJOz2OttKQdP; AWSALBCORS=DSoHr5Q1UsuKHU3uuElqeg8A6A8fU3h+G5auK0JaQa0V4hZFrd5wmyBy9ZJN15oEf2yhFdTmyvKIP7Xvi8ocw1fZPsBYxBTpVkry5Z5E+JpusBLlHJOz2OttKQdP; __RequestVerificationToken=BI-3c0V7dqUZhFNNsw3mlPWkBGAL5QS3zNI-mKoJW3vy7K-Ref8DMAb0pU4K3CI3iVPjTEMmsPakuCRTu5tWfDZID441; ft_tz=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         54.230.111.29
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 94979
date: Wed, 07 Dec 2022 07:35:39 GMT
set-cookie: AWSALB=b3n+k3OWKOHJSwqpFDUH71i7EwCUsY26xuNbIlTt3X9++tCx/YA9/bJV1IAXVdiaBzLBjiLUlecMpEz+fxhF3HT8mWHRqn6RgaA7WpjWbi/yYCUvNoGs+JxHTwJm; Expires=Wed, 14 Dec 2022 07:35:39 GMT; Path=/ AWSALBCORS=b3n+k3OWKOHJSwqpFDUH71i7EwCUsY26xuNbIlTt3X9++tCx/YA9/bJV1IAXVdiaBzLBjiLUlecMpEz+fxhF3HT8mWHRqn6RgaA7WpjWbi/yYCUvNoGs+JxHTwJm; Expires=Wed, 14 Dec 2022 07:35:39 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Tue, 06 Dec 2022 23:10:23 GMT
accept-ranges: bytes
etag: "1d909c7eb006a83"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Uz3f7k7kBV4t7DagjBFDvSDoyOwfYjH6Zao8n92Ruk1qMfz38CvAvg==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   94979
Md5:    d27e439003ec2b2e2087765fcb9bb92d
Sha1:   a9f134ffcbeeaf5012819e167beae080b3759f0e
Sha256: c35d13b62f590b159ebd2a94fcf87f559ae3621b27c34fdcdc966627eb67d3cf
                                        
                                            GET /build/styles/pages/account/login.css?v=ApIBoSQscifC2eCokRmD6KBO0bRnF5gU9xOqBmFs9fg HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%26loadFrom%3DPastedDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=DSoHr5Q1UsuKHU3uuElqeg8A6A8fU3h+G5auK0JaQa0V4hZFrd5wmyBy9ZJN15oEf2yhFdTmyvKIP7Xvi8ocw1fZPsBYxBTpVkry5Z5E+JpusBLlHJOz2OttKQdP; AWSALBCORS=DSoHr5Q1UsuKHU3uuElqeg8A6A8fU3h+G5auK0JaQa0V4hZFrd5wmyBy9ZJN15oEf2yhFdTmyvKIP7Xvi8ocw1fZPsBYxBTpVkry5Z5E+JpusBLlHJOz2OttKQdP; __RequestVerificationToken=BI-3c0V7dqUZhFNNsw3mlPWkBGAL5QS3zNI-mKoJW3vy7K-Ref8DMAb0pU4K3CI3iVPjTEMmsPakuCRTu5tWfDZID441; ft_tz=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         54.230.111.29
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 176901
date: Wed, 07 Dec 2022 07:35:39 GMT
set-cookie: AWSALB=eEfEEY5P3WA0milhQzpUO2scg7Lx/r9/tjgaCEOAZ629Bq8IFPsXJREclfxjUM/Ue3JpIZSJ8Cy0msl4bDBwN3dp1GIqUtL+swRJ2D5giTnzxRn6lLbt12VWnyc5; Expires=Wed, 14 Dec 2022 07:35:39 GMT; Path=/ AWSALBCORS=eEfEEY5P3WA0milhQzpUO2scg7Lx/r9/tjgaCEOAZ629Bq8IFPsXJREclfxjUM/Ue3JpIZSJ8Cy0msl4bDBwN3dp1GIqUtL+swRJ2D5giTnzxRn6lLbt12VWnyc5; Expires=Wed, 14 Dec 2022 07:35:39 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Tue, 06 Dec 2022 23:10:15 GMT
accept-ranges: bytes
etag: "1d909c7e63ed685"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: beo_EukSXk-y5vPX8n7nZGvTcKUC9HoDtZHOCiHk12YhUgESpJh_cw==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (61265), with CRLF line terminators
Size:   176901
Md5:    cfb87cafa30f7302dc070441eb507cc8
Sha1:   9d414bfc67aca6c3301367ddb53ee52f6892dc80
Sha256: 029201a1242c7227c2d9e0a8911983e8a04ed1b467179814f713aa06616cf5f8
                                        
                                            GET /build/auth.bundle.js?v=70PwOu7-f1bUfXJlhJ7ylBcjewK1d-wJQR4RmbbZ7mg HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%26loadFrom%3DPastedDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=DSoHr5Q1UsuKHU3uuElqeg8A6A8fU3h+G5auK0JaQa0V4hZFrd5wmyBy9ZJN15oEf2yhFdTmyvKIP7Xvi8ocw1fZPsBYxBTpVkry5Z5E+JpusBLlHJOz2OttKQdP; AWSALBCORS=DSoHr5Q1UsuKHU3uuElqeg8A6A8fU3h+G5auK0JaQa0V4hZFrd5wmyBy9ZJN15oEf2yhFdTmyvKIP7Xvi8ocw1fZPsBYxBTpVkry5Z5E+JpusBLlHJOz2OttKQdP; __RequestVerificationToken=BI-3c0V7dqUZhFNNsw3mlPWkBGAL5QS3zNI-mKoJW3vy7K-Ref8DMAb0pU4K3CI3iVPjTEMmsPakuCRTu5tWfDZID441; ft_tz=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         54.230.111.29
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 45193
date: Wed, 07 Dec 2022 07:35:39 GMT
set-cookie: AWSALB=hLbHrKeZd/zQpz1gwYOfR4ejUW6kQa5S9Br/xrsxbBUFVsVzo5C/2OYFQAR0i3tTLMgztbyaPpmFkWx0lJNIofRilLSZf1ojEMd86LWgVyuoktt6Exr6xKZ9hH//; Expires=Wed, 14 Dec 2022 07:35:39 GMT; Path=/ AWSALBCORS=hLbHrKeZd/zQpz1gwYOfR4ejUW6kQa5S9Br/xrsxbBUFVsVzo5C/2OYFQAR0i3tTLMgztbyaPpmFkWx0lJNIofRilLSZf1ojEMd86LWgVyuoktt6Exr6xKZ9hH//; Expires=Wed, 14 Dec 2022 07:35:39 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Tue, 06 Dec 2022 23:12:00 GMT
accept-ranges: bytes
etag: "1d909c824d29089"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ls-Y7obR-1xDwi_0shOkc5FI1GxZg0840MKbEcRVa6g2lshX4XBjxA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (45193), with no line terminators
Size:   45193
Md5:    4dc972af271c89143118ba6903b86233
Sha1:   718e3e6b1379e6751adbe17edc7cd0c7d4b7f411
Sha256: ef43f03aeefe7f56d47d7265849ef29417237b02b577ec09411e1199b6d9ee68
                                        
                                            GET /build/mp.bundle.js?v=XQY8qTVk9zdY4zwF1QLF8uXIB4-TFdvGPoDJjLJxCAA HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%26loadFrom%3DPastedDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=DSoHr5Q1UsuKHU3uuElqeg8A6A8fU3h+G5auK0JaQa0V4hZFrd5wmyBy9ZJN15oEf2yhFdTmyvKIP7Xvi8ocw1fZPsBYxBTpVkry5Z5E+JpusBLlHJOz2OttKQdP; AWSALBCORS=DSoHr5Q1UsuKHU3uuElqeg8A6A8fU3h+G5auK0JaQa0V4hZFrd5wmyBy9ZJN15oEf2yhFdTmyvKIP7Xvi8ocw1fZPsBYxBTpVkry5Z5E+JpusBLlHJOz2OttKQdP; __RequestVerificationToken=BI-3c0V7dqUZhFNNsw3mlPWkBGAL5QS3zNI-mKoJW3vy7K-Ref8DMAb0pU4K3CI3iVPjTEMmsPakuCRTu5tWfDZID441; ft_tz=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         54.230.111.29
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 12198
date: Wed, 07 Dec 2022 07:35:39 GMT
set-cookie: AWSALB=H3iDYQMZoLy4CHqt75bKoEYuH9BtgZla+LvW3Vu+DBF7zqZuh4P0/eTJnbmF/S1J4VingaZZJli5oFsW5f0U+R8TVxVs5MwAVaNsKZDUS8dfkCTGNOTz8ba2Umur; Expires=Wed, 14 Dec 2022 07:35:39 GMT; Path=/ AWSALBCORS=H3iDYQMZoLy4CHqt75bKoEYuH9BtgZla+LvW3Vu+DBF7zqZuh4P0/eTJnbmF/S1J4VingaZZJli5oFsW5f0U+R8TVxVs5MwAVaNsKZDUS8dfkCTGNOTz8ba2Umur; Expires=Wed, 14 Dec 2022 07:35:39 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Tue, 06 Dec 2022 23:12:06 GMT
accept-ranges: bytes
etag: "1d909c8286588a6"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ERqE1Anw2jsXv4gzgBm3W50NIAxoDsMztYoHchzXzUOSTr6QZlLY_A==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   12198
Md5:    3abcbeb4700ee5cc827282cedca98035
Sha1:   7a6b127d61babcfb6ecb4dd315bd5d2ae39bbc32
Sha256: 5d063ca93564f73758e33c05d502c5f2e5c8078f9315dbc63e80c98cb2710800
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css2?family=Rubik:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rev.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 07:35:39 GMT
date: Wed, 07 Dec 2022 07:35:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1151
Md5:    de8b2788e82d4a604d2e13f9f7de1486
Sha1:   2c29f5e0d674ac9c6b5de1f6fd6117fc5c670c82
Sha256: d1237ab8eee9384f7fa36f83ca43adf5672435941ec1acc7ee898d1a0ed4c0d5
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rev.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:41 GMT
expires: Tue, 05 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 132179
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 07 Dec 2022 07:35:40 GMT
Etag: "638ecc77-1d7"
Last-Modified: Wed, 07 Dec 2022 07:34:08 GMT
Server: ECS (dcb/7EC9)
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OETAnY1nMJLD0nblQELEcd3AjU2P2L-HJZKiWcuHCbJBeSMEzzi4pw==
Age: 92

                                        
                                            GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rev.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 21:08:51 GMT
expires: Tue, 05 Dec 2023 21:08:51 GMT
cache-control: public, max-age=31536000
age: 124009
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Size:   46524
Md5:    c1fd378f54921c75e4ae1821e7b8fff6
Sha1:   2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
Sha256: 405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11174
Expires: Wed, 07 Dec 2022 10:41:54 GMT
Date: Wed, 07 Dec 2022 07:35:40 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11174
Expires: Wed, 07 Dec 2022 10:41:54 GMT
Date: Wed, 07 Dec 2022 07:35:40 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11174
Expires: Wed, 07 Dec 2022 10:41:54 GMT
Date: Wed, 07 Dec 2022 07:35:40 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11174
Expires: Wed, 07 Dec 2022 10:41:54 GMT
Date: Wed, 07 Dec 2022 07:35:40 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6110
x-amzn-requestid: 2ebf542a-dacc-472a-81c0-0c69cb1ec143
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEQAH2doAMFljA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb3ff-7173ff7941b57fa163e3cc6b;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:16:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fxuPjC35VBDaymSCPY_iBxDnQY4CFHgolHSmnDhCRUjzw5UzY7ovA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 04:14:32 GMT
age: 12068
etag: "c3b915cb579b651db25442fea0bbedd0d292c0fc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6110
Md5:    fb1ea0161d261518c99909aff49e6f58
Sha1:   c3b915cb579b651db25442fea0bbedd0d292c0fc
Sha256: d877a21abfd883a368da0136c4e56d7f590fa9e9ea09dec3675823211fe56385
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd933687b-86e0-407a-9bff-2debb09d5167.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10362
x-amzn-requestid: 7fdd2011-e283-467e-9f04-741946a834ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpl_1EsooAMFhvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d5065-0cddad1919d984065bd0b03e;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 01:59:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WtZWFmfVSXYRQlYwpBxj8JG_WC91ik_p68HjX7-wCfYb0624CvcBSA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:58:02 GMT
age: 71600
etag: "acece1761a7d4d3926500726c19d528bb204ef4c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10362
Md5:    550ee57c325ce8d4892400deb24141d3
Sha1:   acece1761a7d4d3926500726c19d528bb204ef4c
Sha256: 7cc68e966362916947e7d6e24d3c001c64298fec2438a97538765d801fa7c92c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9613
x-amzn-requestid: 3542fd4f-74e3-450b-b7fc-04034d680bf4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cslIEEDtIAMFfuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e8233-40eaebed627d374d0910e456;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 23:43:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2aI7z8gOkQiNDlj2tbsoWibfupjl25ZjoO_QRbfmXQKwO-yF455yXg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 07:18:37 GMT
age: 1023
etag: "3628390c62642dcc375b28f58c9b48180c4abd73"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9613
Md5:    b92721cbe24623f1713a5248d6a7c1b2
Sha1:   3628390c62642dcc375b28f58c9b48180c4abd73
Sha256: 37d0451c03bc7cf0253aba6d3204cbf38502692a0fbc751a3ead01b07e9a65d6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e484ee7-12d9-41dc-b674-890c51c30626.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5913
x-amzn-requestid: 355ca338-7d8e-4a60-a491-0509d0ff32d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlirF3DIAMF-vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb610-5bff7b5b3984102e1ef0e737;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RlnA4SSUIbIVtGBxqBtabKw58aXWE-jGIKLZ4DnoTiGzvH5bzBOUbA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:54:15 GMT
age: 34885
etag: "a1b7863c70f1d501560a5b2fb4442f4835f94341"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5913
Md5:    b079607b368263e3517dd30250f5f2af
Sha1:   a1b7863c70f1d501560a5b2fb4442f4835f94341
Sha256: e7ed3ed2aca312d82fb017e06c6493fafffff9a603d1498c9c05355c08b444e0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6b1394-57be-42ed-ad12-94fa7a0b4be7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7609
x-amzn-requestid: 02299a39-6804-49ae-b415-313b6e06b2ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfj24G39oAMF25Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63894cf8-5f578e3f211063bd125b645a;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 00:55:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uMTaiFjrcbJxWm4M7BuSHPu0BFUMp9UIpMvnvlLs_dajlM0_iObY2A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:57:52 GMT
age: 34668
etag: "b3d22d146c6094cb539de40a72b9c5a140802ee5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7609
Md5:    0d0219e6bee2a28f003f396f872eecf0
Sha1:   b3d22d146c6094cb539de40a72b9c5a140802ee5
Sha256: 41c1b037e8e654c19f36b74cceccd1fc841cc9fb7de39ac552ab5089dc3e82db
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6846
x-amzn-requestid: 53452103-6559-460c-ac40-4685e6816aa4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGx4E-mIAMFatg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a5-5327ec9a2f247cc91654df80;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Znjnq24wuXoi43Bfc9aPdcUHhMh-a00hSCXUHFpHq3sTtQQoUYe6Uw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 07:10:36 GMT
age: 1504
etag: "6d55b299f906908309f91eaf0a720ad65866db04"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6846
Md5:    a7ee62c5e846e8ad4808f4724f15146d
Sha1:   6d55b299f906908309f91eaf0a720ad65866db04
Sha256: 0d8f51d6f7f3bad4bb9d9c3000999739147f6dd718b290b0dca71a4cba85cb38
                                        
                                            GET /build/curve-common.bundle.js?v=32vC523I3tMuphEwnPKpXE0jK21qQfHiic3TpkwsmuQ HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%26loadFrom%3DPastedDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=DSoHr5Q1UsuKHU3uuElqeg8A6A8fU3h+G5auK0JaQa0V4hZFrd5wmyBy9ZJN15oEf2yhFdTmyvKIP7Xvi8ocw1fZPsBYxBTpVkry5Z5E+JpusBLlHJOz2OttKQdP; AWSALBCORS=DSoHr5Q1UsuKHU3uuElqeg8A6A8fU3h+G5auK0JaQa0V4hZFrd5wmyBy9ZJN15oEf2yhFdTmyvKIP7Xvi8ocw1fZPsBYxBTpVkry5Z5E+JpusBLlHJOz2OttKQdP; __RequestVerificationToken=BI-3c0V7dqUZhFNNsw3mlPWkBGAL5QS3zNI-mKoJW3vy7K-Ref8DMAb0pU4K3CI3iVPjTEMmsPakuCRTu5tWfDZID441; ft_tz=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         54.230.111.29
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 239947
date: Wed, 07 Dec 2022 07:35:39 GMT
set-cookie: AWSALB=i2yO6e6Zk63BK7MHYva2LOGoXZu95zkHW+QmO1Wrll9PilIRUPabWIpcO9i+ccMXIggmOQxPvYpTu4tedPYuDwJxagVtxY9Gu/Q/Tard1X9LSgKVivmDFKrunANg; Expires=Wed, 14 Dec 2022 07:35:39 GMT; Path=/ AWSALBCORS=i2yO6e6Zk63BK7MHYva2LOGoXZu95zkHW+QmO1Wrll9PilIRUPabWIpcO9i+ccMXIggmOQxPvYpTu4tedPYuDwJxagVtxY9Gu/Q/Tard1X9LSgKVivmDFKrunANg; Expires=Wed, 14 Dec 2022 07:35:39 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Tue, 06 Dec 2022 23:12:17 GMT
accept-ranges: bytes
etag: "1d909c82ef7b7cb"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3N9xZYznBWsgHIST888dCn_N2EKk6WMqhp1_izdnGE1EjmVx4mEOtA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65459)
Size:   239947
Md5:    960a03c1eec69c3cc3169bee1d22d176
Sha1:   58f0338df78945b414a0e98711b584a903861a6c
Sha256: df6bc2e76dc8ded32ea611309cf2a95c4d232b6d6a41f1e289cdd3a64c2c9ae4
                                        
                                            POST /gsalphasha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:40 GMT
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 11 Dec 2022 05:49:28 GMT
ETag: "db7d4b9a00e535ea416610a7c26f884476b9b97b"
Last-Modified: Wed, 07 Dec 2022 05:49:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 968
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775b95fc6d190b3d-OSL


--- Additional Info ---
Magic:  data
Size:   1423
Md5:    8dd6f242c3b72fb7b9868dad8512a29c
Sha1:   db7d4b9a00e535ea416610a7c26f884476b9b97b
Sha256: 0bf35edade6893f3c3c6d32679f8e278164d2b632185d9b43e3a0b0638746866
                                        
                                            GET /analytics-next/bundles/tsub-middleware.bundle.5bc961ac61f2cc746529.js HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 568
date: Fri, 14 Oct 2022 20:22:31 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 13 Oct 2022 18:09:00 GMT
etag: "14b72ca617e595d4fdbf3b6af07ac3a7"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: TsR9MqszUm2wmCcyfbDE5V2Q2COYCvht
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rq1FBBFvobQavJtKDPbRbD489zSE2FAdu51CilNkumHtSfmtYftPbg==
age: 4619590
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (496)
Size:   568
Md5:    14b72ca617e595d4fdbf3b6af07ac3a7
Sha1:   9d5be00536768c5f2101ade111cad2b0a93f0819
Sha256: 45914c08c645568192f3550896cd731fd31a748a2fa0619f5318f5a49df0b8e6
                                        
                                            GET /next-integrations/integrations/bing-ads/2.0.1/bing-ads.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1136
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "1553faa0acd9e90dbb46c23e1127f86e"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: urh2ZuXFZl1g2EkVhflXERh1um95ZMXd
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0S05tuT4TxaVUzii94blqFrWg5G63L2J2FSDEYJmPzfPToOktBYEXw==
age: 7860951
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2357)
Size:   1136
Md5:    1553faa0acd9e90dbb46c23e1127f86e
Sha1:   843fc91ff5d9b34dd8cc7ee722269e6bc5507b75
Sha256: 05840cae824cad02ae47125bbad14bc9acc175652a9da717a35ede1e46ff6d0e
                                        
                                            GET /next-integrations/integrations/linkedin-insight-tag/1.0.1/linkedin-insight-tag.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1063
date: Sat, 27 Aug 2022 14:44:46 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "462aff3995a789b83208321801ab345b"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: Y8CI0PiHFIuF_9rR6YNjYD8TVk.uZynj
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CaStFcGpccXQ-U0Tv__9E0WYwnY-itlx3qnvYPceZX9IpyJqB4_nwA==
age: 8787054
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2155)
Size:   1063
Md5:    462aff3995a789b83208321801ab345b
Sha1:   08a5c21ac99b3f0cbf6d79f0beb9ee0be4cbf8c5
Sha256: be5e8f154d15f475564a4fd9822bd7032b1c334bdbd3d6020c8a29c1e1aeca81
                                        
                                            GET /next-integrations/integrations/twitter-ads/2.5.2/twitter-ads.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1972
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:06 GMT
etag: "8e90efe318aa7f9f7b90dbf3859c2300"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: ns46cQ1QdICERQmBsTCM0y2WuaStQm7b
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XzjacPiEZDl701Yllk1_nhBv09c3RFj_98MchmlTsQdSiDhgs8Lu5w==
age: 7860950
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (5487)
Size:   1972
Md5:    8e90efe318aa7f9f7b90dbf3859c2300
Sha1:   08fa1ec50d5fd5a77f0e2819446d1252899d5df8
Sha256: 0ed2c8008c594ad71730c46573862b9a2c76a2627c7253ba6cd01ea82508e951
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /next-integrations/integrations/quora-conversion-pixel/1.0.2/quora-conversion-pixel.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1184
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "55a451feb4984d1dd331f30d1551af36"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: jBq1W5CPdo1VUOQqhi6_ywpJWGvUAb48
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zH4cuHLoRM8cVtVlG6OQXnugZ17vO4qYWci3XN-Bi5Ee_XdgCJTL-Q==
age: 7860950
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2488)
Size:   1184
Md5:    55a451feb4984d1dd331f30d1551af36
Sha1:   878f3947f8fa6e88d6e5ef4f2fe4421d3689009f
Sha256: b29adb7d83cedc23b216bad4e6f392b829e8cad93e0a4c3a40ff8b9f0f9af8c0
                                        
                                            GET /next-integrations/integrations/facebook-pixel/2.11.4/facebook-pixel.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 3271
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "11d09c60390d4846b90b372bd58cf329"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: OvTzgbLXtChbEoW.LGjeIXq_ezxD0Xij
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R0rEkOG-Uf6fHA-D6JzNtSlNLEm-rLv8jt5QjxDo0f1j_v0KRKmEPg==
age: 7860950
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (10360)
Size:   3271
Md5:    11d09c60390d4846b90b372bd58cf329
Sha1:   5a0420772b5952092e5e4e495e6d20a75be5595d
Sha256: 695f75812718e9986803f675ca57b275118fa8cb4a8593e4bf09289229fc5fe9
                                        
                                            GET /next-integrations/integrations/fullstory/3.1.0/fullstory.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 2169
date: Fri, 02 Sep 2022 16:34:01 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "d3e47a7eac6a85c7748e3e6a73c930fc"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: TzcJdrfV4qJvi77XmWnv9B9omkbIekkA
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RONB4eAbJI2hy-uN9t-Ok857vIuJ4pcd4dgN1IJ7d3gBRRw3JBmf8A==
age: 8262098
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (5103)
Size:   2169
Md5:    d3e47a7eac6a85c7748e3e6a73c930fc
Sha1:   446636b2d4410e452bdc70aa9ad6b381127e74aa
Sha256: c227903766801adcec107ebd7703e138f2c4e03683ff58d02e2a287ff808c7d9
                                        
                                            GET /next-integrations/integrations/hotjar/1.4.0/hotjar.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1336
date: Wed, 02 Nov 2022 00:43:13 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:48:00 GMT
etag: "4cd7c93a55ce331d264d9a857bd044ed"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: 978iMiKKNdIObkMbEwfWedn2eTs8j_9i
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wkfMHI9KTbzk3v8ciGoj4V_6G7bzHx40tc89PQcUMBWaQoiCLOcj5w==
age: 3048748
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2744)
Size:   1336
Md5:    4cd7c93a55ce331d264d9a857bd044ed
Sha1:   8686a559163e604917f7da8134a856ed472f78d3
Sha256: 7ad1bb509b58c14fc222c76eb6bf2359cc66a8846cf13d6a76e98b126f935005
                                        
                                            GET /next-integrations/integrations/pendo/1.1.3/pendo.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1296
date: Wed, 07 Sep 2022 07:59:50 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "695bfc9a51be5d199c2bd1a0bbe8af4c"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: Jf0I3ZY_tS1GoAC0ONxzJiIDY4jV7PMV
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jUME2IVaW56sQVJmiZQ4XM6R0c9N2xLaJPg_g0HY8K4wZstSKW_Dzg==
age: 7860950
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2755)
Size:   1296
Md5:    695bfc9a51be5d199c2bd1a0bbe8af4c
Sha1:   350fa27b79585bd313c306ac72e75c207ed9368a
Sha256: f509d19d9de86b3f90f4e3835317bbd1194c0941d731ee5345b227028cf2df37
                                        
                                            GET /next-integrations/integrations/google-adwords-new/1.2.1/google-adwords-new.dynamic.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 1637
date: Wed, 07 Sep 2022 07:59:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:05 GMT
etag: "42d5be27ccbd8a0a8aafd8ba7a7470c7"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: ZzaTlIznfjCus3n0Cq8cGcww_7z729XB
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: k0-l_0dVkYClH-xwEN2fpbmsfui8h2mvqw-Jfiv_9TlabvOXRYFebQ==
age: 7860950
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3990)
Size:   1637
Md5:    42d5be27ccbd8a0a8aafd8ba7a7470c7
Sha1:   c8b2598bf3e43d437b4f45219e7bdc74a9db952b
Sha256: 6503cd0e435619365dc44a1347b86b672d9e860ae258f4321903aabb854c376f
                                        
                                            GET /next-integrations/integrations/vendor/commons.54701049fd6fb8497e9e.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 22174
date: Wed, 07 Sep 2022 07:59:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 08 Aug 2022 17:49:03 GMT
etag: "7741fd16ad2418cd17ab981f8207b106"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: mb97YHCQnVYMzMj70hHDbCO4ylFPlzfU
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AiGUjVizzxPGMBZiuzfaB4DSLzMce-5FMLDUMKHrxB5jPyZLdcDYRQ==
age: 7860950
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size:   22174
Md5:    7741fd16ad2418cd17ab981f8207b106
Sha1:   13d45dddf2bc6331a72ea781098dafdf715a13e7
Sha256: c66490dc7f609c24fb66b5aeea8b7142f0d183d2075381daa817002b3c25b375
                                        
                                            HEAD / HTTP/1.1 
Host: adblockanalytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         72.167.42.140
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 07 Dec 2022 07:35:40 GMT
Content-Length: 162
Connection: keep-alive
Location: https://www.adblockanalytics.com/

                                        
                                            GET /next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 22177
date: Thu, 29 Sep 2022 11:56:07 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 21:38:18 GMT
etag: "befb217271e2e926c7d898f1c85f6cb7"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: Z.cz1sApkVz0CAwS1aXBsP5bZXvNz24o
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MU-Vw4HQMlp_fMOjcAgbaac-FDVYiANUtvo-FlXB6LU4_sL5adresQ==
age: 5945974
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size:   22177
Md5:    befb217271e2e926c7d898f1c85f6cb7
Sha1:   b6ca8f0b9eb7ddebc916cbc77eddab8532216748
Sha256: 21c28b41965eaf22aae5ee670f71227bd2d8fd32a024d62864873f7c8621e8f4
                                        
                                            GET /gtm.js?id=GTM-BHMQ HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Dec 2022 07:35:40 GMT
expires: Wed, 07 Dec 2022 07:35:40 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 90934
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (28044)
Size:   90934
Md5:    a0e9b32233718aafcc20690572c4d434
Sha1:   1a0614e63c7e8566f83f8881e766ad74d6cfaaae
Sha256: a6041a689126d8da687e9e784c65c8bdad365e2aa15853178f676314f3b35538
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "95688ABEDBCA4F28BFA9AF68F5233B770372A49284086874308955C533BBA2D2"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6784
Expires: Wed, 07 Dec 2022 09:28:44 GMT
Date: Wed, 07 Dec 2022 07:35:40 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "95688ABEDBCA4F28BFA9AF68F5233B770372A49284086874308955C533BBA2D2"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6784
Expires: Wed, 07 Dec 2022 09:28:44 GMT
Date: Wed, 07 Dec 2022 07:35:40 GMT
Connection: keep-alive

                                        
                                            GET /agent/static/dab970e7-a0d4-4e86-407e-3536dbfcc619/pendo.js HTTP/1.1 
Host: cdn.pendo.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.55
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 132229
x-guploader-uploadid: ADPycdtz-SaSaVU0wxpSLFek3i0zZ6mOmu8lLltwhX91U2UzWUCo_WRWIzLtAe3teV3hb_3AKPGaGPhyYxFQ5PIIWE4vig
last-modified: Thu, 01 Dec 2022 19:10:02 GMT
x-goog-generation: 1669921802276046
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 132229
content-encoding: gzip
x-goog-hash: crc32c=LVfNdw==, md5=sjhjKCp0rHpb1FNGx1gZog==
x-goog-storage-class: STANDARD
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: *
server: UploadServer
date: Wed, 07 Dec 2022 07:35:23 GMT
expires: Wed, 07 Dec 2022 07:42:53 GMT
cache-control: max-age=450
etag: "b23863282a74ac7a5bd45346c75819a2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FkMmSpnPkbeP_T7QI6AlFzKLWOa_lGCgGLKtCBjG5SJFJUCLkbzxyA==
age: 17
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47462)
Size:   132229
Md5:    b23863282a74ac7a5bd45346c75819a2
Sha1:   a4d1dab29a643a6b1b8efaf2fe42fb3b057544e9
Sha256: f220e58b3f3180885f987c1c320e2dcdb3a62aef6692f7a1089fb39168ae3ecf
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2026
Cache-Control: 'max-age=158059'
Date: Wed, 07 Dec 2022 07:35:40 GMT
Last-Modified: Wed, 07 Dec 2022 07:01:55 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /ads/pixel.js HTTP/1.1 
Host: www.redditstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.129.140
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 07 Nov 2022 16:45:46 GMT
etag: "3528fd00b652f61a266eb584d96f4fcc"
cache-control: public, max-age=60
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 07 Dec 2022 07:35:40 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25224)
Size:   7722
Md5:    3528fd00b652f61a266eb584d96f4fcc
Sha1:   d89e16aa1323c6c4f1ed3941122020684a599361
Sha256: 77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332
                                        
                                            GET /analytics-next/bundles/870.bundle.8c2ad2c20faa7f50ccdf.js HTTP/1.1 
Host: evs.bubo-bubo.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         54.230.111.8
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Mon, 21 Nov 2022 22:05:03 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 21 Nov 2022 21:55:23 GMT
etag: W/"6182a27f8db24c6fe6a8590a0884f2e7"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: pJ4eZep8qs58gRd5ke8RmJ_VgyNlBi51
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fyuIwZoYsNl7UtGlskqDXeyz_XC-oRI6o3mW-cSLtmBlLFvqewle5Q==
age: 1330237
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   23224
Md5:    4f0325567610a497e9fb73ce8935c11c
Sha1:   9696632c4c1bb90aac580af2c5f14eed86f81099
Sha256: 743d80904253e92576ed6122a05ee93829504ba0ef1084d7a71da09f4b025ebe
                                        
                                            GET /tags/11063/tag.js HTTP/1.1 
Host: www.mczbf.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.40
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Date: Wed, 07 Dec 2022 07:13:49 GMT
X-Request-ID: b2508dca-75fe-11ed-aa71-d3309e3a83a8
Server: nginx
Cache-Control: max-age=1800
Content-Encoding: gzip
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FofjRHi0qXR0U7fICxvttgYavESG_S3RmTNu9dHdGJq54DRR3iKoaQ==
Age: 1311


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (46874)
Size:   15769
Md5:    952567e369e7478aff097dabb51c3e06
Sha1:   23c206295483f0df47ea05dce4338af8892e0750
Sha256: 6153cd08a1a4463a057b5e450b51661f2a24971215143a51d3f3c6c73f321def
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B609E33D144FF22B7797F42C65DA5C422FC0765E1CAE90202FA6FAA06B668DF3"
Last-Modified: Wed, 07 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17396
Expires: Wed, 07 Dec 2022 12:25:36 GMT
Date: Wed, 07 Dec 2022 07:35:40 GMT
Connection: keep-alive

                                        
                                            GET /A3461866-f171-406d-97bd-3eec5071f77f1.js HTTP/1.1 
Host: utt.impactcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         35.186.249.72
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
x-guploader-uploadid: ADPycdufwekpctj1L8SOY1xcGrsd5RhgDThZk32By5jUhU8klvkX5HoM96eRuqxM1xzBfqy_T9B0CPWNQ9UlGdCYbz5Foq8knqSK
x-goog-generation: 1668808035096983
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13116
content-encoding: gzip
x-goog-hash: crc32c=Wh2iug==, md5=xuhZ4v/lveqILnk5eqbg3w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 13116
server: UploadServer
date: Wed, 07 Dec 2022 07:35:40 GMT
expires: Wed, 07 Dec 2022 07:40:40 GMT
cache-control: public,max-age=900,s-maxage=300
last-modified: Fri, 18 Nov 2022 21:47:15 GMT
etag: "c6e859e2ffe5bdea882e79397aa6e0df"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (42298), with no line terminators
Size:   13116
Md5:    c6e859e2ffe5bdea882e79397aa6e0df
Sha1:   1576b07b23ca5a68096f781750cbfe46dc6126be
Sha256: cb7ba591091147c56f971d0c41b15da7dbbdbc3c1a4c2e8a9fef547fdbff52a4
                                        
                                            POST /s/gts1d4/zc8j76yUOh0 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:40 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3845
Cache-Control: 'max-age=158059'
Date: Wed, 07 Dec 2022 07:35:40 GMT
Last-Modified: Wed, 07 Dec 2022 06:31:35 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /policy HTTP/1.1 
Host: www.sjwoe.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.49
HTTP/2 200 OK
content-type: application/json
                                        
content-length: 28
date: Wed, 07 Dec 2022 01:41:42 GMT
x-amzn-requestid: 14da3004-e7de-4db9-8658-96b4e4cb7c3f
access-control-allow-origin: *
x-amz-apigw-id: cwJVeGhMoAMF7IA=
cache-control: max-age=3600
x-amzn-trace-id: Root=1-638fef56-449080dd4ecb2a1f2a95efd1;Sampled=0
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0NhNtgJcpvIXP4s8PMC6X82K2yIsuDP4rl-3o5Fw2rw-wy318oH3wg==
age: 21238
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   28
Md5:    cb03d8f455e88d7bb7050795f9f9cfc9
Sha1:   ad15e9674b599d400994e2e83d094e696c76eb98
Sha256: 4bfe3fd63b2ce813a2e3e1252146acf89e82d30222ca39161cf68086449cd64b
                                        
                                            GET /_/ad/baa4434eba124407b506792409258530/pixel?j=1&u=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%2526loadFrom%253DPastedDeeplink%26viewType%3DExpiredToken&tag=ViewContent&ts=1670398540269 HTTP/1.1 
Host: q.quora.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.81.151.51
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Wed, 07 Dec 2022 07:35:40 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,766f171c18785af4f6af7a215b723468,10.0.0.249,53460,91.90.42.154,,84358972157,1,1670398540.915,0.001,,.,0,0,0.000,0.004,-,0,0,197,152,76,10,34729,,,,,,-,
Content-Length: 43
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            POST /11063/pageInfo HTTP/1.1 
Host: www.mczbf.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: application/x-www-form-urlencoded
Origin: https://www.rev.com
Content-Length: 452
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.40
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 68
Connection: keep-alive
Date: Wed, 07 Dec 2022 07:35:40 GMT
X-Request-ID: c02ef136-7601-11ed-b700-41be948bce28
Server: nginx
Access-Control-Allow-Origin: *
Cache-Control: no-store
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8UmAXNIvTal8oWYjWcKRapBpaHIMg93cQLbooN-_DPQ6LyLCYw5H3Q==


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size:   68
Md5:    91e42db1c66c0b276abf6234dc50b2eb
Sha1:   c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
Sha256: 63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
                                        
                                            GET /21451281.js HTTP/1.1 
Host: js.hs-banner.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.18.33.171
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
date: Wed, 07 Dec 2022 07:35:41 GMT
x-amz-id-2: DxFKsPFo6A7NQGoUk2s/3mIkmfjVCx0ebvlnA6lN3A57ynVGTM8ORkZoi4Z+boMQqvDTmJao4qs=
x-amz-request-id: WY55T450VCW086WR
last-modified: Tue, 25 Oct 2022 23:00:58 GMT
etag: W/"b9c047860d21bc3177c6f438d52d3299"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: 5gySMbMv.nEYkSe1hM8TRef_ngJcepv8
access-control-allow-origin: https://www.rev.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Wed, 07 Dec 2022 07:40:41 GMT
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 775b960069e5b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (60033)
Size:   15288
Md5:    3cccf05fc648fbf39a7b46d4f32b12c4
Sha1:   1152f8c231ee7b9c097be809ad6c9528592fd9d5
Sha256: 6a1e27245cf08f050c63d620f8a8fdf141be64b16f10ba66d0b8518d6f4394e9
                                        
                                            GET /attribution_tracking/conversions/2625.js?p=https://www.rev.com/account/auth/login?returnUrl=https%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%2526loadFrom%253DPastedDeeplink&viewType=ExpiredToken&e= HTTP/1.1 
Host: tracking.g2crowd.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.18.31.73
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Wed, 07 Dec 2022 07:35:40 GMT
cache-control: max-age=600, public
etag: W/"3dae93a05edd9dcfc1864b87178a31e0"
x-request-id: 455788a3-4f23-4d8e-ae5b-34b2a484e1c6
x-runtime: 0.001951
strict-transport-security: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' *.g2crowd.com *.g2.com; connect-src 'self' *.g2crowd.com *.g2.com; font-src 'self' *.g2crowd.com *.g2.com; form-action 'self' *.g2crowd.com *.g2.com; frame-src 'self' *.g2crowd.com *.g2.com; img-src 'self' *.g2crowd.com *.g2.com; manifest-src 'self' *.g2crowd.com *.g2.com; media-src 'self' *.g2crowd.com *.g2.com; object-src 'self' *.g2crowd.com *.g2.com; script-src 'self' *.g2crowd.com *.g2.com; style-src 'self' *.g2crowd.com *.g2.com; worker-src 'self' *.g2crowd.com *.g2.com
cf-cache-status: DYNAMIC
set-cookie: _session_id=1acf58a2981f07de96c1c03329a3ddff; path=/; expires=Wed, 21 Dec 2022 07:35:40 GMT; HttpOnly; secure; SameSite=None __cf_bm=hb_vYWMIUFvO4WYXG5qHOs.w8v9wyHxx3zDdAMCOFvk-1670398540-0-ATFlFs5WmjviT9Q9I++CWlQL8pAxMmDdd9nFahhn9iFnLQGlUbyYxPyDAajpolUOaiUL+b4TgTQLZOq+uIoHjMI=; path=/; expires=Wed, 07-Dec-22 08:05:40 GMT; domain=.g2crowd.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 775b95fefe2ffac0-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   20
Md5:    5b920c7eefbc73bd9199e5c12ff35531
Sha1:   7ad858a5251bad62a254a19b0983676c8ca50898
Sha256: d879481b68705d682b81dd34850bae06ffc7fbf464b16da9a9ef54ecf2e421b3
                                        
                                            POST /cookie-banner-public/v1/activity/view HTTP/1.1 
Host: js.hs-banner.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: application/json
Content-Length: 133
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.33.171
HTTP/2 204 No Content
                                        
date: Wed, 07 Dec 2022 07:35:41 GMT
x-trace: 2BB4559A03440AE2CF92759A09A3FCF6793CE30FE3000000000000000000
x-hubspot-correlation-id: 90c97aa6-32c2-404e-b263-77caef8ae487
access-control-allow-origin: https://www.rev.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 775b96037ef3b4f4-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /bat.js HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: private,max-age=1800
content-length: 11460
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=3E3E99BC4A826C0C2CA28BCF4BD56DAD; domain=.bing.com; expires=Mon, 01-Jan-2024 07:35:41 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8FC9F34899734DCBBAA801BEFA7B5714 Ref B: OSL30EDGE0421 Ref C: 2022-12-07T07:35:41Z
date: Wed, 07 Dec 2022 07:35:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Size:   11460
Md5:    d925a898de26295fdebfc90203ef46fa
Sha1:   77dd3f5893b76530e08058d50e8f9aef017e80c7
Sha256: 8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
                                        
                                            GET /li.lms-analytics/insight.min.js HTTP/1.1 
Host: snap.licdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.36.76.121
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
                                        
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=32643
date: Wed, 07 Dec 2022 07:35:41 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12961)
Size:   4581
Md5:    c1a25b303b61b25e995516f5559bcdea
Sha1:   3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
Sha256: 2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5175
Cache-Control: max-age=146006
Date: Wed, 07 Dec 2022 07:35:41 GMT
Etag: "638fc56c-2d7"
Expires: Fri, 09 Dec 2022 00:09:07 GMT
Last-Modified: Tue, 06 Dec 2022 22:42:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 727

                                        
                                            POST /s/gts1d4/raRVPOI4L3s HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:41 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4078
Cache-Control: max-age=109291
Date: Wed, 07 Dec 2022 07:35:41 GMT
Etag: "638f3a4a-1d7"
Expires: Thu, 08 Dec 2022 13:57:12 GMT
Last-Modified: Tue, 06 Dec 2022 12:49:14 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /21451281.js HTTP/1.1 
Host: js.hs-scripts.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.213.204
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
date: Wed, 07 Dec 2022 07:35:40 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.rev.com
access-control-max-age: 3600
cache-control: public, max-age=60
cf-bgj: minify
cf-polished: origSize=968
vary: origin, Accept-Encoding
x-hubspot-correlation-id: b6229d48-4ed8-41ef-9e24-776b78668f86
x-trace: 2B1D6D3EEDCF43EEBE08A610B28EBD6584255BAA8E000000000000000000
last-modified: Wed, 07 Dec 2022 07:35:34 GMT
cf-cache-status: HIT
expires: Wed, 07 Dec 2022 07:36:40 GMT
server: cloudflare
cf-ray: 775b95fefe54b527-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (861), with no line terminators
Size:   20412
Md5:    61a39a3badadcd284703dcfb5bcd6c5f
Sha1:   7ae017e6c5431d424be4cc006ddb1eb07f14d1d1
Sha256: 2de5441d1799030f955a31b54d208c35d6db234228d252d5e08b406d8c40aaff
                                        
                                            GET /uwt.js HTTP/1.1 
Host: static.ads-twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.244.157
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Wed, 07 Dec 2022 07:35:41 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57596), with no line terminators
Size:   15375
Md5:    573e6a7f86f6f3063763360ef0672c01
Sha1:   b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
Sha256: 02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
                                        
                                            GET /libs/mixpanel-2-latest.min.js HTTP/1.1 
Host: cdn.mxpnl.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         35.186.235.23
HTTP/2 200 OK
content-type: text/javascript
                                        
x-guploader-uploadid: ADPycduUsOSZFVqauSRZDROUS3drrvAFE6onwgonaXPOXvWkU5YMjOPiLA8ywRzZ1PskrCAlRrA25eHe5kKBPTUaQau6
x-goog-generation: 1645129310876382
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17435
content-encoding: gzip
x-goog-hash: crc32c=PPVzJA==, md5=yqdiCH6ddc7MNLXWYmy3uQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 17435
access-control-allow-origin: *
server: UploadServer
date: Wed, 07 Dec 2022 07:32:40 GMT
expires: Wed, 07 Dec 2022 07:42:40 GMT
cache-control: public,max-age=600
age: 181
last-modified: Thu, 17 Feb 2022 20:21:50 GMT
etag: "caa762087e9d75cecc34b5d6626cb7b9"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (755)
Size:   17435
Md5:    caa762087e9d75cecc34b5d6626cb7b9
Sha1:   fcc68d485c2f42e0f880260c3e104cedf50d0d11
Sha256: dc0ec55efae4c1f0ff095cf05133cc835e1cc4ff7906d3b7a2d0d86789bfe145
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5949
Cache-Control: max-age=147164
Date: Wed, 07 Dec 2022 07:35:41 GMT
Etag: "638fc6ec-118"
Expires: Fri, 09 Dec 2022 00:28:25 GMT
Last-Modified: Tue, 06 Dec 2022 22:49:16 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: XuA9sk/83PYbt6x20aoIGvvVdvUO1TT5s3T9Nrq12mKngEhhIWvMybDZ4R12YdefHq3kQrsMTDUSh1+/zAZrHQ==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Wed, 07 Dec 2022 07:35:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   27340
Md5:    44ecaa3c2a4929a40141edc4540aaf84
Sha1:   f29a573182333b2500d41bfc389d6c5232dfb348
Sha256: 6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
                                        
                                            GET /gtm/optimize.js?id=GTM-5HQQJK2 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.110
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Dec 2022 07:35:41 GMT
expires: Wed, 07 Dec 2022 07:35:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 49266
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12992)
Size:   49266
Md5:    64a89a33be9a731b7f2a4b3614091dc0
Sha1:   5f73a51d137b5218d94a6f915149dd0dedb05276
Sha256: 323ea0e121bcbb76d4b57f5e968dbfe89ad07171eadfe8c56a80b3956ebd0dba
                                        
                                            GET /s/fs.js HTTP/1.1 
Host: edge.fullstory.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.201.112.186
HTTP/2 200 OK
content-type: application/javascript
                                        
x-guploader-uploadid: ADPycdvCcMtqKLkLCPlocvahhbBGbl0SQwspYbutJ5jPz2HG6nAXMBtVHg_uJyiFzVNyspKEAYL4W39o-zE-lYHTJwkka-FbZHVT
x-goog-generation: 1667940125290071
x-goog-metageneration: 1
x-goog-stored-content-encoding: br
x-goog-stored-content-length: 65803
content-encoding: br
x-goog-hash: crc32c=LkMtdQ==, md5=s8yJrhEHLJ7ntEP6piPg6Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 65803
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Wed, 07 Dec 2022 06:55:57 GMT
expires: Wed, 07 Dec 2022 07:55:57 GMT
cache-control: public, max-age=3600,no-transform
age: 2384
last-modified: Tue, 08 Nov 2022 20:42:05 GMT
etag: "b3cc89ae11072c9ee7b443faa623e0e9"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65410)
Size:   65803
Md5:    b3cc89ae11072c9ee7b443faa623e0e9
Sha1:   00a8279e679a5fb97dfc16860a1572094ff33f3b
Sha256: 0ac7e1b0178f6929b5aeb30c820f83a0101c6258415b280044955bad3974148c
                                        
                                            GET /pagead/viewthroughconversion/1007079899/?random=1670398540349&cv=11&fst=1670398540349&bg=ffffff&guid=ON&async=1&gtm=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%2526loadFrom%253DPastedDeeplink%26viewType%3DExpiredToken&tiba=Sign%20In%20-%20Rev&auid=1361380646.1670398540&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.98
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 07:35:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1060
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 07-Dec-2022 07:50:41 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2357), with no line terminators
Size:   1060
Md5:    6661aa25b9fce118447a8392f9166ad8
Sha1:   aa7e7f104a415dd8d896fd5a84fe221146de7de1
Sha256: f3a25f463a217ea14b9a8647506cf7e8c156658f9dcd110f4e5ee7fac19ac618
                                        
                                            GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1 
Host: vars.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         143.204.55.118
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: B3ZSyarPQC0k7P8NChYxt0E2rhitIca6oWDrmkiBgDmX-VNdjc_L_A==
age: 1189535
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Size:   1035
Md5:    e0652b84b7b3b650769c759fc520c3f8
Sha1:   0b55d6e28613350c7f41b88f19e726e6751ad03b
Sha256: 94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4078
Cache-Control: max-age=109291
Date: Wed, 07 Dec 2022 07:35:41 GMT
Etag: "638f3a4a-1d7"
Expires: Thu, 08 Dec 2022 13:57:12 GMT
Last-Modified: Tue, 06 Dec 2022 12:49:14 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /s/gts1d4/raRVPOI4L3s HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:41 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 842
Cache-Control: max-age=141672
Date: Wed, 07 Dec 2022 07:35:41 GMT
Etag: "638fc56c-2d7"
Expires: Thu, 08 Dec 2022 22:56:53 GMT
Last-Modified: Tue, 06 Dec 2022 22:42:52 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 727

                                        
                                            GET /rp.gif?ts=1670398540389&id=t2_3w91srwk&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=1810a8c0-b114-44dd-9bae-48ed86301fd5&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1 
Host: alb.reddit.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.65.140
HTTP/2 200 OK
content-type: image/gif
                                        
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Wed, 07 Dec 2022 07:35:41 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /modules.d53d96d4fefc0e537bd8.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.46
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 68700
date: Mon, 05 Dec 2022 14:58:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "6f3e85a9867f8c1e87f393ee1344782f"
last-modified: Mon, 05 Dec 2022 14:57:50 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XW8WVJs9kLsrvVDT6E-7hWTi-nLX_dFOMBjT9nLjoAtbyYTa36tilQ==
age: 146255
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (48714)
Size:   68700
Md5:    6f3e85a9867f8c1e87f393ee1344782f
Sha1:   9a3e0b1e33cd0bca903fbdb82e43aa71ec23d165
Sha256: 80cf78eadecdac25834fa2be80c9a96f5eba43069c0295d800ec8d14123f7fba
                                        
                                            OPTIONS /partner/56622/domain/rev.com/token HTTP/1.1 
Host: cdn.linkedin.oribi.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.42
HTTP/2 200 OK
                                        
content-length: 0
date: Wed, 07 Dec 2022 03:21:55 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Gm_TI7J9Cxkhh95g0LCgWj2TTyJo46IHFFVVnijmgjGtwhBXnyQOpQ==
age: 15226
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /p/action/4078409.js HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         204.79.197.200
HTTP/2 204 No Content
                                        
cache-control: private,max-age=1800
set-cookie: MUID=02536BC9024060171FEA79BA031761E1; domain=.bing.com; expires=Mon, 01-Jan-2024 07:35:41 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2DA206508EBE436FA1C1547A6EC8E0F8 Ref B: OSL30EDGE0421 Ref C: 2022-12-07T07:35:41Z
date: Wed, 07 Dec 2022 07:35:41 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /collect?v=2&fmt=js&pid=56622&time=1670398541244&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%2526loadFrom%253DPastedDeeplink%26viewType%3DExpiredToken HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         13.107.42.14
HTTP/2 302 Found
                                        
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D56622%26time%3D1670398541244%26url%3Dhttps%253A%252F%252Fwww.rev.com%252Faccount%252Fauth%252Flogin%253FreturnUrl%253Dhttps%25253A%25252F%25252Fwww.rev.com%25252Ftranscript-editor%25252FEdit%25253Ftoken%25253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%252526loadFrom%25253DPastedDeeplink%2526viewType%253DExpiredToken%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQIqzHYKN3ENwgAAAYTrgv_MvrrQCpDiMv45aoNol6bxegBgJBV_WE_XF7GVeltyhyyYqZOFa5qSGg; Max-Age=2592000; Expires=Fri, 06 Jan 2023 07:35:41 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure AnalyticsSyncHistory=AQIw3QcITDuB0gAAAYTrgv_MPogORkJ2hrta2vqIMEYyUFBYkutvgqEvS6dC3nvzC-SLbHzTn8mXQA5dSJnRtw; Max-Age=2592000; Expires=Fri, 06 Jan 2023 07:35:41 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&48d70d7c-f90d-4b95-8654-5f6e9f06711a"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 07-Dec-2023 07:35:41 GMT; SameSite=None lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2448:u=1:x=1:i=1670398541:t=1670484941:v=2:sig=AQE24StWpw8GqOQLS6hoWinKWHTg4916"; Expires=Thu, 08 Dec 2022 07:35:41 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXvN/e3E35N3N/zHWKiRA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 16752F3AB2BB412E9F13AAB835EC799A Ref B: OSL30EDGE0516 Ref C: 2022-12-07T07:35:41Z
date: Wed, 07 Dec 2022 07:35:40 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /Content/img/rev/favicons/apple-touch-icon.png?v=RymW3lzQY9 HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%26loadFrom%3DPastedDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=H3iDYQMZoLy4CHqt75bKoEYuH9BtgZla+LvW3Vu+DBF7zqZuh4P0/eTJnbmF/S1J4VingaZZJli5oFsW5f0U+R8TVxVs5MwAVaNsKZDUS8dfkCTGNOTz8ba2Umur; AWSALBCORS=H3iDYQMZoLy4CHqt75bKoEYuH9BtgZla+LvW3Vu+DBF7zqZuh4P0/eTJnbmF/S1J4VingaZZJli5oFsW5f0U+R8TVxVs5MwAVaNsKZDUS8dfkCTGNOTz8ba2Umur; __RequestVerificationToken=BI-3c0V7dqUZhFNNsw3mlPWkBGAL5QS3zNI-mKoJW3vy7K-Ref8DMAb0pU4K3CI3iVPjTEMmsPakuCRTu5tWfDZID441; ft_tz=0; _gcl_au=1.1.1361380646.1670398540; _rdt_uuid=1670398540388.1810a8c0-b114-44dd-9bae-48ed86301fd5; _ga_6P9JYJWB5F=GS1.1.1670398540.1.0.1670398540.0.0.0; _ga=GA1.1.469578751.1670398540; IR_gbd=rev.com; IR_16349=1670398540538%7C0%7C1670398540538%7C%7C; cjConsent=MHxZfDB8Tnww
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         54.230.111.29
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 3553
date: Wed, 07 Dec 2022 07:35:41 GMT
set-cookie: AWSALB=6P+Zbrmn4Wz5Kz6vO3exfno4qtADZFXhaezNlVl+kZjf1kQnwO8D+8SsZBfIctY8iej93u0DRa5muCeagIvY9bUCwnSy/b5SZqjs0Y3pBGw8qsssEsQ5HoftFd8M; Expires=Wed, 14 Dec 2022 07:35:41 GMT; Path=/ AWSALBCORS=6P+Zbrmn4Wz5Kz6vO3exfno4qtADZFXhaezNlVl+kZjf1kQnwO8D+8SsZBfIctY8iej93u0DRa5muCeagIvY9bUCwnSy/b5SZqjs0Y3pBGw8qsssEsQ5HoftFd8M; Expires=Wed, 14 Dec 2022 07:35:41 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Mon, 05 Dec 2022 21:23:06 GMT
accept-ranges: bytes
etag: "1d908efc3d714e1"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E8MZhOtylXCNg0RTwuTYrfYOnUbOF06P2cpW3pSExlLZMLSyKAylKQ==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 180 x 180, 8-bit grayscale, non-interlaced\012- data
Size:   3553
Md5:    9d8e5b045b992041f44106b7f20ac51d
Sha1:   dc5635c2f00e3956c8cd4edddd71a1c9cf593037
Sha256: 21b18b9d67d4a16674df0a00c683a923f68905310e50852c22b1543557e04a84
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6345
Cache-Control: max-age=108289
Date: Wed, 07 Dec 2022 07:35:41 GMT
Etag: "638f2d85-138"
Expires: Thu, 08 Dec 2022 13:40:30 GMT
Last-Modified: Tue, 06 Dec 2022 11:54:45 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 312

                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         192.124.249.23
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Wed, 07 Dec 2022 07:35:41 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 06 Dec 2022 20:22:19 GMT
Expires: Wed, 07 Dec 2022 20:22:19 GMT
ETag: "391aae451d93d08996c1237c59c993d9e0882f7a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    7060883c19d89e05aa8daa071bae5b7b
Sha1:   391aae451d93d08996c1237c59c993d9e0882f7a
Sha256: 98c8033d6fc10a6ee8d99bff80e580035b1e6cfa3fdbe3091bd627f8c475a077
                                        
                                            GET /Content/img/rev/favicons/favicon-16x16.png?v=RymW3lzQY9 HTTP/1.1 
Host: www.rev.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/account/auth/login?returnUrl=https%3A%2F%2Fwww.rev.com%2Ftranscript-editor%2FEdit%3Ftoken%3DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%26loadFrom%3DPastedDeeplink&viewType=ExpiredToken
Connection: keep-alive
Cookie: AWSALB=H3iDYQMZoLy4CHqt75bKoEYuH9BtgZla+LvW3Vu+DBF7zqZuh4P0/eTJnbmF/S1J4VingaZZJli5oFsW5f0U+R8TVxVs5MwAVaNsKZDUS8dfkCTGNOTz8ba2Umur; AWSALBCORS=H3iDYQMZoLy4CHqt75bKoEYuH9BtgZla+LvW3Vu+DBF7zqZuh4P0/eTJnbmF/S1J4VingaZZJli5oFsW5f0U+R8TVxVs5MwAVaNsKZDUS8dfkCTGNOTz8ba2Umur; __RequestVerificationToken=BI-3c0V7dqUZhFNNsw3mlPWkBGAL5QS3zNI-mKoJW3vy7K-Ref8DMAb0pU4K3CI3iVPjTEMmsPakuCRTu5tWfDZID441; ft_tz=0; _gcl_au=1.1.1361380646.1670398540; _rdt_uuid=1670398540388.1810a8c0-b114-44dd-9bae-48ed86301fd5; _ga_6P9JYJWB5F=GS1.1.1670398540.1.0.1670398540.0.0.0; _ga=GA1.1.469578751.1670398540; IR_gbd=rev.com; IR_16349=1670398540538%7C0%7C1670398540538%7C%7C; cjConsent=MHxZfDB8Tnww
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         54.230.111.29
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 755
date: Wed, 07 Dec 2022 07:35:41 GMT
set-cookie: AWSALB=42ikqcRMIVI1nzWAbxg35o/+doMoCh+XqYbO08IBJn2tia6eD5RvNCHVLcCykAA4NNOAj853PWWye68hIn9T8jtH5xzfk6qEbUN3nNQ9IJ8FBihO8Y6r9ICpkyDE; Expires=Wed, 14 Dec 2022 07:35:41 GMT; Path=/ AWSALBCORS=42ikqcRMIVI1nzWAbxg35o/+doMoCh+XqYbO08IBJn2tia6eD5RvNCHVLcCykAA4NNOAj853PWWye68hIn9T8jtH5xzfk6qEbUN3nNQ9IJ8FBihO8Y6r9ICpkyDE; Expires=Wed, 14 Dec 2022 07:35:41 GMT; Path=/; SameSite=None; Secure
cache-control: public, max-age=86400
last-modified: Mon, 05 Dec 2022 21:23:06 GMT
accept-ranges: bytes
etag: "1d908efc3d71bf3"
server: Kestrel
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7JUERsxUoz_Nase6_WUpXJNXdoLsRQAIdrSVFkoqagCHoVPyg1e4wA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced\012- data
Size:   755
Md5:    77c410041b33524816376d276b1f1015
Sha1:   35aba8406bfc07044581909c29977d8dd0a546bf
Sha256: f97d4d141e2363115a9d80c86df09125b71a6c5cee54204c9ab3ae037ceca7e8
                                        
                                            GET /partner/56622/domain/rev.com/token HTTP/1.1 
Host: cdn.linkedin.oribi.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: application/json
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         54.230.111.42
HTTP/2 200 OK
content-type: application/json
                                        
date: Wed, 07 Dec 2022 06:41:45 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SWx-Tz2v_UdYs0cswxTky8XJGnSi1exxRiimaOwqyMljckLrG95_AQ==
age: 3235
X-Firefox-Spdy: h2

                                        
                                            GET /action/0?ti=4078409&Ver=2&mid=33658bc9-eb19-4cc1-a59b-4a8a27b0013d&sid=c0871870760111ed89c1cd5cae77d99c&vid=c0870070760111ed81defb4cad9af12f&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Sign%20In%20-%20Rev&p=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%2526loadFrom%253DPastedDeeplink%26viewType%3DExpiredToken&r=&lt=2695&evt=pageLoad&sv=1&rn=26059 HTTP/1.1 
Host: bat.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         204.79.197.200
HTTP/2 204 No Content
                                        
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1F5F01F5416F684719CA13864038690B; domain=.bing.com; expires=Mon, 01-Jan-2024 07:35:42 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: EBD9E5670CE045C19172183CC6E60D8B Ref B: OSL30EDGE0421 Ref C: 2022-12-07T07:35:42Z
date: Wed, 07 Dec 2022 07:35:41 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9C02F834B87953589E181FA39ED1A66F9D184D83F469AE959AE0BA0DBE267189"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18864
Expires: Wed, 07 Dec 2022 12:50:06 GMT
Date: Wed, 07 Dec 2022 07:35:42 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6334
Cache-Control: 'max-age=158059'
Date: Wed, 07 Dec 2022 07:35:42 GMT
Last-Modified: Wed, 07 Dec 2022 05:50:08 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 312

                                        
                                            GET /pagead/1p-user-list/1007079899/?random=1670398540349&cv=11&fst=1670396400000&bg=ffffff&guid=ON&async=1&gtm=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%2526loadFrom%253DPastedDeeplink%26viewType%3DExpiredToken&tiba=Sign%20In%20-%20Rev&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4042254983&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 07:35:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-18309154-6&cid=469578751.1670398540&jid=871329278&gjid=435944123&_gid=1189583696.1670398541&_u=YADAAEAAQAAAACAAI~&z=1711333640 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         64.233.164.155
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.rev.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 07 Dec 2022 07:35:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            GET /pagead/1p-user-list/1007079899/?random=1670398540349&cv=11&fst=1670396400000&bg=ffffff&guid=ON&async=1&gtm=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%2526loadFrom%253DPastedDeeplink%26viewType%3DExpiredToken&tiba=Sign%20In%20-%20Rev&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4042254983&rmt_tld=0&ipr=y HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 07:35:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /sessions/1164326?s=0.25&r=0.05783686083302242 HTTP/1.1 
Host: vc.hotjar.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         54.230.111.91
HTTP/2 204 No Content
                                        
access-control-allow-origin: *
cache-control: no-store
date: Wed, 07 Dec 2022 07:35:42 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Th2OTwob8Y_UeVeAwUi5tf7F-K_FFRJnhkMY_4wltLfzWbGQErKzMg==
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D56622%26time%3D1670398541244%26url%3Dhttps%253A%252F%252Fwww.rev.com%252Faccount%252Fauth%252Flogin%253FreturnUrl%253Dhttps%25253A%25252F%25252Fwww.rev.com%25252Ftranscript-editor%25252FEdit%25253Ftoken%25253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%252526loadFrom%25253DPastedDeeplink%2526viewType%253DExpiredToken%26liSync%3Dtrue HTTP/1.1 
Host: www.linkedin.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         13.107.42.14
HTTP/2 302 Found
                                        
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=56622&time=1670398541244&url=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%2526loadFrom%253DPastedDeeplink%26viewType%3DExpiredToken&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None bcookie="v=2&59ed4083-b0ff-4fa5-884d-2f1e72557a54"; Domain=.linkedin.com; Expires=Thu, 07-Dec-2023 07:35:42 GMT; Path=/; Secure; SameSite=None bscookie="v=1&202212070735420cc8f05a-fc46-4ada-8abe-c1a6b44d1457AQFdERut0-AATSp97DvyMUSPKcnjr1mW"; Domain=.www.linkedin.com; Expires=Thu, 07-Dec-2023 07:35:42 GMT; Path=/; HttpOnly; Secure; SameSite=None li_gc=MTswOzE2NzAzOTg1NDI7MjswMjH1Gsww08fBRm6+vPamoqwrTgrZ5z+E73qeogmRftMtLA==; Domain=.linkedin.com; Expires=Mon, 05 Jun 2023 07:35:42 GMT; Path=/; Secure; SameSite=None lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2430:u=1:x=1:i=1670398542:t=1670484942:v=2:sig=AQGq9l3YaMEjv7b9mNIG5NiZZP1gMsiC"; Expires=Thu, 08 Dec 2022 07:35:42 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com onyx.www.linkedin.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXvN/e8sz4aSyppPJ3p2g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 1D50E585397F448BBCF45B78AE313EA4 Ref B: OSL30EDGE0516 Ref C: 2022-12-07T07:35:42Z
date: Wed, 07 Dec 2022 07:35:41 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            HEAD / HTTP/1.1 
Host: www.adblockanalytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         72.167.42.140
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 07 Dec 2022 07:35:42 GMT
Connection: keep-alive
Cache-Control: max-age=0, no-cache
Content-Language: en-US
X-Powered-By: PleskLin
Strict-Transport-Security: max-age=15768000; includeSubDomains; preload
Content-Encoding: br

                                        
                                            GET /i/adsct?bci=3&eci=2&event_id=0a448538-d3a6-400f-be11-0c15e2d24c70&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=6ef2ec22-4772-4393-ac06-24afb516be49&tw_document_href=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%2526loadFrom%253DPastedDeeplink%26viewType%3DExpiredToken&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nxh9s&type=javascript&version=2.3.29 HTTP/1.1 
Host: analytics.twitter.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.244.42.131
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
                                        
date: Wed, 07 Dec 2022 07:35:42 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_HFLay0DZxp0iH6Be0IFkew=="; Max-Age=63072000; Expires=Fri, 06 Dec 2024 07:35:42 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: d8af21b194ae3ae9
strict-transport-security: max-age=631138519
x-response-time: 104
x-connection-hash: cf474cea6bfdadfd20cf24f3ab5c2cda0ba211e69ac5abbcff3328e00eb37f55
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=116968
Date: Wed, 07 Dec 2022 07:35:42 GMT
Etag: "638f5edf-1d7"
Expires: Thu, 08 Dec 2022 16:05:10 GMT
Last-Modified: Tue, 06 Dec 2022 15:25:19 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: i8LMCv8docIu9ZemfA_zF6jvOOmWRsDrb_9lWa1FA7wGkkx8ZY5zpg==
Age: 2391


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   86582
Md5:    e74759839f01e5e22dc4d7059ae106ba
Sha1:   643a06ca36e67e63826207d912569ed86454abdb
Sha256: 34a9fc5be43e93b0dc85492e89cc7ae8f50e191e8a56aeea37917cf6ce6bd5b6
                                        
                                            POST /api/v2/client/sites/1164326/visit-data?sv=6 HTTP/1.1 
Host: in.hotjar.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: text/plain; charset=UTF-8
Content-Length: 148
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         63.34.182.251
HTTP/2 200 OK
content-type: application/json
                                        
date: Wed, 07 Dec 2022 07:35:42 GMT
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   137
Md5:    efcd5932a2aebe7eb6a516dd20ed2446
Sha1:   8333b3d99d90c0e406388c2142c677c8946001be
Sha256: 48c91f69d9bd5e1d17bb328c354355eaf8c714f2619fd0327fec0f7ef242746b
                                        
                                            GET /tr/?id=658102074251173&ev=PageView&dl=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%2526loadFrom%253DPastedDeeplink%26viewType%3DExpiredToken&rl=&if=false&ts=1670398541939&sw=1280&sh=1024&v=2.9.89&r=stable&a=seg&ec=0&o=30&fbp=fb.1.1670398541933.1159683229&it=1670398541396&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 07 Dec 2022 07:35:42 GMT
X-Firefox-Spdy: h2

                                        
                                            POST /rec/page HTTP/1.1 
Host: rs.fullstory.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Content-Type: text/plain
Content-Length: 443
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.186.194.58
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://www.rev.com
content-encoding: gzip
date: Wed, 07 Dec 2022 07:35:42 GMT
content-length: 1436
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (4484)
Size:   1436
Md5:    3b43be1bf85d4e77a4283b8e92aec2bd
Sha1:   53b36e5d9db3b8fd7f8d676fc7aa4371fdba9523
Sha256: 67d3ae6d2805dd60ece5f145cb1455084209a276dd987be8e15166653dd478f2
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9C02F834B87953589E181FA39ED1A66F9D184D83F469AE959AE0BA0DBE267189"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18864
Expires: Wed, 07 Dec 2022 12:50:06 GMT
Date: Wed, 07 Dec 2022 07:35:42 GMT
Connection: keep-alive

                                        
                                            GET /spx?dxver=4.0.0&shaid=32131&tdr=&plh=https%3A%2F%2Fwww.rev.com%2Faccount%2Fauth%2Flogin%3FreturnUrl%3Dhttps%253A%252F%252Fwww.rev.com%252Ftranscript-editor%252FEdit%253Ftoken%253DfCxtypxerDWX85cxMlIbXLRUTfIcfbxk8ZiM4FD7p1HvWiNhq2_3szs5TIGak8ubH1shFGWrP1Q327Em2XYIZ6ra_4Q%2526loadFrom%253DPastedDeeplink%26viewType%3DExpiredToken&cb=51327482831153840term=value HTTP/1.1 
Host: dx.steelhousemedia.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         44.241.10.203
HTTP/1.1 200
content-type: application/javascript;charset=utf-8
                                        
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
date: Wed, 07 Dec 2022 07:35:41 GMT
connection: close


--- Additional Info ---
Magic:  ASCII text, with very long lines (15314), with no line terminators
Size:   4153
Md5:    50176b02b608b4445095dbecf95ffef3
Sha1:   2519f36425d7042874c16afd00fa9e65b9ef70e2
Sha256: 84f62a2cb60fa689bb9dd9f55c42121972c1dbc398c7a9acaef283bb15e47242
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Dec 2022 07:35:42 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 23:36:16 GMT
Expires: Sun, 11 Dec 2022 23:36:15 GMT
Etag: "4d1bc4f75c58536c049c96f935cbe10328db6d2a"
Cache-Control: max-age=402632,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775b960aac4f1c12-OSL

                                        
                                            GET /is HTTP/1.1 
Host: 34.215.155.61
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rev.com/
Origin: https://www.rev.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search