Report - dymalogiya.ru/21ab5/ken_wu/a2VuX3d1QGludHVpdC5jb20=

Report Overview

Submitted URL
dymalogiya.ru/21ab5/ken_wu/a2VuX3d1QGludHVpdC5jb20=
IP
91.229.90.159
ASN
#51659 LLC Baxet
Submitted
2024-05-10 21:12:54
Access
public
Website Title
Welcome to myEDD
Final URL
pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
dymalogiya.ru	unknown	2020-06-27	2018-06-29	2024-04-15	505 B	444 B	91.229.90.159
pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev	unknown	unknown	No data	No data	12 kB	764 kB	104.18.3.35
myedd.edd.ca.gov	unknown	unknown	2023-02-17	2024-03-06	7.7 kB	13 kB	23.36.79.32
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-09	898 B	178 kB	142.250.74.168
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-05-09	458 B	31 kB	172.217.21.170
nylcom.com	unknown	2006-05-12	2016-05-03	2024-03-17	425 B	853 B	67.20.76.77
api.ipify.org	3267	2014-01-05	2014-10-06	2024-05-09	528 B	267 B	104.26.12.205

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-05-10 21:12:32	low	Client IP	104.26.12.205	ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI
2024-05-10 21:12:32	low	Client IP	104.26.12.205	ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com	4.2 kB	2023-12-19	2024-05-28
Pretty URL pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-19 20:22:10 Last Seen2024-05-28 17:21:50 Times Seen59 Hash 951ed524a19180b80b6a2860050a0ae9 463041e63bbfea4e71478739ea4b37235ec7304b c7cf72e73e4cd83c88a131582529de402b14823fe81573141e18a588288ef0df Loading...

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com	33 B	2023-12-19	2024-05-28
Pretty URL pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-19 20:22:10 Last Seen2024-05-28 17:21:50 Times Seen59 Hash 6d47ec72e5c99c2fb1581b9c29ff6810 99b6ec282d0ae3c6e053fe82b853d2aef0587110 067bebc70cb03b94dc3a95b886927b184e8eb5711ee3f6c56defc7d010ddae0c Loading...

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com	1.1 kB	2023-12-19	2024-05-28
Pretty URL pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-19 20:22:10 Last Seen2024-05-28 17:21:50 Times Seen58 Hash bc3d8d3e701f5c4bed050ce86e8f7eda 3cacd491566e359b09dcbfbcdc342b38920ebf64 7f11074f9de87f122d39d50f9cdc5bceeda73fce6a8ffbb7073a77b4a7bf998f Loading...

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com	1.3 kB	2024-01-18	2024-05-28
Pretty URL pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-18 21:05:34 Last Seen2024-05-28 17:21:50 Times Seen51 Hash 1a40088ee7a81b25f771d1bd32a5de03 a72633f8b5fc9aa2e064e9e2ade7e94d6a61482c 147776a728d29e87fd50e451267da32e99cb1490ae7bdcfff50609b19bc0030b Loading...

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com	1.5 kB	2023-12-19	2024-05-28
Pretty URL pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-19 20:22:10 Last Seen2024-05-28 17:21:50 Times Seen59 Hash b0ea67cd8e549f5905b8ebd2cd8ffd5b 41f174845398b884a59853660af92aa8d32b0794 0996e832249e7ba0369e7d59591dd498f63f4bc1e7dda85ad96bc06e04c8a03d Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js	87 kB	2023-03-07	2024-06-04
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js IP 172.217.21.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-06-04 04:01:28 Times Seen71344 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com	1.1 kB	2024-05-10	2024-05-28
Pretty URL pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 23:12:51 Last Seen2024-05-28 17:21:50 Times Seen41 Hash 6f62e19745b42c4766ecee95cc193f62 66bf5a96e50d5b53dc4231ac638e059f3e6996f8 b1eafd74a8a06f82db1a12a1dc2bc3a354944fc729436c8c8fc5cee9330fae84 Loading...

	www.googletagmanager.com/gtag/js?id=G-FQKRWT9FKB	319 kB	2024-05-10	2024-05-10
Pretty URL www.googletagmanager.com/gtag/js?id=G-FQKRWT9FKB IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 23:13:00 Last Seen2024-05-10 23:13:01 Times Seen2 Hash fc45ae7ca793501e02ab69c762d8c693 119f2bd12ff088c05d032c8e5b3c8bdda26943ec 82bf4fa22f2a373e2030d3cf17e25a028d05bb032bae88cdf50283439407608e Loading...

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com	275 B	2023-06-27	2024-05-29
Pretty URL pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-27 01:57:54 Last Seen2024-05-29 07:51:07 Times Seen266 Hash 98a8f2201b5feabeb5caf723f5ae72c2 6c81e00b09dbbc300f474e4627ac925bf6f3061b cffcc7ddbd5d1de29d855ed9b15e3cdde678a3c7c9338524b133c92552d87c88 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-NHCC9Q8	204 kB	2024-05-10	2024-05-10
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-NHCC9Q8 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-10 23:13:00 Last Seen2024-05-10 23:13:01 Times Seen2 Hash b26f79019e17660a6f9ea83755ee6ac5 2b0a184510d7809b0b45efe3eac41c744a13ceff 3c37df66478283bc6e89d70f4c941ffdf323f1cfb611b3ed2d4a05e2ff7d1c95 Loading...

	nylcom.com/en/img/6v.js	858 B	2024-03-01	2024-06-02
Pretty URL nylcom.com/en/img/6v.js IP 67.20.76.77 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-01 14:03:22 Last Seen2024-06-02 02:05:02 Times Seen210 Hash 2fdda3c5c64338d9aebb0d25c9d9619d fd4f79ebf3dd9241da188367f0fbb238031798df 0664397900da4597a6a1b94110da46fe0c8befd85db0c06fb001709ae5b9611d Loading...

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com	173 B	2023-06-27	2024-06-01
Pretty URL pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-27 01:57:54 Last Seen2024-06-01 09:07:43 Times Seen302 Hash c763778cc0e0a6fab9c64d962e95c499 2afbb8244eccff938c8bd3d40dad328e03cfb9dc 5a67f18c97cc731ae5e969ebf1bb5ed95356765374e48dfbb0c732cbbfef0e41 Loading...

HTTP Transactions (36)

	URL	IP	Response	Size
	dymalogiya.ru/21ab5/ken_wu/a2VuX3d1QGludHVpdC5jb20=	91.229.90.159		0 B
URL dymalogiya.ru/21ab5/ken_wu/a2VuX3d1QGludHVpdC5jb20= IP 91.229.90.159:0 ASN #51659 LLC Baxet File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /21ab5/ken_wu/a2VuX3d1QGludHVpdC5jb20= HTTP/1.1 Host: dymalogiya.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK refresh: 0;url=https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com content-type: text/html; charset=UTF-8 content-length: 0 date: Fri, 10 May 2024 21:12:28 GMT server: LiteSpeed vary: User-Agent alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" X-Firefox-Spdy: h2`

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html	104.18.3.35		217 kB
URL pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html IP 104.18.3.35:0 ASN #13335 CLOUDFLARENET File type HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (42155), with CRLF line terminators Size 217 kB (217228 bytes) Hash e512ad041fb1301936e5a305666761ea 0e3258dab50f9947817b3527cc428fe2f3d6342b 6741c27262243660559a624a71967dcc942f10533ab16ddffeb7569257fbda8d HTTP Headers `GET /myed24.html HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 10 May 2024 21:12:29 GMT Content-Type: text/html Content-Length: 217228 Connection: keep-alive Accept-Ranges: bytes ETag: "e512ad041fb1301936e5a305666761ea" Last-Modified: Tue, 30 Apr 2024 13:45:20 GMT Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced7d9f405690-OSL`

	myedd.edd.ca.gov/resource/ca_web_library/css/colorscheme-oceanside.css	23.36.79.32	403 Forbidden	455 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/ca_web_library/css/colorscheme-oceanside.css IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 455 B (455 bytes) Hash f8723efe2b9834612bdc1972f710f4aa 9a2aac8089bdd4188e6a90590faf141a6f3158aa d3ea1e752dc554c494c8f04ed692e26cc0863a5f5d8e7c4e01eea273de3ec17b HTTP Headers `GET /resource/ca_web_library/css/colorscheme-oceanside.css HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 455 expires: Fri, 10 May 2024 21:12:29 GMT date: Fri, 10 May 2024 21:12:29 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375549689_388255516_273630848_23_4523_3_62_21";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	myedd.edd.ca.gov/resource/1690600021000/ca_images/Ca-Gov-Logo-Gold.svg	23.36.79.32	403 Forbidden	459 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/1690600021000/ca_images/Ca-Gov-Logo-Gold.svg IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 459 B (459 bytes) Hash dd3cf0a95c3ac7cb0b938081545549da fa4dcf1597c31a006f115307afdebb414c4b8e63 978ad9f1853c2ff3f71743325bd71561ceaefb34c18ea356d77220d69c8dc5cf HTTP Headers `GET /resource/1690600021000/ca_images/Ca-Gov-Logo-Gold.svg HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 459 expires: Fri, 10 May 2024 21:12:29 GMT date: Fri, 10 May 2024 21:12:29 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375549787_388255516_273630885_16_2325_3_0_11";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	myedd.edd.ca.gov/resource/1690600021000/ca_images/EDDNextLogo.svg	23.36.79.32	403 Forbidden	442 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/1690600021000/ca_images/EDDNextLogo.svg IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 442 B (442 bytes) Hash b67d5a82521c2344b847da106ee8aee6 0394d80d1c61c4c27f344ee0f57a3eb66fad8956 22ca7def60f4c0d1935589f7bc11ecc18275ae04db620158072f43b9dea7473f HTTP Headers `GET /resource/1690600021000/ca_images/EDDNextLogo.svg HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 442 expires: Fri, 10 May 2024 21:12:29 GMT date: Fri, 10 May 2024 21:12:29 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375549787_388255516_273630886_19_2163_3_0_11";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	myedd.edd.ca.gov/akam/13/62c46946	23.36.79.32	404 Not Found	9 B
URL GET HTTP/2 myedd.edd.ca.gov/akam/13/62c46946 IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type ASCII text, with no line terminators Size 9 B (9 bytes) Hash 9d1ead73e678fa2f51a70a933b0bf017 d205cbd6783332a212c5ae92d73c77178c2d2f28 0019dfc4b32d63c1392aa264aed2253c1e0c2fb09216f8e2cc269bbfb8bb49b5 HTTP Headers `GET /akam/13/62c46946 HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 404 Not Found content-type: text/html content-length: 9 expires: Fri, 10 May 2024 21:12:29 GMT cache-control: max-age=0, no-cache, no-store pragma: no-cache date: Fri, 10 May 2024 21:12:29 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375549787_388255516_273630884_12_3660_3_0_21";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains set-cookie: ak_bmsc=5BC517520F743431047F1B1725E33D7D~000000000000000000000000000000~YAAQHE8kF6+a1l6PAQAAXq1ZZBcyIFbuVnNHEc6O3pnUxYXRFRPeyge8f632YG1NXB1QiAf/YURvN8KRJNx5/FcLcQ0bXWoghc4JBZJfucgFkZnTrLUPK1Qrx+AVbYoG7gaHKA1KnFH7gKojiN8OUPhWKfPnHk38kDLLo/POrWhclNLm3yOdiKUQYpR7vg5nhBg4fLZ94tmLX9EHV2Of7xNMy+GKPcIrovMBr8rsg8yUeXLfaQ6qq5A54ZFBifv3zm0pZB7TJflWN6VtZ4GP0hTO75H8FPmb/S1ylA6emns4h1rbTAIXLhKqWhfsL4ZHGI5S0KbG6s9GiW5gkZA1VqwDgQGQuoqx4isZPNDjAuiFcZ4fLAD2yVqpRRDxKc/YUcCa3Uc/v4k+; Domain=.edd.ca.gov; Path=/; Expires=Fri, 10 May 2024 23:12:29 GMT; Max-Age=7200; Secure; HttpOnly X-Firefox-Spdy: h2

	myedd.edd.ca.gov/resource/1690600021000/ca_images/login-left-img.svg	23.36.79.32	403 Forbidden	453 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/1690600021000/ca_images/login-left-img.svg IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 453 B (453 bytes) Hash b9d880d70a071a1d2c0937929aee8734 bb8bfbed2638daa916b270dd42226e41d67b7c2a d772281752a1df6028d1537be16c48266dc12c6340af2c6e8ccc0536ee447ab7 HTTP Headers `GET /resource/1690600021000/ca_images/login-left-img.svg HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 453 expires: Fri, 10 May 2024 21:12:29 GMT date: Fri, 10 May 2024 21:12:29 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375549795_388255516_273630902_15_2790_3_0_11";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	myedd.edd.ca.gov/resource/ca_web_library/js/cagov.core.js	23.36.79.32	403 Forbidden	442 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/ca_web_library/js/cagov.core.js IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 442 B (442 bytes) Hash e85ecd8bbb2fdaeceddf1cf632c52f7f 2a24d3eb5db79b23916ab0e20d6e51f283711399 4ac340e06d6596a6138543312d7fdfdaa3be84eca1cb9fa273b3cd62a89c1837 HTTP Headers `GET /resource/ca_web_library/js/cagov.core.js HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 442 expires: Fri, 10 May 2024 21:12:29 GMT date: Fri, 10 May 2024 21:12:29 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375549827_388255516_273630981_1893_2549_3_0_21";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	myedd.edd.ca.gov/resource/edd_fonts/source_sans_pro.css	23.36.79.32	403 Forbidden	436 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/edd_fonts/source_sans_pro.css IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 436 B (436 bytes) Hash b3e96eed19547a24740face7cb20d39f 3d4267b4dbeee9f773f18177ba61eb8101eaf422 0f96f0ffdd5d1e8b5b35a937f4395b63ac93902d0dd94f8a04dc67011dc27524 HTTP Headers `GET /resource/edd_fonts/source_sans_pro.css HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 436 expires: Fri, 10 May 2024 21:12:29 GMT date: Fri, 10 May 2024 21:12:29 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375549827_388255516_273630982_959_2519_3_0_21";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	myedd.edd.ca.gov/resource/edd_fonts/public_sans.css	23.36.79.32	403 Forbidden	428 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/edd_fonts/public_sans.css IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 428 B (428 bytes) Hash 515137391e0b5ab7a97d69f615a3fddd 5e4e3a9571baf207830b5bb06e4086b14f523866 fddc353058962dd5ff95c1279df0b5788a9027f6fcbf56f0d76608ea3df0a0cd HTTP Headers `GET /resource/edd_fonts/public_sans.css HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 428 expires: Fri, 10 May 2024 21:12:29 GMT date: Fri, 10 May 2024 21:12:29 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375549827_388255516_273630983_958_2526_3_0_21";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	myedd.edd.ca.gov/resource/edd_fonts/bree_serif.css	23.36.79.32	403 Forbidden	427 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/edd_fonts/bree_serif.css IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 427 B (427 bytes) Hash 26623913c1df0b516957fbcfa462cd0f ab632a0de872cda3b673de87424e25a5507c133a 1d9f4f68b672efec593052697a10ec9cc0d6db83790122a17b47e7556d9d1d69 HTTP Headers `GET /resource/edd_fonts/bree_serif.css HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 427 expires: Fri, 10 May 2024 21:12:29 GMT date: Fri, 10 May 2024 21:12:29 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375549827_388255516_273630984_957_2517_3_0_21";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	myedd.edd.ca.gov/resource/ca_web_library/css/cagov.core.css	23.36.79.32	403 Forbidden	444 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/ca_web_library/css/cagov.core.css IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 444 B (444 bytes) Hash 73b30ed4eecf124b214d0d45eaafe1a9 b03f217b8738367813223a877862b7154517cbda 7e0339c6a8c61085209fbd4fb148df763dc43194db516b881241c2806756ed74 HTTP Headers `GET /resource/ca_web_library/css/cagov.core.css HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 444 expires: Fri, 10 May 2024 21:12:29 GMT date: Fri, 10 May 2024 21:12:29 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375549836_388255516_273631000_144_2543_3_0_21";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22styleContext%22%3A%7B%22c%22%3A%22webkit%22%2C%22x%22%3A%5B%22isDesktop%22%5D%2C%22tokens%22%3A%5B%22markup%3A%2F%2Fforce%3AsldsTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AnapiliAuraTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AneutralTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AserializedTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AcommunityTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AauraDynamicTokens%22%5D%2C%22tuid%22%3A%22P4NoWhat23R2QnZIs6LK1w%22%2C%22cuid%22%3A11956089%7D%2C%22pathPrefix%22%3A%22%22%7D/app.css?2=&aura.attributes=%7B%22ac%22%3A%22%22%2C%22authenticated%22%3A%22false%22%2C%22brandingSetId%22%3A%22d4e5b95b-fd13-45aa-9df3-d04bf80a2fcb%22%2C%22formFactor%22%3A%22LARGE%22%2C%22isHybrid%22%3A%22false%22%2C%22language%22%3A%22en_US%22%2C%22pageId%22%3A%221c657f13-96ab-4091-bade-84dc820d2fa6%22%2C%22publishedChangelistNum%22%3A%2224%22%2C%22schema%22%3A%22Published%22%2C%22themeLayoutType%22%3A%22Inner%22%2C%22uds%22%3A%22false%22%2C%22viewType%22%3A%22Published%22%7D	104.18.3.35	404 Not Found	27 kB
URL GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22styleContext%22%3A%7B%22c%22%3A%22webkit%22%2C%22x%22%3A%5B%22isDesktop%22%5D%2C%22tokens%22%3A%5B%22markup%3A%2F%2Fforce%3AsldsTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AnapiliAuraTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AneutralTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AserializedTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AcommunityTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AauraDynamicTokens%22%5D%2C%22tuid%22%3A%22P4NoWhat23R2QnZIs6LK1w%22%2C%22cuid%22%3A11956089%7D%2C%22pathPrefix%22%3A%22%22%7D/app.css?2=&aura.attributes=%7B%22ac%22%3A%22%22%2C%22authenticated%22%3A%22false%22%2C%22brandingSetId%22%3A%22d4e5b95b-fd13-45aa-9df3-d04bf80a2fcb%22%2C%22formFactor%22%3A%22LARGE%22%2C%22isHybrid%22%3A%22false%22%2C%22language%22%3A%22en_US%22%2C%22pageId%22%3A%221c657f13-96ab-4091-bade-84dc820d2fa6%22%2C%22publishedChangelistNum%22%3A%2224%22%2C%22schema%22%3A%22Published%22%2C%22themeLayoutType%22%3A%22Inner%22%2C%22uds%22%3A%22false%22%2C%22viewType%22%3A%22Published%22%7D IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (611) Size 27 kB (27242 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22styleContext%22%3A%7B%22c%22%3A%22webkit%22%2C%22x%22%3A%5B%22isDesktop%22%5D%2C%22tokens%22%3A%5B%22markup%3A%2F%2Fforce%3AsldsTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AnapiliAuraTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AneutralTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AserializedTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AcommunityTokens%22%2C%22markup%3A%2F%2Fsiteforce%3AauraDynamicTokens%22%5D%2C%22tuid%22%3A%22P4NoWhat23R2QnZIs6LK1w%22%2C%22cuid%22%3A11956089%7D%2C%22pathPrefix%22%3A%22%22%7D/app.css?2=&aura.attributes=%7B%22ac%22%3A%22%22%2C%22authenticated%22%3A%22false%22%2C%22brandingSetId%22%3A%22d4e5b95b-fd13-45aa-9df3-d04bf80a2fcb%22%2C%22formFactor%22%3A%22LARGE%22%2C%22isHybrid%22%3A%22false%22%2C%22language%22%3A%22en_US%22%2C%22pageId%22%3A%221c657f13-96ab-4091-bade-84dc820d2fa6%22%2C%22publishedChangelistNum%22%3A%2224%22%2C%22schema%22%3A%22Published%22%2C%22themeLayoutType%22%3A%22Inner%22%2C%22uds%22%3A%22false%22%2C%22viewType%22%3A%22Published%22%7D HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Fri, 10 May 2024 21:12:30 GMT Content-Type: text/html Content-Length: 27242 Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced819b235690-OSL`

	www.googletagmanager.com/gtag/js?id=G-FQKRWT9FKB	142.250.74.168	200 OK	104 kB
URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-FQKRWT9FKB IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT File type JavaScript source, ASCII text, with very long lines (7711) Size 104 kB (104539 bytes) Hash fc45ae7ca793501e02ab69c762d8c693 119f2bd12ff088c05d032c8e5b3c8bdda26943ec 82bf4fa22f2a373e2030d3cf17e25a028d05bb032bae88cdf50283439407608e HTTP Headers `GET /gtag/js?id=G-FQKRWT9FKB HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Fri, 10 May 2024 21:12:30 GMT expires: Fri, 10 May 2024 21:12:30 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 104539 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtm.js?id=GTM-NHCC9Q8	142.250.74.168	200 OK	72 kB
URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NHCC9Q8 IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT File type JavaScript source, ASCII text, with very long lines (2202) Size 72 kB (72358 bytes) Hash b26f79019e17660a6f9ea83755ee6ac5 2b0a184510d7809b0b45efe3eac41c744a13ceff 3c37df66478283bc6e89d70f4c941ffdf323f1cfb611b3ed2d4a05e2ff7d1c95 HTTP Headers `GET /gtm.js?id=GTM-NHCC9Q8 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Fri, 10 May 2024 21:12:30 GMT expires: Fri, 10 May 2024 21:12:30 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 72358 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/auraFW/javascript/MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA/aura_prod.js	104.18.3.35	404 Not Found	27 kB
URL GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/auraFW/javascript/MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA/aura_prod.js IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (611) Size 27 kB (27242 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /s/sfsites/auraFW/javascript/MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA/aura_prod.js HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Fri, 10 May 2024 21:12:30 GMT Content-Type: text/html Content-Length: 27242 Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced828bdb7129-OSL`

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/runtimedownload/fonts.css?lastMod=1687340359000&brandSet=d4e5b95b-fd13-45aa-9df3-d04bf80a2fcb	104.18.3.35	404 Not Found	27 kB
URL GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/runtimedownload/fonts.css?lastMod=1687340359000&brandSet=d4e5b95b-fd13-45aa-9df3-d04bf80a2fcb IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (611) Size 27 kB (27242 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /s/sfsites/runtimedownload/fonts.css?lastMod=1687340359000&brandSet=d4e5b95b-fd13-45aa-9df3-d04bf80a2fcb HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Fri, 10 May 2024 21:12:30 GMT Content-Type: text/html Content-Length: 27242 Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced825b6eb512-OSL`

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22serializationVersion%22%3A%221-246.15.4-3.0.4-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/app.js?2=	104.18.3.35	404 Not Found	27 kB
URL GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22serializationVersion%22%3A%221-246.15.4-3.0.4-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/app.js?2= IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (611) Size 27 kB (27242 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22serializationVersion%22%3A%221-246.15.4-3.0.4-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/app.js?2= HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Fri, 10 May 2024 21:12:30 GMT Content-Type: text/html Content-Length: 27242 Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced827a0e56ab-OSL`

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22fwuid%22%3A%22MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/resources.js?pv=1700005994000-1938525496&rv=1699590340000	104.18.3.35	404 Not Found	27 kB
URL GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22fwuid%22%3A%22MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/resources.js?pv=1700005994000-1938525496&rv=1699590340000 IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (611) Size 27 kB (27242 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22fwuid%22%3A%22MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/resources.js?pv=1700005994000-1938525496&rv=1699590340000 HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Fri, 10 May 2024 21:12:30 GMT Content-Type: text/html Content-Length: 27242 Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced82781756b9-OSL`

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22fwuid%22%3A%22MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/bootstrap.js?aura.attributes=%7B%22ac%22%3A%22%22%2C%22authenticated%22%3A%22false%22%2C%22brandingSetId%22%3A%22d4e5b95b-fd13-45aa-9df3-d04bf80a2fcb%22%2C%22formFactor%22%3A%22LARGE%22%2C%22isHybrid%22%3A%22false%22%2C%22language%22%3A%22en_US%22%2C%22pageId%22%3A%221c657f13-96ab-4091-bade-84dc820d2fa6%22%2C%22publishedChangelistNum%22%3A%2224%22%2C%22schema%22%3A%22Published%22%2C%22themeLayoutType%22%3A%22Inner%22%2C%22uds%22%3A%22false%22%2C%22viewType%22%3A%22Published%22%7D	104.18.3.35	404 Not Found	27 kB
URL GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22fwuid%22%3A%22MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/bootstrap.js?aura.attributes=%7B%22ac%22%3A%22%22%2C%22authenticated%22%3A%22false%22%2C%22brandingSetId%22%3A%22d4e5b95b-fd13-45aa-9df3-d04bf80a2fcb%22%2C%22formFactor%22%3A%22LARGE%22%2C%22isHybrid%22%3A%22false%22%2C%22language%22%3A%22en_US%22%2C%22pageId%22%3A%221c657f13-96ab-4091-bade-84dc820d2fa6%22%2C%22publishedChangelistNum%22%3A%2224%22%2C%22schema%22%3A%22Published%22%2C%22themeLayoutType%22%3A%22Inner%22%2C%22uds%22%3A%22false%22%2C%22viewType%22%3A%22Published%22%7D IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (611) Size 27 kB (27242 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22fwuid%22%3A%22MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/bootstrap.js?aura.attributes=%7B%22ac%22%3A%22%22%2C%22authenticated%22%3A%22false%22%2C%22brandingSetId%22%3A%22d4e5b95b-fd13-45aa-9df3-d04bf80a2fcb%22%2C%22formFactor%22%3A%22LARGE%22%2C%22isHybrid%22%3A%22false%22%2C%22language%22%3A%22en_US%22%2C%22pageId%22%3A%221c657f13-96ab-4091-bade-84dc820d2fa6%22%2C%22publishedChangelistNum%22%3A%2224%22%2C%22schema%22%3A%22Published%22%2C%22themeLayoutType%22%3A%22Inner%22%2C%22uds%22%3A%22false%22%2C%22viewType%22%3A%22Published%22%7D HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Fri, 10 May 2024 21:12:30 GMT Content-Type: text/html Content-Length: 27242 Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced828b46b521-OSL`

	ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js	172.217.21.170	200 OK	30 kB
URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js IP 172.217.21.170:443 ASN #15169 GOOGLE Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT File type JavaScript source, ASCII text, with very long lines (32058) Size 30 kB (30306 bytes) Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de HTTP Headers `GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 30306 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 09 May 2024 19:54:45 GMT expires: Fri, 09 May 2025 19:54:45 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 91065 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/B8COMzwudSlzbGXmHNXIW3vgDEM/uD1tQzV0bti9/DS92/CC4_SnBV/UW0B	104.18.3.35	404 Not Found	27 kB
URL GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/B8COMzwudSlzbGXmHNXIW3vgDEM/uD1tQzV0bti9/DS92/CC4_SnBV/UW0B IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (611) Size 27 kB (27242 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /B8COMzwudSlzbGXmHNXIW3vgDEM/uD1tQzV0bti9/DS92/CC4_SnBV/UW0B HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Fri, 10 May 2024 21:12:30 GMT Content-Type: text/html Content-Length: 27242 Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced83dd525690-OSL`

	myedd.edd.ca.gov/akam/13/62c46946	23.36.79.32	404 Not Found	9 B
URL GET HTTP/2 myedd.edd.ca.gov/akam/13/62c46946 IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type ASCII text, with no line terminators Size 9 B (9 bytes) Hash 9d1ead73e678fa2f51a70a933b0bf017 d205cbd6783332a212c5ae92d73c77178c2d2f28 0019dfc4b32d63c1392aa264aed2253c1e0c2fb09216f8e2cc269bbfb8bb49b5 HTTP Headers `GET /akam/13/62c46946 HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 404 Not Found content-type: text/html content-length: 9 expires: Fri, 10 May 2024 21:12:30 GMT cache-control: max-age=0, no-cache, no-store pragma: no-cache date: Fri, 10 May 2024 21:12:30 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375550458_388255516_273632542_17_4112_2_0_21";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains set-cookie: ak_bmsc=3F92E2E954467CE58305FEF5BC69F2EC~000000000000000000000000000000~YAAQHE8kF8Sa1l6PAQAA/69ZZBfYFbSZ8g25H5tRos6pV+hwHqzfzT7mn4b+SqymvpR2tJDU0LZastFMGDRCz4fvc+RGMWoMw+97JxqP/ts98bJoMzEc2OjTrlI1kLcYS+Zszs32JZPdadpjUem2bjHVmSMxYDs/TFDhPioxrv2oaSC569Hcrl/7J9E62zmkPu09/qaEyXwvTvvdH6iNm719LaVkaYpCqnV7xH7KsFa7zy6Ba6skKnUcjCBv1DSinxnLtdIR6zMZzSkOYwqh/upFUxOJDtr42himAcC4vEbgt1JyVu0hNfneAPvKhRmSssMn7WGfZEBiArdgb7F68SOTZTrVhHQlcZb+iU1Kq4b9lMoxGfoREnIRtXrO8GnLJ7LSSlFQIf4s; Domain=.edd.ca.gov; Path=/; Expires=Fri, 10 May 2024 23:12:30 GMT; Max-Age=7200; Secure; HttpOnly X-Firefox-Spdy: h2

	nylcom.com/en/img/6v.js	67.20.76.77	200 OK	467 B
URL GET HTTP/2 nylcom.com/en/img/6v.js IP 67.20.76.77:443 ASN #46606 UNIFIEDLAYER-AS-1 Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subjectwww.apcmaterials.com FingerprintB3:9F:23:93:22:AB:BB:5C:B2:95:2F:CC:9B:B3:E2:69:CC:4C:7F:52 ValiditySat, 16 Mar 2024 14:11:05 GMT - Fri, 14 Jun 2024 14:11:04 GMT File type JavaScript source, ASCII text, with very long lines (839) Size 467 B (467 bytes) Hash 2fdda3c5c64338d9aebb0d25c9d9619d fd4f79ebf3dd9241da188367f0fbb238031798df 0664397900da4597a6a1b94110da46fe0c8befd85db0c06fb001709ae5b9611d HTTP Headers `GET /en/img/6v.js HTTP/1.1 Host: nylcom.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK last-modified: Wed, 28 Feb 2024 15:57:24 GMT accept-ranges: bytes cache-control: max-age=86400 expires: Sat, 11 May 2024 21:12:30 GMT vary: Accept-Encoding content-encoding: gzip x-endurance-cache-level: 2 x-nginx-cache: WordPress content-length: 467 content-type: application/javascript date: Fri, 10 May 2024 21:12:30 GMT server: Apache X-Firefox-Spdy: h2`

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22fwuid%22%3A%22MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/resources.js?pv=1700005994000-1938525496&rv=1699590340000	104.18.3.35	404 Not Found	27 kB
URL GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22fwuid%22%3A%22MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/resources.js?pv=1700005994000-1938525496&rv=1699590340000 IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (611) Size 27 kB (27242 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22fwuid%22%3A%22MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/resources.js?pv=1700005994000-1938525496&rv=1699590340000 HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Fri, 10 May 2024 21:12:30 GMT Content-Type: text/html Content-Length: 27242 Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced866fbb5690-OSL`

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/auraFW/javascript/MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA/aura_prod.js	104.18.3.35	404 Not Found	27 kB
URL GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/auraFW/javascript/MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA/aura_prod.js IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (611) Size 27 kB (27242 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /s/sfsites/auraFW/javascript/MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA/aura_prod.js HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Fri, 10 May 2024 21:12:31 GMT Content-Type: text/html Content-Length: 27242 Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced88a9dc5690-OSL`

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22serializationVersion%22%3A%221-246.15.4-3.0.4-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/app.js?2=	104.18.3.35	404 Not Found	27 kB
URL GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22serializationVersion%22%3A%221-246.15.4-3.0.4-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/app.js?2= IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (611) Size 27 kB (27242 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22serializationVersion%22%3A%221-246.15.4-3.0.4-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/app.js?2= HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Fri, 10 May 2024 21:12:31 GMT Content-Type: text/html Content-Length: 27242 Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced8aec725690-OSL`

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22fwuid%22%3A%22MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/bootstrap.js?aura.attributes=%7B%22ac%22%3A%22%22%2C%22authenticated%22%3A%22false%22%2C%22brandingSetId%22%3A%22d4e5b95b-fd13-45aa-9df3-d04bf80a2fcb%22%2C%22formFactor%22%3A%22LARGE%22%2C%22isHybrid%22%3A%22false%22%2C%22language%22%3A%22en_US%22%2C%22pageId%22%3A%221c657f13-96ab-4091-bade-84dc820d2fa6%22%2C%22publishedChangelistNum%22%3A%2224%22%2C%22schema%22%3A%22Published%22%2C%22themeLayoutType%22%3A%22Inner%22%2C%22uds%22%3A%22false%22%2C%22viewType%22%3A%22Published%22%7D	104.18.3.35	404 Not Found	27 kB
URL GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22fwuid%22%3A%22MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/bootstrap.js?aura.attributes=%7B%22ac%22%3A%22%22%2C%22authenticated%22%3A%22false%22%2C%22brandingSetId%22%3A%22d4e5b95b-fd13-45aa-9df3-d04bf80a2fcb%22%2C%22formFactor%22%3A%22LARGE%22%2C%22isHybrid%22%3A%22false%22%2C%22language%22%3A%22en_US%22%2C%22pageId%22%3A%221c657f13-96ab-4091-bade-84dc820d2fa6%22%2C%22publishedChangelistNum%22%3A%2224%22%2C%22schema%22%3A%22Published%22%2C%22themeLayoutType%22%3A%22Inner%22%2C%22uds%22%3A%22false%22%2C%22viewType%22%3A%22Published%22%7D IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (611) Size 27 kB (27242 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22app%22%3A%22siteforce%3AloginApp2%22%2C%22fwuid%22%3A%22MDM0c01pMVUtd244bVVLc2VRYzQ2UWRkdk8xRWxIam5GeGw0LU1mRHRYQ3cyNDYuMTUuNC0zLjAuNA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AloginApp2%22%3A%22j-CiyvHhLlbrKut6wDBR6g%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDAwMDBlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22-386269907%22%7D/bootstrap.js?aura.attributes=%7B%22ac%22%3A%22%22%2C%22authenticated%22%3A%22false%22%2C%22brandingSetId%22%3A%22d4e5b95b-fd13-45aa-9df3-d04bf80a2fcb%22%2C%22formFactor%22%3A%22LARGE%22%2C%22isHybrid%22%3A%22false%22%2C%22language%22%3A%22en_US%22%2C%22pageId%22%3A%221c657f13-96ab-4091-bade-84dc820d2fa6%22%2C%22publishedChangelistNum%22%3A%2224%22%2C%22schema%22%3A%22Published%22%2C%22themeLayoutType%22%3A%22Inner%22%2C%22uds%22%3A%22false%22%2C%22viewType%22%3A%22Published%22%7D HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Fri, 10 May 2024 21:12:31 GMT Content-Type: text/html Content-Length: 27242 Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced8d3eb85690-OSL`

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/B8COMzwudSlzbGXmHNXIW3vgDEM/uD1tQzV0bti9/DS92/CC4_SnBV/UW0B	104.18.3.35	404 Not Found	27 kB
URL GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/B8COMzwudSlzbGXmHNXIW3vgDEM/uD1tQzV0bti9/DS92/CC4_SnBV/UW0B IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (611) Size 27 kB (27242 bytes) Hash df3d48946e8d3f5a83608308edbb4b86 47b9c40c97abf2658df96b1c06109324e15e1a00 570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499 HTTP Headers GET /B8COMzwudSlzbGXmHNXIW3vgDEM/uD1tQzV0bti9/DS92/CC4_SnBV/UW0B HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 404 Not Found Date: Fri, 10 May 2024 21:12:32 GMT Content-Type: text/html Content-Length: 27242 Connection: keep-alive Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced8fa9835690-OSL`

	myedd.edd.ca.gov/resource/1690600021000/ca_images/Ca-Gov-Logo-Gold.svg	23.36.79.32	403 Forbidden	459 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/1690600021000/ca_images/Ca-Gov-Logo-Gold.svg IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 459 B (459 bytes) Hash 1987a261e95388e75fb750be5d637113 c2575c02f560f26661f0b60520e8a93d78ec3bfc 821621f21d1cbbd794758826d77c015ae444a8b3f73ddddd4913eb79eec14fc9 HTTP Headers `GET /resource/1690600021000/ca_images/Ca-Gov-Logo-Gold.svg HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 459 expires: Fri, 10 May 2024 21:12:32 GMT date: Fri, 10 May 2024 21:12:32 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375552322_388255516_273638394_19_2838_2_0_11";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	myedd.edd.ca.gov/resource/1690600021000/ca_images/login-left-img.svg	23.36.79.32	403 Forbidden	453 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/1690600021000/ca_images/login-left-img.svg IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 453 B (453 bytes) Hash 3ce8b1c7f0630d1027307f5b20de6c6a 92b2e233bd4fe86cdeb75f05122ba16240948fd6 443ae7ce37544bdbe3123d42ae6b2921e9ea2ca8b2375739a4c83c4a57cb4a0f HTTP Headers `GET /resource/1690600021000/ca_images/login-left-img.svg HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 453 expires: Fri, 10 May 2024 21:12:32 GMT date: Fri, 10 May 2024 21:12:32 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375552328_388255516_273638406_19_2852_2_0_11";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	myedd.edd.ca.gov/resource/1690600021000/ca_images/EDDNextLogo.svg	23.36.79.32	403 Forbidden	442 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/1690600021000/ca_images/EDDNextLogo.svg IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 442 B (442 bytes) Hash a8c2153805eed879bf19edaa7f4a8f9d 2ee8c3603d7b701fe1cb8f145146f7fd3a6a5356 a719f0fcdba8d83260393125ba0252f66e44bef75b9abf11972f18588865fb26 HTTP Headers `GET /resource/1690600021000/ca_images/EDDNextLogo.svg HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 442 expires: Fri, 10 May 2024 21:12:32 GMT date: Fri, 10 May 2024 21:12:32 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375552328_388255516_273638405_26_3273_2_0_11";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	myedd.edd.ca.gov/sfsites/c/resource/ca_images/myEDD-BG-2.png	23.36.79.32	403 Forbidden	449 B
URL GET HTTP/2 myedd.edd.ca.gov/sfsites/c/resource/ca_images/myEDD-BG-2.png IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 449 B (449 bytes) Hash 2dbc1aab55164477642e31c4da2133ca 9f70378e8f8f7f61dfcab0b30c47468b089b0458 7dc540e581f092534a0bf2e438eb66339b936b86103a78462c00fd36b0d18a7e HTTP Headers `GET /sfsites/c/resource/ca_images/myEDD-BG-2.png HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 449 expires: Fri, 10 May 2024 21:12:32 GMT date: Fri, 10 May 2024 21:12:32 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375552363_388255516_273638454_19_2541_3_0_12";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	myedd.edd.ca.gov/resource/EDDFavicon	23.36.79.32	403 Forbidden	397 B
URL GET HTTP/2 myedd.edd.ca.gov/resource/EDDFavicon IP 23.36.79.32:443 ASN #20940 Akamai International B.V. Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGlobalSign nv-sa Subject.edd.ca.gov FingerprintE2:C3:91:E7:F1:B9:9D:9D:4E:3D:FA:E2:C1:C1:C0:D2:C1:2E:8D:0F ValidityTue, 26 Sep 2023 23:18:48 GMT - Sun, 27 Oct 2024 23:18:47 GMT File type HTML document, ASCII text Size 397 B (397 bytes) Hash 3f257dd25f169e9e4872ab2dd1b13560 3443c308118029aa41a7c8cb1cac32b4a4c23db7 3c29a031ca594218bb64b703ce896d1bd1a16d5e43df950641be44ee2c3048b9 HTTP Headers `GET /resource/EDDFavicon HTTP/1.1 Host: myedd.edd.ca.gov User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 403 Forbidden mime-version: 1.0 content-type: text/html content-length: 397 expires: Fri, 10 May 2024 21:12:32 GMT cache-control: max-age=0, no-cache, no-store pragma: no-cache date: Fri, 10 May 2024 21:12:32 GMT server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="1715375552447_388255516_273638731_18_3019_4_0_21";dur=1 strict-transport-security: max-age=31536000 ; includeSubDomains X-Firefox-Spdy: h2`

	api.ipify.org/?format=json	104.26.12.205	200 OK	21 B
URL GET HTTP/2 api.ipify.org/?format=json IP 104.26.12.205:443 ASN #13335 CLOUDFLARENET Requested by https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html#ken_wu@intuit.com Certificate IssuerGoogle Trust Services LLC Subjectipify.org FingerprintC8:1A:05:47:C5:73:C6:CE:DF:1D:A6:DE:00:11:A9:9A:8C:DB:EF:A7 ValidityThu, 21 Mar 2024 19:56:02 GMT - Wed, 19 Jun 2024 19:56:01 GMT File type JSON text data Size 21 B (21 bytes) Hash 7d69c71af0f191e9a72db6153f8018d1 f67c5f2887bc05654b47f76e9621e53a4091aed1 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65 HTTP Headers GET /?format=json HTTP/1.1 Host: api.ipify.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev DNT: 1 Connection: keep-alive Referer: https://pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 10 May 2024 21:12:32 GMT content-type: application/json content-length: 21 access-control-allow-origin: * vary: Origin cf-cache-status: DYNAMIC server: cloudflare cf-ray: 881ced92fbe956aa-OSL X-Firefox-Spdy: h2`

	pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html	104.18.3.35	200 OK	217 kB
URL User Request GET HTTP/1.1 pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev/myed24.html IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type Size 217 kB (217228 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /myed24.html HTTP/1.1 Host: pub-fa0b0561538c4422afdde1cc09af0f6a.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 10 May 2024 21:12:29 GMT Content-Type: text/html Content-Length: 217228 Connection: keep-alive Accept-Ranges: bytes ETag: "e512ad041fb1301936e5a305666761ea" Last-Modified: Tue, 30 Apr 2024 13:45:20 GMT Vary: Accept-Encoding Server: cloudflare CF-RAY: 881ced7d9f405690-OSL`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML