w1.msswol.com/prod/04afe878-c674-4a47-be76-349e373cca14/ab31266b-3b59-4fc3-9841-378f38d3fd58
44.198.6.24302 Found 332 B URL HTTP/1.1 w1.msswol.com/prod/04afe878-c674-4a47-be76-349e373cca14/ab31266b-3b59-4fc3-9841-378f38d3fd58
IP 44.198.6.24:0
File type HTML document, ASCII text, with very long lines (332), with no line terminators
Hash 249b6604e4ac139b90f8d072a3c1c81a
c3588af96312b4f2d085d00bf0731d6bc7de8e86
ef3b647d7f437e4bc6e5614dd94d44f07c9575edfe270bce56829d16da3ee920
Analyzer Verdict Alert fortinet Phishing
GET /prod/04afe878-c674-4a47-be76-349e373cca14/ab31266b-3b59-4fc3-9841-378f38d3fd58 HTTP/1.1
Host: w1.msswol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sun, 11 Dec 2022 07:42:10 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 332
Connection: keep-alive
X-Powered-By: Express
Location: https://integrations.api.mailshake.com/beacon/click?emailID=04afe878-c674-4a47-be76-349e373cca14&linkID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Vary: Accept
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 430f1651125c14bfa4924aa1f1a392e9
304141c5fe7ac8b370a67912b2592f9622de9600
315d77a9956f34b1615e38f5f1971dd05146980f8a36b35a8108d47ebba7e8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "315D77A9956F34B1615E38F5F1971DD05146980F8A36B35A8108D47EBBA7E8E5"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3105
Expires: Sun, 11 Dec 2022 08:33:55 GMT
Date: Sun, 11 Dec 2022 07:42:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43ad67f241ee3692a9c9c1da080dae58
6a024f7d71eeee257edc91ba9273416f634aaae5
636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7686
Expires: Sun, 11 Dec 2022 09:50:16 GMT
Date: Sun, 11 Dec 2022 07:42:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19587
Expires: Sun, 11 Dec 2022 13:08:37 GMT
Date: Sun, 11 Dec 2022 07:42:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 11 Dec 2022 07:08:30 GMT
content-type: application/json
age: 2020
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Ip1nW2TIx7/8tQjQpb5X6G/P5lXHpWE9rIMSDzhqZGX/cwkcSfitU51mbneAPIIgb2tJO63j88E=
x-amz-request-id: 0ATHCEGZT1CV13XY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 11 Dec 2022 06:50:59 GMT
age: 3071
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Dec 2022 07:42:10 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash f80185173e0a0ca4456558c1f0e9e0b1
09ba204859fe7f290c4a0b26da43957d30af5517
48950fc12fda3c95ad7b4adb70d2e065f1369d26059642b4f5687b63a1dada50
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 11 Dec 2022 07:42:11 GMT
Etag: "6392cc5f-1d7"
Server: ECS (dcb/7FA3)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QZ1m1sN46m08ghyOkip-bB2ST44Kgi5H-K4GIaZo_JAQOxfOmEiOlg==
integrations.api.mailshake.com/beacon/click?emailID=04afe878-c674-4a47-be76-349e373cca14&linkID=ab31266b-3b59-4fc3-9841-378f38d3fd58
3.225.117.127302 Found 170 B URL HTTP/2 integrations.api.mailshake.com/beacon/click?emailID=04afe878-c674-4a47-be76-349e373cca14&linkID=ab31266b-3b59-4fc3-9841-378f38d3fd58
IP 3.225.117.127:0
File type HTML document, ASCII text, with no line terminators
Hash f251426f4d5404f7bc0c83e4b219ed27
41cf81ec7c25aafedb3e4532c2336613d47d5d5b
5ec566ba2be573518c17ff08a886b3b3d1594d3bec5525e1cd5486b2b7d10fe2
GET /beacon/click?emailID=04afe878-c674-4a47-be76-349e373cca14&linkID=ab31266b-3b59-4fc3-9841-378f38d3fd58 HTTP/1.1
Host: integrations.api.mailshake.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 11 Dec 2022 07:42:11 GMT
content-type: text/html; charset=utf-8
content-length: 170
location: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
x-powered-by: Express
vary: Origin, Accept, Accept-Encoding
access-control-allow-credentials: true
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 11 Dec 2022 07:33:15 GMT
age: 536
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 44d4574b46375a2d215ae74bc5eae610
5257ed3edeb56231a9bee921671bb2e0c566000e
923454b28e4fa10085df809768a75c2d9f58f104afa016c06ccca7a26479073b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5379
Cache-Control: max-age=96858
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:11 GMT
Etag: "63944c2a-1d7"
Expires: Mon, 12 Dec 2022 10:36:29 GMT
Last-Modified: Sat, 10 Dec 2022 09:06:50 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.69.181.45101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.69.181.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: k8PwJROnVd59uVhmqwHgvg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: szYDgSTMpUpeW8kUC9MIGPS3Qyk=
www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
3.215.219.71200 OK 22 kB URL HTTP/1.1 www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
IP 3.215.219.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (18798), with CRLF, LF line terminators
Hash 93d1deaba589ebdc67c345f10dbb12e0
b5bd8f01a821568c48e9e49257fd5f0c76ba2f11
0c61a6c6ab352efe877a3e7ed685668c116c4b64e27307f0989e27fe18182834
GET /?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58 HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:11 GMT
Server: Apache
WPO-Cache-Status: not cached
WPO-Cache-Message: In the settings, caching is disabled for matches for one of the current request's GET parameters
Link: <https://www.coro.net/wp-json/>; rel="https://api.w.org/", <https://www.coro.net/wp-json/wp/v2/pages/99>; rel="alternate"; type="application/json", <https://www.coro.net/>; rel=shortlink
X-TEC-API-VERSION: v1
X-TEC-API-ROOT: https://www.coro.net/wp-json/tribe/events/v1/
X-TEC-API-ORIGIN: https://www.coro.net
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Cache-Control: private, must-revalidate
Expires: Sun, 08 Jan 2023 07:42:11 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 74d82b5960e5e12af402b01fa10b0829
4b80baad99eaafa43a8a78dbcd8e0df4141b3dd7
328abed4a3d2ea1d745c64c5c40925ae5efca25846d2e1c8457a030347473b51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 74d82b5960e5e12af402b01fa10b0829
4b80baad99eaafa43a8a78dbcd8e0df4141b3dd7
328abed4a3d2ea1d745c64c5c40925ae5efca25846d2e1c8457a030347473b51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-16dd1859.min.css
3.215.219.71200 OK 78 kB URL HTTP/1.1 www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-16dd1859.min.css
IP 3.215.219.71:0
File type ASCII text, with very long lines (65501)
Hash de311bcd18fffd1b93349a9b4f3b1030
97a37add16aeceea1c42e228d572e67a18fe9c0f
3f7e3b01f356f7d6bd05586d6565dbfdd6f4d0a764353e8673422dc18f4c32a7
GET /wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-16dd1859.min.css HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:12 GMT
Server: Apache
Last-Modified: Thu, 08 Dec 2022 16:40:17 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Sun, 08 Jan 2023 07:42:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-f53a0c17.min.js
3.215.219.71200 OK 34 kB URL HTTP/1.1 www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-f53a0c17.min.js
IP 3.215.219.71:0
File type ASCII text, with very long lines (65442)
Hash 4bf14da9a3b69bf03e7610f9c23372c3
78861cd215c90b379c8b07ccfa2766d1896869f2
acdb90e99988615fe783ce6abc2b803c10c0637164d7d6e7418c04834005fd2e
GET /wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-f53a0c17.min.js HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:12 GMT
Server: Apache
Last-Modified: Thu, 08 Dec 2022 16:39:42 GMT
Accept-Ranges: bytes
Cache-Control: private
Expires: Sun, 08 Jan 2023 07:42:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 34509
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-footer-058f11bd.min.js
3.215.219.71200 OK 16 kB URL HTTP/1.1 www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-footer-058f11bd.min.js
IP 3.215.219.71:0
File type ASCII text, with very long lines (52546)
Hash 17b8303fa5881978dc4919638a158c26
323c9a65a600ae208a6821ae6bd774db6c7bb23a
85eec9d689fa5d951fb996df1112a6e149ff11aa586e442e9b76a0ea91653341
GET /wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-footer-058f11bd.min.js HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:12 GMT
Server: Apache
Last-Modified: Thu, 08 Dec 2022 16:40:47 GMT
Accept-Ranges: bytes
Cache-Control: private
Expires: Sun, 08 Jan 2023 07:42:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 16162
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-footer-fe6f0d69.min.js
3.215.219.71200 OK 46 kB URL HTTP/1.1 www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-footer-fe6f0d69.min.js
IP 3.215.219.71:0
File type ASCII text, with very long lines (64663)
Hash a09c7704c0e6e74d76139515ba6089d9
16c46d8b43ff54a874d596504110ac7245e6e4af
2fd4496bae5ab4a79fc7473cfd097be234007fd2e813a18b5ac69cdf248952e5
GET /wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-footer-fe6f0d69.min.js HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:12 GMT
Server: Apache
Last-Modified: Thu, 08 Dec 2022 16:39:42 GMT
Accept-Ranges: bytes
Cache-Control: private
Expires: Sun, 08 Jan 2023 07:42:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 45677
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.coro.net/wp-content/uploads/2021/10/linked-in-icon.svg
3.215.219.71200 OK 423 B URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/10/linked-in-icon.svg
IP 3.215.219.71:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (471)
Hash f5954349d5d0d02ec296da196ed6dca1
656223d11b900760c254a578f14ab632ecf34c3b
b0b44e6df7e0008f13c93b915268aeaef2fb753fb58d72cde8fc03beee968f70
GET /wp-content/uploads/2021/10/linked-in-icon.svg HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:12 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 23:09:25 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 08 Jan 2023 07:42:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 423
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
www.coro.net/wp-content/uploads/2021/10/twitter-icon.svg
3.215.219.71200 OK 576 B URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/10/twitter-icon.svg
IP 3.215.219.71:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (777)
Hash 04f0e85ab5c08f90d9b8f9b607adab42
d88f354c428ed780bf1a71de0bde4467ac9cbdd5
b52f359bcd7a746420b9f4e1a825b6ed8d7e883dd3be33b6d3f94bee29a2f268
GET /wp-content/uploads/2021/10/twitter-icon.svg HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:12 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 23:09:29 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 08 Jan 2023 07:42:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 576
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
www.coro.net/wp-content/uploads/2021/10/facebook-icon.svg
3.215.219.71200 OK 277 B URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/10/facebook-icon.svg
IP 3.215.219.71:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash b2575177a047b85184876f4ccf15c6c3
26944d5335a89a927a8dd8c60ba9dcf4c385e3c4
de6e18910c4e7476e0991b36a11ffdf132cd3d213275c2c612a330a6cc114e2c
GET /wp-content/uploads/2021/10/facebook-icon.svg HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:12 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 23:09:20 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 08 Jan 2023 07:42:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 277
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
www.coro.net/wp-content/uploads/2021/10/coro-logo-header.svg
3.215.219.71200 OK 1.7 kB URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/10/coro-logo-header.svg
IP 3.215.219.71:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3275)
Hash e9c604e46fcdec1ba37140141ac6f90e
990644c240ef029bf85332c9d8f39261a3cf8ee0
d08029a5a9fac1e0179463152d738dc51592cbc1b56a10666abb83de0c00f925
GET /wp-content/uploads/2021/10/coro-logo-header.svg HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:12 GMT
Server: Apache
Last-Modified: Wed, 27 Oct 2021 23:12:55 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 08 Jan 2023 07:42:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1731
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2bbc2a332da069e062c141b6755efb07
e7cb19a32562264a6858b73f90caff1fe7887a29
5fad6e64460cced764a9d312bc67cf858e5b28e5b2e107dc790bc5973f1ecd1e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 784e0439ec6be7b4ca1312cd7cfae85b
18dad06db451855d3009aa3207d868895c577666
6369a3e27c976088b4dda95da9422fdb201979fedfcb4edf9db60089fd9ea53b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.coro.net/wp-content/uploads/2021/09/expand@3x.webp
3.215.219.71200 OK 375 B URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/09/expand@3x.webp
IP 3.215.219.71:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1ebf35fdead7557c73556cadfb0f626b
c2a8b38179234fd5b3099436accc11dd2ea7771a
3dd9bacb89b26a48c92454d0eaa9c4a88252a78ede8be33db2db034b18d3166a
GET /wp-content/uploads/2021/09/expand@3x.webp HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-16dd1859.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:12 GMT
Server: Apache
Last-Modified: Tue, 28 Sep 2021 21:50:02 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Sun, 08 Jan 2023 07:42:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 375
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/webp
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 784e0439ec6be7b4ca1312cd7cfae85b
18dad06db451855d3009aa3207d868895c577666
6369a3e27c976088b4dda95da9422fdb201979fedfcb4edf9db60089fd9ea53b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 784e0439ec6be7b4ca1312cd7cfae85b
18dad06db451855d3009aa3207d868895c577666
6369a3e27c976088b4dda95da9422fdb201979fedfcb4edf9db60089fd9ea53b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Noto+Serif:400,400i,700,700i%7CSource+Sans+Pro:600,400%7CLato:600&subset=latin,latin-ext&display=auto
142.250.74.74200 OK 25 kB URL HTTP/2 fonts.googleapis.com/css?family=Noto+Serif:400,400i,700,700i%7CSource+Sans+Pro:600,400%7CLato:600&subset=latin,latin-ext&display=auto
IP 142.250.74.74:0
Hash 0d66ca9e63838546698115ac3b1c1027
d0aad067bc1834b25af60823da4166a5902eb541
b805df1b595e143fe4edab9b280fea071838979fcefa199cbf8075183cf142bc
GET /css?family=Noto+Serif:400,400i,700,700i%7CSource+Sans+Pro:600,400%7CLato:600&subset=latin,latin-ext&display=auto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 11 Dec 2022 07:42:12 GMT
date: Sun, 11 Dec 2022 07:42:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.hs-scripts.com/4165851.js
104.17.210.204200 OK 88 kB URL HTTP/2 js.hs-scripts.com/4165851.js
IP 104.17.210.204:0
File type ASCII text, with very long lines (539)
Hash f14dcf566cd4963546ba0fe7f4597487
5a2a87113b5a085a32dd9d911385aea5d4d575d2
9afb17e885d889f503631f9eb3f088512c40ccb9367a8b74f30a28cb4a729384
GET /4165851.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:12 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B0BB7A5DA4208CFB2032AAC8D6B054F319D975A22000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: c2eee8be-be78-45bb-84f5-30aa4b3271e3
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.coro.net
last-modified: Sun, 11 Dec 2022 06:54:42 GMT
cf-cache-status: EXPIRED
expires: Sun, 11 Dec 2022 07:43:12 GMT
server: cloudflare
cf-ray: 777c950f2a30b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.coro.net/wp-content/themes/rr-coronet-v2/assets/images/login-button.svg
3.215.219.71200 OK 487 B URL HTTP/1.1 www.coro.net/wp-content/themes/rr-coronet-v2/assets/images/login-button.svg
IP 3.215.219.71:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (739)
Hash 4422378902d4cc90c41c00fc6e7bd14f
080baa250ffdb14c356731c27d57b30cec8b2128
ffc164d24d9857bdf1f038c34eec9e47a85b03f865b031e8fea5f8987082b487
GET /wp-content/themes/rr-coronet-v2/assets/images/login-button.svg HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-16dd1859.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:12 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 15:22:39 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2419200
Expires: Sun, 08 Jan 2023 07:42:12 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 487
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 784e0439ec6be7b4ca1312cd7cfae85b
18dad06db451855d3009aa3207d868895c577666
6369a3e27c976088b4dda95da9422fdb201979fedfcb4edf9db60089fd9ea53b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
142.250.74.35200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Hash 7cf79fbd1df848510d7352274efc2401
5540b5a26cc7dfe25294c4eabe011e2c6cd60143
bc9a16cd945457ad9463cdaed95129b01c589466978dfee3d019d9c604b2171a
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:38:22 GMT
expires: Thu, 07 Dec 2023 19:38:22 GMT
cache-control: public, max-age=31536000
age: 302630
last-modified: Wed, 27 Apr 2022 16:09:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu3cOWxw.woff2
142.250.74.35200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu3cOWxw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Hash 4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu3cOWxw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:27:36 GMT
expires: Thu, 07 Dec 2023 19:27:36 GMT
cache-control: public, max-age=31536000
age: 303276
last-modified: Wed, 27 Apr 2022 16:50:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
142.250.74.35200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:49 GMT
expires: Thu, 07 Dec 2023 19:28:49 GMT
cache-control: public, max-age=31536000
age: 303203
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2bbc2a332da069e062c141b6755efb07
e7cb19a32562264a6858b73f90caff1fe7887a29
5fad6e64460cced764a9d312bc67cf858e5b28e5b2e107dc790bc5973f1ecd1e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ced078917fb1c0322f66c014f3b15f15
a29ac681b0cef4a0277c09fe94b9b3f0f7c0ff00
e81f090ce1b8432ac3137cda582b8ca1745749050d9dbb9ab71e728898bceaeb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2794
Cache-Control: max-age=171698
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:12 GMT
Etag: "63957a9c-117"
Expires: Tue, 13 Dec 2022 07:23:50 GMT
Last-Modified: Sun, 11 Dec 2022 06:37:16 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 98dbc01196aeedff43f4e46665a1e853
4c5cea0e0d55e20f454edb925f49ed9944004f01
5c069449701328476784a6cc79e9cba1e1dae18ba2f39345446a77bd0c8c2bda
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4177
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:12 GMT
Last-Modified: Sun, 11 Dec 2022 06:32:36 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 784e0439ec6be7b4ca1312cd7cfae85b
18dad06db451855d3009aa3207d868895c577666
6369a3e27c976088b4dda95da9422fdb201979fedfcb4edf9db60089fd9ea53b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
player.vimeo.com/video/635494299?controls=false&autoplay=1&loop=1&autopause=0&muted=1&h=f2ac7ea09e
162.159.128.61200 OK 5.9 kB URL HTTP/1.1 player.vimeo.com/video/635494299?controls=false&autoplay=1&loop=1&autopause=0&muted=1&h=f2ac7ea09e
IP 162.159.128.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18580), with no line terminators
Hash 13db4140383fa32a9d2c4e6c495d2ca7
0032dff87563453bb7e3a6456b9a05e37283a6c9
24143caebcd736aa3c9c3e56356be1ac09b844e8c4cc9f4fb6f372c348256b29
GET /video/635494299?controls=false&autoplay=1&loop=1&autopause=0&muted=1&h=f2ac7ea09e HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Sun, 11 Dec 2022 07:52:12 GMT
x-host: player-959c5df45-xgh5t
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-test-varnish-0
x-backend-proxy: playproxy31
x-bapp-server: player-959c5df45-xgh5t
Age: 0
X-Served-By: cache-bma1677-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1670744533.747440,VS0,VE201
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=ufLuQvpdPdhDpHDf4SHyJgCBpSbAX..WDU_KIvAzAY4-1670744532-0-AQcp9QBnOmjeA7H/SIQgWQjJMrsw3KA2xvdtmaWaP8lwFdKB7Wq0H8tXtRYjkZJ8XlAyd8u/2CkrMKMeHQelXVo=; path=/; expires=Sun, 11-Dec-22 08:12:12 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 777c95119eacb500-OSL
Content-Encoding: gzip
www.coro.net/wp-content/uploads/2021/09/quotes.png
3.215.219.71200 OK 6.0 kB URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/09/quotes.png
IP 3.215.219.71:0
File type PNG image data, 192 x 153, 8-bit/color RGBA, non-interlaced\012- data
Hash e017b0310c84f590a1f551836af9f562
1046968013dff8df1dadfb70fbb1decd868690d0
3e6663fb82fcd5c9f0068b822733d5e42637a7a5b1a78c796b92043b7c0fbbe7
GET /wp-content/uploads/2021/09/quotes.png HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/wp-content/cache/wpo-minify/1670517581/assets/wpo-minify-header-16dd1859.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:12 GMT
Server: Apache
Last-Modified: Mon, 27 Sep 2021 22:16:31 GMT
Accept-Ranges: bytes
Content-Length: 5961
Cache-Control: public
Expires: Sun, 08 Jan 2023 07:42:12 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash e3f533a1bfef3e05912e1bae44b64353
941f0088562bfdf88fe0cabf713665df19348f08
bc61d737666e953d2d0e8dcd05114455895f33bcccf5510463eb90a1b40e33f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4447
Cache-Control: max-age=127279
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:13 GMT
Etag: "6394c6a5-118"
Expires: Mon, 12 Dec 2022 19:03:32 GMT
Last-Modified: Sat, 10 Dec 2022 17:49:25 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash e3f533a1bfef3e05912e1bae44b64353
941f0088562bfdf88fe0cabf713665df19348f08
bc61d737666e953d2d0e8dcd05114455895f33bcccf5510463eb90a1b40e33f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4447
Cache-Control: max-age=127279
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:13 GMT
Etag: "6394c6a5-118"
Expires: Mon, 12 Dec 2022 19:03:32 GMT
Last-Modified: Sat, 10 Dec 2022 17:49:25 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280
f.vimeocdn.com/p/4.15.3/css/player.css
151.101.246.109200 OK 21 kB URL HTTP/2 f.vimeocdn.com/p/4.15.3/css/player.css
IP 151.101.246.109:0
File type ASCII text, with very long lines (65495)
Hash 968f2cdf88d9a0473ba7a9f06df273da
2816f582988f9de542ca6f12ac98ef5a22bf0572
8126ad5a87c033902741b40e92e955d4cbb5552040a597a261befcce705793af
GET /p/4.15.3/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 11 Dec 2022 07:42:13 GMT
age: 223914
x-served-by: cache-iad-kiad7000126-IAD, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 37, 111202
x-timer: S1670744533.140422,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20725
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 6c88a2d5e9c78b083f217b404b66f2ff
e6a17ffc786c1692d3b2c4d8a520eeb6b0408a8d
fa65d4e5fcd6d8f07e4a355c88f8ec487a95fab33acb3db18273a1e5f3ca4eb7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 176
Cache-Control: max-age=96727
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:13 GMT
Etag: "63945ffc-116"
Expires: Mon, 12 Dec 2022 10:34:20 GMT
Last-Modified: Sat, 10 Dec 2022 10:31:24 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
api.hubspot.com/livechat-public/v1/message/public?portalId=4165851&conversations-embed=static-1.11519&mobile=false&messagesUtk=3609418b41c54fda99210f62256389ba&traceId=3609418b41c54fda99210f62256389ba
104.19.155.83200 OK 18 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=4165851&conversations-embed=static-1.11519&mobile=false&messagesUtk=3609418b41c54fda99210f62256389ba&traceId=3609418b41c54fda99210f62256389ba
IP 104.19.155.83:0
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /livechat-public/v1/message/public?portalId=4165851&conversations-embed=static-1.11519&mobile=false&messagesUtk=3609418b41c54fda99210f62256389ba&traceId=3609418b41c54fda99210f62256389ba HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: https://www.coro.net/
Origin: https://www.coro.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
content-type: text/plain; charset=utf-8
content-length: 18
cf-ray: 777c9513ae35b51e-OSL
access-control-allow-origin: https://www.coro.net
allow: HEAD,GET,OPTIONS
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 34694410-f253-4841-8c33-31afe04b70d8
x-trace: 2B10706E81B510CD8A0AD1B0313359F9644E1983BD000000000000000000
set-cookie: __cf_bm=saA0b60VORGZFxTsBsW576TUT6zB8k5SghUfH_sNNJw-1670744533-0-AR/hz90lEE2Uqr2kXQha/Y0UdFJVjQ+ZH5e8fpa1cgGn47JzJsqGuitu9eO3jM90kFU/ZER5LSZtMhVrQLBkIWY=; path=/; expires=Sun, 11-Dec-22 08:12:13 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dg8SZUC9WrJ7clb7IddNG6dv01H00h5AfT2njH%2FD00%2B%2FW8WgtrKfPCwXrhdOYjx6NNRa%2BKDUzHlI49yQU%2FB29yl2VGMI3TZNZqEE7RZpjQg8jJuSg7ooZCmCydxnFDrvlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=GTM-PBC2FJW
142.250.74.78200 OK 44 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-PBC2FJW
IP 142.250.74.78:0
File type ASCII text, with very long lines (1921)
Hash d5f3ac2b097391a3e607733b4ab7cee2
a1cd4f481acff45766e34684041f2ccd50fc6504
92dbc71848a9c979a6cce59873fc68bc8acafb92e8154294f5f1de7eb2e60906
GET /optimize.js?id=GTM-PBC2FJW HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 11 Dec 2022 07:42:13 GMT
expires: Sun, 11 Dec 2022 07:42:13 GMT
cache-control: private, max-age=900
last-modified: Sun, 11 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43887
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8003
Expires: Sun, 11 Dec 2022 09:55:36 GMT
Date: Sun, 11 Dec 2022 07:42:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8003
Expires: Sun, 11 Dec 2022 09:55:36 GMT
Date: Sun, 11 Dec 2022 07:42:13 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash e3f533a1bfef3e05912e1bae44b64353
941f0088562bfdf88fe0cabf713665df19348f08
bc61d737666e953d2d0e8dcd05114455895f33bcccf5510463eb90a1b40e33f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4447
Cache-Control: max-age=127279
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:13 GMT
Etag: "6394c6a5-118"
Expires: Mon, 12 Dec 2022 19:03:32 GMT
Last-Modified: Sat, 10 Dec 2022 17:49:25 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9d9597d-3342-4cae-86ab-08af1be49d2c.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9d9597d-3342-4cae-86ab-08af1be49d2c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ecae80fc01e2d8953c298991500e07b
b71103793717d4c7fddfc6fe07b936b87fe3f5e1
bbd70dbf8c7976674cce6217b9274baf49d91a53196b6c907e9636b9462417eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9d9597d-3342-4cae-86ab-08af1be49d2c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9732
x-amzn-requestid: 5f54b91c-702a-4a07-80eb-5df7456f3487
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUncHT4oAMFt1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e67c9-38ca2ecb4934ea6439acc2af;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:51:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v5XmAXlXJFSTNDoqENq3PKd-stbUzBE4QqJHhzcZCcusNRI56v7z_w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 10:35:15 GMT
age: 76018
etag: "b71103793717d4c7fddfc6fe07b936b87fe3f5e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92a308f9-a83f-41bd-aacf-c6bd9e6eaf11.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92a308f9-a83f-41bd-aacf-c6bd9e6eaf11.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78068ece5c05e5936bfc1eac61c627f8
0c1118eaf153c16f6bcb731767b1237ee72a5541
9b7f84ec789ec853dc463e5839c63d8395e8921cc0599b8b7e694eebb1d22b9e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92a308f9-a83f-41bd-aacf-c6bd9e6eaf11.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6850
x-amzn-requestid: a7a24880-17cf-4873-9da2-1cdedb1d351b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csWC5GsFIAMF_jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6a12-186b17d55261c18243dc0302;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 22:00:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sDsH55clVyWxDLGhhtm54gFyuNmot4rM-vu8Qm3ic4zNjiOpw_fnwA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 21:54:58 GMT
age: 35235
etag: "0c1118eaf153c16f6bcb731767b1237ee72a5541"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdad09879-539d-47c2-b00f-c42de83925b1.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdad09879-539d-47c2-b00f-c42de83925b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9316e6fcb6eb5f47473eb710872f09e5
368be3ba9d57fb8ed8a936041bb0f4154ae680f1
aa0d429845b669baf996324cb7a5d4b001558c48480b4da43e9b81bdbc335e7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdad09879-539d-47c2-b00f-c42de83925b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10517
x-amzn-requestid: 23d8ce86-b859-43b5-8daa-bed31c10ed24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwV5JEuGoAMFVmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6390036d-320dbe9f7805aa015f368a57;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:07:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ysW4uKH8nb8_ddCPvyF_G15LFFHo13jvjnxxcxsnBuZdVSphIW3tyA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 06:51:48 GMT
age: 3025
etag: "368be3ba9d57fb8ed8a936041bb0f4154ae680f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe639b598-228d-4b74-8dab-25ae9f33b0b6.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe639b598-228d-4b74-8dab-25ae9f33b0b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2a89767acaa7b09e7cf2d0d5e833644
0f796dfeb88f997c3b7640d79983110795b64f41
fde35b6974b53a3a5d452af68614ee559152ed76e492c9ebaa16b1a9e487aa4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe639b598-228d-4b74-8dab-25ae9f33b0b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5953
x-amzn-requestid: e878d66a-0fe4-4411-a0b4-816facb42707
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c2dgiEAAoAMFquQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63927603-71491d8613419cc708f3396e;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 23:40:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _VSA7qRooH64GG6Gwx6rYZaSZpxhTNPDCQY31AVzZGmQVTGcqqklRg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 21:55:56 GMT
age: 35177
etag: "0f796dfeb88f997c3b7640d79983110795b64f41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaa3b191-2ccf-43a7-98dc-75eb1a8968b6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaa3b191-2ccf-43a7-98dc-75eb1a8968b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a1d9ee9604803ac5d63a3806a2ef506
6c378dcff1d9fe7585312bed9dad74a64730f9e0
a3a99498c052c9b998816dd688a9a790fd5b59b9c9f8017af7591cd5537f72d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaa3b191-2ccf-43a7-98dc-75eb1a8968b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11520
x-amzn-requestid: 02c1a493-e1bb-4db4-a628-d8c79def1607
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c8xTBEAxoAMF7Ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6394fc13-4f35a8f837675761185ce4ad;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 21:37:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PEeF3P6XjtEsFq418c-VrkvkTetvPYmgqX2iPy4nu8YIXwOx8FLU0g==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 21:52:12 GMT
age: 35401
etag: "6c378dcff1d9fe7585312bed9dad74a64730f9e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.hs-scripts.com/4165851.js?integration=WordPress
104.17.210.204200 OK 6.9 kB URL HTTP/2 js.hs-scripts.com/4165851.js?integration=WordPress
IP 104.17.210.204:0
File type ASCII text, with very long lines (539)
Hash 0ef9846175e70e7bb70b20b1c8e79bfd
e04cbd7488f0d1ffb86f0e71f7f8b9e4d59e2b4b
64e4ab2db0915895d7c2a3acfbd64e6655990a54b1a81c12f9ffc6107d892d78
GET /4165851.js?integration=WordPress HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:12 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B0990A1A6582D94E6EE1DEB836DBB097777383B6C000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 60df46d9-b226-44f4-92ef-1bdf70c60566
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.coro.net
last-modified: Sun, 11 Dec 2022 06:54:42 GMT
cf-cache-status: EXPIRED
expires: Sun, 11 Dec 2022 07:43:12 GMT
server: cloudflare
cf-ray: 777c950f2a32b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash ba25d5673e3b8c2a5c7bdfdded2aa0e3
8fae026d5bbba3b202b9bfd83c7e6a6550e835b7
79a865d9f0a822768964da8aa10399f47b4280f9284c95f24466f76fc3fe473e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Dec 2022 10:24:05 GMT
Expires: Fri, 16 Dec 2022 10:24:04 GMT
Etag: "8fae026d5bbba3b202b9bfd83c7e6a6550e835b7"
Cache-Control: max-age=441110,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 777c9514e8220b51-OSL
f.vimeocdn.com/p/4.15.3/js/player.module.js
151.101.246.109200 OK 116 kB URL HTTP/2 f.vimeocdn.com/p/4.15.3/js/player.module.js
IP 151.101.246.109:0
File type Unicode text, UTF-8 text, with very long lines (65445)
Size 116 kB (116326 bytes)
Hash 8c9202bf6ee286b9ed355dedd5cf03ff
98af722e03b42e83e7f3a718a17fcd9fd583083d
d4cfc1c907835aeb287585e70a9f4ee773d91fc1ddfabf1e8881162bd5ea10f2
GET /p/4.15.3/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 11 Dec 2022 07:42:13 GMT
age: 223914
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 49, 81571
x-timer: S1670744533.252289,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 116326
X-Firefox-Spdy: h2
api.hubspot.com/livechat-public/v1/message/public?portalId=4165851&conversations-embed=static-1.11519&mobile=false&messagesUtk=3609418b41c54fda99210f62256389ba&traceId=3609418b41c54fda99210f62256389ba
104.19.155.83200 OK 242 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=4165851&conversations-embed=static-1.11519&mobile=false&messagesUtk=3609418b41c54fda99210f62256389ba&traceId=3609418b41c54fda99210f62256389ba
IP 104.19.155.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 457989af479912660966856b5cbd0426
fe544de9fd628ee71be2ddf464be3801b03c7828
acaa75b0de5f2eafff023c9413e7967986e33703e312c31936e0fa49809f7386
GET /livechat-public/v1/message/public?portalId=4165851&conversations-embed=static-1.11519&mobile=false&messagesUtk=3609418b41c54fda99210f62256389ba&traceId=3609418b41c54fda99210f62256389ba HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
content-type: application/json;charset=utf-8
content-length: 242
cf-ray: 777c95147f1fb51e-OSL
access-control-allow-origin: https://www.coro.net
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 3770db1d-417b-4f5b-8567-a1cc08a2a92f
x-trace: 2BBBE593A312E54E0BE6ADD055D7C0673D1239F9B1000000000000000000
set-cookie: __cf_bm=qr3jQAcFY3RapW30DHB6Ri5npsB2kZ4ilaVpCLtOIY4-1670744533-0-AaZLnj+bxqocueQ/voXWgQfoiQzeftPT+6FmWG2IG0UhHjUTe7m+vVUevmicFLw2ALpqskF/PSCREJRGDLPBFtQ=; path=/; expires=Sun, 11-Dec-22 08:12:13 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LFSfOX1B5fsa%2BbJMKlXHqWbbxCvsfk4y8S2XzFgVP%2FmmS48lulzf1gRjwWtIuh0KjT5rI1CEDKM%2B5PKCz0F1yrelBp4w8rscgTjWcer8lGbJHNFe3UQrJCWEGI4GVqN1yQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.210200 OK 4.6 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12961)
Hash c1a25b303b61b25e995516f5559bcdea
3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=60923
date: Sun, 11 Dec 2022 07:42:13 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash efc7e8079c19dcf673d5979f53de5578
2659e582ee35c4d623f74ff5ed4a3a4038c1bff8
d5e97a56878417cbc1922f7fcf788a7360ceb8e181bc231aa3ad3cfd803d2286
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2645
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:13 GMT
Last-Modified: Sun, 11 Dec 2022 06:58:08 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
www.coro.net/wp-content/uploads/2021/09/cropped-coro-logo-header@3x-192x192.png
3.215.219.71200 OK 7.4 kB URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/09/cropped-coro-logo-header@3x-192x192.png
IP 3.215.219.71:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash e1d9581d5cef7c2126966c193fde2cc0
f87d5e1f09cbf5ea9a257308529ffa816ec3fc32
86a60d4f9861f44b97a6103a8134012168a25994af03328c22fd8c6f115a2935
GET /wp-content/uploads/2021/09/cropped-coro-logo-header@3x-192x192.png HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Cookie: _gcl_au=1.1.1693129572.1670744532; _ga_5MVGMPSG6P=GS1.1.1670744531.1.0.1670744531.60.0.0; _ga=GA1.1.91328610.1670744532
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:13 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 18:35:35 GMT
Accept-Ranges: bytes
Content-Length: 7411
Cache-Control: public
Expires: Sun, 08 Jan 2023 07:42:13 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 633462c5bc4d631d0f28109676f1c4ef
5e971024687c599a40822616459355ab75a69aa6
464513db00c7735b28f8140ecd0a3a0641fce311481f736a946a1ed8e8e881d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 11 Dec 2022 07:34:02 GMT
expires: Sun, 11 Dec 2022 09:34:02 GMT
cache-control: public, max-age=7200
age: 491
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f69c32ac7b9825b1255fed72f425fe77
58e0fb4b9d5c835bb222a73b5fd939af76991485
7e61ce2f34c53d0730f5e88d26fb87651af80f1356ccb9ccc5a6efa2b255195c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c65ac62e7410252ded8bbaeea3fbf53d
368e5abfcbc3728085effc9f2f9e49b180196e87
5ac0baa36fd1132f037b9800deb6aa7af763a1e114490cb5d39aaa7c9c6a86fe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4324
Cache-Control: max-age=128199
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:13 GMT
Etag: "6394cab8-1d7"
Expires: Mon, 12 Dec 2022 19:18:52 GMT
Last-Modified: Sat, 10 Dec 2022 18:06:48 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
f.vimeocdn.com/p/4.15.3/js/vendor.module.js
151.101.246.109200 OK 116 kB URL HTTP/2 f.vimeocdn.com/p/4.15.3/js/vendor.module.js
IP 151.101.246.109:0
File type ASCII text, with very long lines (65457)
Size 116 kB (115831 bytes)
Hash b1d4e45be3bf63b76cd5365d3bbfec4c
4cbe3e6bd6f09e823d5c994c4304e4c5aed6fec1
84a4f9602b964b8d5f5e11a1081aa7f28edba888d24a138e17bc5f5cc0892b34
GET /p/4.15.3/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 11 Dec 2022 07:42:13 GMT
age: 223915
x-served-by: cache-iad-kjyo7100143-IAD, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 33, 106344
x-timer: S1670744533.457737,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 115831
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Sun, 11 Dec 2022 07:42:13 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
www.coro.net/wp-content/uploads/2021/09/cropped-coro-logo-header@3x-32x32.png
3.215.219.71200 OK 895 B URL HTTP/1.1 www.coro.net/wp-content/uploads/2021/09/cropped-coro-logo-header@3x-32x32.png
IP 3.215.219.71:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c4dc960893e3e521e10fe57428221e2
cbe7cccaac72469b8e60d56932096fbe4e61ae1c
e51e247242d73810716ef1bfa44566e8ecb0967c7ffad5647ed87f166882e2b8
GET /wp-content/uploads/2021/09/cropped-coro-logo-header@3x-32x32.png HTTP/1.1
Host: www.coro.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/?msID=ab31266b-3b59-4fc3-9841-378f38d3fd58
Cookie: _gcl_au=1.1.1693129572.1670744532; _ga_5MVGMPSG6P=GS1.1.1670744531.1.0.1670744531.60.0.0; _ga=GA1.1.91328610.1670744532
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:13 GMT
Server: Apache
Last-Modified: Fri, 15 Oct 2021 18:35:35 GMT
Accept-Ranges: bytes
Content-Length: 895
Cache-Control: public
Expires: Sun, 08 Jan 2023 07:42:13 GMT
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
googleads.g.doubleclick.net/pagead/viewthroughconversion/872945354/?random=1670744531635&cv=11&fst=1670744531635&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&auid=1693129572.1670744532&rfmt=3&fmt=4
142.250.74.98200 OK 931 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/872945354/?random=1670744531635&cv=11&fst=1670744531635&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&auid=1693129572.1670744532&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2019), with no line terminators
Hash 86969d163c1e62a38b9250f25dc07d1a
2b97b6e6f82ba016f4db9b02c6ec816023c09b55
1b0e05925c736a789f157ef58717c978c31e29f45395f9a3c6ba24e35b9dc7b9
GET /pagead/viewthroughconversion/872945354/?random=1670744531635&cv=11&fst=1670744531635&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&auid=1693129572.1670744532&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 07:42:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 931
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 11-Dec-2022 07:57:13 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ws.zoominfo.com/pixel/iWcnzFWwpWeZSQ7t9YZT
104.16.101.12200 OK 1.9 kB URL HTTP/2 ws.zoominfo.com/pixel/iWcnzFWwpWeZSQ7t9YZT
IP 104.16.101.12:0
Hash 9a7dff82d366bedd2441360a747842e1
fa898b7e8ef9c836379dae4685b88dd344d615fe
4306c57a44c78c6083dd2a3e8496dfa1ac7d0321ffd80809f6b6d7ba5fcc5797
GET /pixel/iWcnzFWwpWeZSQ7t9YZT HTTP/1.1
Host: ws.zoominfo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
content-type: text/javascript
vary: Accept-Encoding
x-powered-by: Express
x-content-type-options: nosniff
access-control-allow-headers: Content-Type,cf-ipcountry,service-version,x-appengine-user-ip,x-forwarded-for, x-ws-collect-type
access-control-allow-credentials: true
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: visitorId=2e1c86f4ab8d5abf9423e3efb1f68ab21bb8954737171c16a79387a9cad6b6d9; Max-Age=31536000; Domain=ws.zoominfo.com; Path=/; Expires=Mon, 11 Dec 2023 07:42:13 GMT; Secure; SameSite=None
__cf_bm=ub0SXlR5SwtmYlyrn8SYeyvBPYdxRoKxj4oKhVluKAE-1670744533-0-AdOxHqueVFgtSKKhoC/JAnU4wQidGN4FX6cH0q2GcXHuuzteDNfCXLa/UflR3888Y0IiVcJhJdowhanIlqDJquw=; path=/; expires=Sun, 11-Dec-22 08:12:13 GMT; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
_cfuvid=O6B3zRic4rlg9b5rMxFc..AeyuE1bOBO9Ci2DaWPKCE-1670744533328-0-604800000; path=/; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 777c95144a48b523-OSL
X-Firefox-Spdy: h2
scout-cdn.salesloft.com/sl.js
104.18.222.90200 OK 2.4 kB URL HTTP/2 scout-cdn.salesloft.com/sl.js
IP 104.18.222.90:0
File type ASCII text, with very long lines (6105), with no line terminators
Hash 3b15cb661b86648c543c7a6fcafeaa54
6b755f5fdb4289df357da715ab7b4f3057102453
3d60ef08f0de78ccd67f409d2a0912319596d221d17726b1dfa359c72e9f98cc
GET /sl.js HTTP/1.1
Host: scout-cdn.salesloft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
content-type: application/javascript
x-amz-id-2: qf3ClpuTPcJIcaf9lDMbAj/C7KTb6wrTNVZvpPTuMcDn6J5apuWPupZ7ygGsCuih8R4rYooBk/g=
x-amz-request-id: N67V786YKMD3QBGX
last-modified: Mon, 13 Dec 2021 16:28:37 GMT
etag: W/"d74cc4825c8e333b2116da3fcc649db1"
x-amz-version-id: 6anzvBQcvmaBDc8BSO9zI6Th.IIiwArc
cf-cache-status: HIT
age: 2964
expires: Sun, 11 Dec 2022 11:42:13 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-origin: *
server: cloudflare
cf-ray: 777c95153a06b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash ba25d5673e3b8c2a5c7bdfdded2aa0e3
8fae026d5bbba3b202b9bfd83c7e6a6550e835b7
79a865d9f0a822768964da8aa10399f47b4280f9284c95f24466f76fc3fe473e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Dec 2022 10:24:05 GMT
Expires: Fri, 16 Dec 2022 10:24:04 GMT
Etag: "8fae026d5bbba3b202b9bfd83c7e6a6550e835b7"
Cache-Control: max-age=441110,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 777c9515888e0b51-OSL
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash ef019950fc6b50e9529e8b155a12106c
6afb749a3540fc752cf127ca7e517510098a4391
0b602212719a764b2b81f0253f2cec7e8470aae35eb22e95b5e9069b9e6706e8
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: nMuo6bW2rPslBd9QE2A3uYplnkCnFoehgnC/rXIgQQwmvJkUinqo3SrKOK5ntFgb0uu388riXIPc5OrwFC/dGw==
content-length: 27317
x-fb-trip-id: 1904183273
date: Sun, 11 Dec 2022 07:42:13 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 633462c5bc4d631d0f28109676f1c4ef
5e971024687c599a40822616459355ab75a69aa6
464513db00c7735b28f8140ecd0a3a0641fce311481f736a946a1ed8e8e881d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b10da7c40fd218e052cac5276be21d93
723dfdd1320ae0949196715d2d073320c4e4753d
ad3a489d2aa632e337fda00c7851dda9ecfb04798f432b6d5656f976c7ab3f2e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1900
Cache-Control: max-age=141631
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:13 GMT
Etag: "639508a8-1d7"
Expires: Mon, 12 Dec 2022 23:02:44 GMT
Last-Modified: Sat, 10 Dec 2022 22:31:04 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8f25179c098b4ec8a7969b67865af2fe
b64137b71759e965b2c05e0527d5d049a85e4600
8f78b026060fd86f485ec10f751250d80744a336f8a7a4bb5779731c536212a0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4977
Cache-Control: max-age=126677
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:13 GMT
Etag: "6394c239-117"
Expires: Mon, 12 Dec 2022 18:53:30 GMT
Last-Modified: Sat, 10 Dec 2022 17:30:33 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
tags.clickagy.com/data.js?rnd=62fe5c0e6ad95
104.18.2.235200 OK 14 kB URL HTTP/2 tags.clickagy.com/data.js?rnd=62fe5c0e6ad95
IP 104.18.2.235:0
Hash 78e51dbf7e9e3e63472e90ea5ad53e58
e61b9f9a17d7f0fcc34aaabd0438ece7964888e2
54d72df645b69dee627faec1fc2ac8e242cd826d14f782634eeb730b85639e1f
GET /data.js?rnd=62fe5c0e6ad95 HTTP/1.1
Host: tags.clickagy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 12:51:20 GMT
x-amz-version-id: eiH8z613.BRzukjofzW7pfMQ5QqyyUJw
content-encoding: gzip
etag: W/"39cbfce65efed785f567d3a64646eed5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7fYwpljcCbMim4xetRulZEUjmK9d3VV2gsSTGsAqS4XQMSDG5vCXNA==
age: 49638
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 777c9516bfea1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
151.101.246.109200 OK 997 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP 151.101.246.109:0
File type ASCII text, with very long lines (1839)
Hash b81408535edef4b73951fa7683a0ecb4
2be1041a686c8d5130ce96600bc7ec68538b4cd9
7b68a0f94a2376708329d7fabc0000c92eb45755267bde5dc8983184b77f3ec7
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 11 Dec 2022 07:42:13 GMT
age: 1952694
x-served-by: cache-iad-kiad7000106-IAD, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 33, 179934
x-timer: S1670744534.688226,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 66e7ad76e3fdc021fe27020957faa466
d21ba82dcc34d74c892145da4393b79ce882cd84
52e739bf565aeda5c9f893317cc77d3099dd2a2f4b6a49f6b187e3d374a94acd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6243
Cache-Control: max-age=107789
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:13 GMT
Etag: "6394737f-139"
Expires: Mon, 12 Dec 2022 13:38:42 GMT
Last-Modified: Sat, 10 Dec 2022 11:54:39 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
i.vimeocdn.com/video/1277860281-b0168fe96d765de8b10665ba787d9abaa678d319cad814193?mw=1200&mh=500
151.101.246.109200 OK 8.3 kB URL HTTP/2 i.vimeocdn.com/video/1277860281-b0168fe96d765de8b10665ba787d9abaa678d319cad814193?mw=1200&mh=500
IP 151.101.246.109:0
File type ISO Media, AVIF Image\012- data
Hash 6cf8316f5c93e3a6693e69a576812bc4
fbb40ba2381b839cf863e6cc2f30c2d0b8c81baa
7ab49dfed706e2beef43f357c1e7bcf2831913fcf4de576d5fe980c7e3600ec8
GET /video/1277860281-b0168fe96d765de8b10665ba787d9abaa678d319cad814193?mw=1200&mh=500 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 6cf8316f5c93e3a6693e69a576812bc4
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-9kvr
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Sun, 11 Dec 2022 07:42:13 GMT
age: 1695428
x-served-by: cache-dfw-kdfw8210026-DFW, cache-hel1410028-HEL
x-cache: miss, HIT, HIT
x-cache-hits: 31, 1
x-timer: S1670744534.710616,VS0,VE1
vary: Accept
content-length: 8293
X-Firefox-Spdy: h2
scout.salesloft.com/r?tid=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ0IjoxMDc2OTJ9.bS4ww6gzzZ_JIyo8Vlo8dGaFBhRKPW6cZ-awrjr1pWg
54.86.57.22200 OK 41 B URL HTTP/2 scout.salesloft.com/r?tid=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ0IjoxMDc2OTJ9.bS4ww6gzzZ_JIyo8Vlo8dGaFBhRKPW6cZ-awrjr1pWg
IP 54.86.57.22:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 222a5a9c9cc1e5fbd0cf1ac80575e84a
7bfa5523eea9397486561d92847dc5cf5205836d
b37678e2c4e8452e51ee8902e176d670941b72bc06eaeeb951360f96322c6921
GET /r?tid=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ0IjoxMDc2OTJ9.bS4ww6gzzZ_JIyo8Vlo8dGaFBhRKPW6cZ-awrjr1pWg HTTP/1.1
Host: scout.salesloft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
content-type: application/json; charset=utf-8
content-length: 41
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.coro.net
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
x-request-id: ff231a86edc2eeba095094345a2cfeaa
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=7f470979-d71b-4eb7-a125-90dec3b1fcd8&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=59053402-c05f-42e2-b41c-71da6a0d8bd3&tw_document_href=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0got&type=javascript&version=2.3.29
104.244.42.5200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=7f470979-d71b-4eb7-a125-90dec3b1fcd8&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=59053402-c05f-42e2-b41c-71da6a0d8bd3&tw_document_href=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0got&type=javascript&version=2.3.29
IP 104.244.42.5:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=7f470979-d71b-4eb7-a125-90dec3b1fcd8&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=59053402-c05f-42e2-b41c-71da6a0d8bd3&tw_document_href=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0got&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=5805c4b7-c17e-43f6-ad71-ac6623c1b9b5; Max-Age=63072000; Expires=Tue, 10 Dec 2024 07:42:13 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: f3764be74fc718d2
strict-transport-security: max-age=0
x-response-time: 106
x-connection-hash: aca62aebc8a83efa1651b41023f87dc6daa569e2c0fa9c7f7cc6cf46b6fa3fcc
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 12 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=279AE12E614C653B1945F35960B96481; domain=.bing.com; expires=Fri, 05-Jan-2024 07:42:13 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B668618D6E0445028556A32ABFEF65E2 Ref B: OSL30EDGE0510 Ref C: 2022-12-11T07:42:13Z
date: Sun, 11 Dec 2022 07:42:13 GMT
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-5MVGMPSG6P>m=2oebu0&_p=1914565982&_gaz=1&cid=91328610.1670744532&ul=en-us&sr=1280x1024&_s=1&sid=1670744531&sct=1&seg=0&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&dt=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-5MVGMPSG6P>m=2oebu0&_p=1914565982&_gaz=1&cid=91328610.1670744532&ul=en-us&sr=1280x1024&_s=1&sid=1670744531&sct=1&seg=0&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&dt=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-5MVGMPSG6P>m=2oebu0&_p=1914565982&_gaz=1&cid=91328610.1670744532&ul=en-us&sr=1280x1024&_s=1&sid=1670744531&sct=1&seg=0&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&dt=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.coro.net
date: Sun, 11 Dec 2022 07:42:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-5MVGMPSG6P&cid=91328610.1670744532>m=2oebu0&aip=1
108.177.14.157204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-5MVGMPSG6P&cid=91328610.1670744532>m=2oebu0&aip=1
IP 108.177.14.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-5MVGMPSG6P&cid=91328610.1670744532>m=2oebu0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.coro.net
date: Sun, 11 Dec 2022 07:42:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
80vod-adaptive.akamaized.net/exp=1670748432~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=4ce12a49c0a15e83066d49f51a8025baca0378b205ffca5afd25e6cefe1d115d/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/45cedb9f,57e4b4cb,bca3a208,907f4d91,ae644a18,ba343669/master.json?query_string_ranges=1&base64_init=1
23.36.76.162200 OK 2.7 kB URL HTTP/1.1 80vod-adaptive.akamaized.net/exp=1670748432~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=4ce12a49c0a15e83066d49f51a8025baca0378b205ffca5afd25e6cefe1d115d/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/45cedb9f,57e4b4cb,bca3a208,907f4d91,ae644a18,ba343669/master.json?query_string_ranges=1&base64_init=1
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with very long lines (12350)
Hash 9d0198b4e0b5d1b9bd8aae1fa8b9e2a6
b92affc9249861870813578744d75a95bdc4f4d4
302c145571cd976641443c68bfb6ff41921cef82ff30047745b9517fd3425dab
GET /exp=1670748432~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=4ce12a49c0a15e83066d49f51a8025baca0378b205ffca5afd25e6cefe1d115d/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/45cedb9f,57e4b4cb,bca3a208,907f4d91,ae644a18,ba343669/master.json?query_string_ranges=1&base64_init=1 HTTP/1.1
Host: 80vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
origin-retrieved-hour: 1657897200
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 2716
Aka-c-hit: cache-hit
Cache-Control: max-age=31532454
Date: Sun, 11 Dec 2022 07:42:14 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.9e4c2417.1670744534.940c9ef
X-VIM-CACHEBC: EP:H11,E:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.162
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
s.adroll.com/j/QIYHMMZOTVBZLLJEM7VC4X/roundtrip.js
143.204.55.31200 OK 18 kB URL HTTP/1.1 s.adroll.com/j/QIYHMMZOTVBZLLJEM7VC4X/roundtrip.js
IP 143.204.55.31:0
File type ASCII text, with very long lines (1326)
Hash 35ee3c22253b172de626f2ed23c95a01
cbffac65d01005b9345d4c40d9ba97e9e595ae81
417106140c9ef8ddb32194155b9d159d47163bf9d8f6f1fea2dfde05a3334c6e
GET /j/QIYHMMZOTVBZLLJEM7VC4X/roundtrip.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 09 Dec 2022 06:43:21 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: jJIzZ1aTacqU6MW0pwD6MTWJtNjHvwjg
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 11 Dec 2022 07:42:14 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: W/"56a4f816e5b1ed2e398b9112e6050176"
Vary: Accept-Encoding
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: RefreshHit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RaB3tWTyzUGOXec0_UdN8a0Pnk6kYF0dMCYlXfzcLSgLX9FwfbP_BA==
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 3f31770041a60b825e57b4cd03a534f0
370a3f46ed91c7bd2d9fcd0a95653e9f280f3132
e8876aecc1a1c9210a638e0c4dc852fd31baf9f6ce52bf70b397e9a46ee49a1b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=111944
Date: Sun, 11 Dec 2022 07:42:14 GMT
Etag: "63948a28-1d7"
Expires: Mon, 12 Dec 2022 14:47:58 GMT
Last-Modified: Sat, 10 Dec 2022 13:31:20 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pLT2JLqzaVbxHAA9EIxW2KH8MvSJ59LjToBJnK9SebpQFyq0qFA7fA==
Age: 4598
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 3f31770041a60b825e57b4cd03a534f0
370a3f46ed91c7bd2d9fcd0a95653e9f280f3132
e8876aecc1a1c9210a638e0c4dc852fd31baf9f6ce52bf70b397e9a46ee49a1b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=112046
Date: Sun, 11 Dec 2022 07:42:14 GMT
Etag: "63948a28-1d7"
Expires: Mon, 12 Dec 2022 14:49:40 GMT
Last-Modified: Sat, 10 Dec 2022 13:31:20 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -cErDnU6lgttrzYhgRvNbCOQw9N02SryxE5jaOv9665GEszXoKHAjQ==
Age: 4700
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 3f31770041a60b825e57b4cd03a534f0
370a3f46ed91c7bd2d9fcd0a95653e9f280f3132
e8876aecc1a1c9210a638e0c4dc852fd31baf9f6ce52bf70b397e9a46ee49a1b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 11 Dec 2022 07:42:14 GMT
Last-Modified: Sun, 11 Dec 2022 06:23:29 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hNWFaGFMGWSc0XJynmy6tEwCzb0GrBfQ_IVmzXwjbguOxZhOeTBy-g==
Age: 4725
aorta.clickagy.com/data
52.87.86.241200 OK 82 B IP 52.87.86.241:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ba8d65c00c8917a6d8c0e5dd36e003f5
ffe9aeec3e34e77e989215172280fc2df29d2107
964609aad8a4e79bc70e6d6d6f3bc7d1071b5845cc18a4a6381c83590a79130b
POST /data HTTP/1.1
Host: aorta.clickagy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 283
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:14 GMT
content-type: application/json
content-length: 82
server: Aorta/20221205.a0953a8c4
x-aorta-host: f248162aa352
x-aorta-region: us-east-1
access-control-allow-credentials: true
access-control-allow-headers: Origin,cache-control,content-type,man,messagetype,soapaction
access-control-expose-headers: Set-Cookie
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: https://www.coro.net
access-control-max-age: 31536000
cache-control: no-cache, no-store, must-revalidate
expect: 0
content-encoding: gzip
X-Firefox-Spdy: h2
aorta.clickagy.com/liveramp_redir
52.87.86.241302 Found 0 B URL HTTP/2 aorta.clickagy.com/liveramp_redir
IP 52.87.86.241:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /liveramp_redir HTTP/1.1
Host: aorta.clickagy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 11 Dec 2022 07:42:14 GMT
content-type: application/json
content-length: 0
location: https://id.rlcdn.com/711861.gif
server: Aorta/20221205.a0953a8c4
x-aorta-host: 8cfb69d0b3c4
x-aorta-region: us-east-1
access-control-allow-credentials: true
access-control-allow-headers: Origin,cache-control,content-type,man,messagetype,soapaction
access-control-expose-headers: Set-Cookie
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin:
access-control-max-age: 31536000
cache-control: no-cache, no-store, must-revalidate
expect: 0
X-Firefox-Spdy: h2
aorta.clickagy.com/pixel.gif?clkgypv=jstag
52.87.86.241302 Found 0 B URL HTTP/2 aorta.clickagy.com/pixel.gif?clkgypv=jstag
IP 52.87.86.241:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?clkgypv=jstag HTTP/1.1
Host: aorta.clickagy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 11 Dec 2022 07:42:14 GMT
content-type: application/json
content-length: 0
location: https://sync.crwdcntrl.net/map/c=8545/tp=CKGY/tpid=c:3b49683b68be861543aeee01713fa50c/gdpr=0/gdpr_consent=false/?https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D120%26cm%3D%24%7Bprofile_id%7D
server: Aorta/20221205.a0953a8c4
x-aorta-host: 081f8c9abb86
x-aorta-region: us-east-1
access-control-allow-credentials: true
access-control-allow-headers: Origin,cache-control,content-type,man,messagetype,soapaction
access-control-expose-headers: Set-Cookie
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin:
access-control-max-age: 31536000
cache-control: no-cache, no-store, must-revalidate
expect: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP 142.250.74.131:0
Hash 0197f2cfba5a4ae5023b67f6ccef07df
1881c795ebb6951648e4bd27e4263bdb5d765cf1
bee4a1f90edc3b031ed93ec72605e3d6f1d019de80a6d0b18603b7392064e987
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP 142.250.74.131:0
Hash 0197f2cfba5a4ae5023b67f6ccef07df
1881c795ebb6951648e4bd27e4263bdb5d765cf1
bee4a1f90edc3b031ed93ec72605e3d6f1d019de80a6d0b18603b7392064e987
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.adroll.com/j/exp/QIYHMMZOTVBZLLJEM7VC4X/index.js
143.204.55.31302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/exp/QIYHMMZOTVBZLLJEM7VC4X/index.js
IP 143.204.55.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/exp/QIYHMMZOTVBZLLJEM7VC4X/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Sat, 10 Dec 2022 08:58:41 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/exp/index.js
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
Age: 81812
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FDwak7fOeu44ImkIvh21OYBYNnPXvZ6N-15A-3p4iSq2GBZAIMCqlg==
s.adroll.com/j/exp/index.js
143.204.55.31200 OK 28 B URL HTTP/1.1 s.adroll.com/j/exp/index.js
IP 143.204.55.31:0
File type ASCII text, with no line terminators
Hash 5816cced8568d223aa09d889f300692b
95cab5e474d7391762c3da5c7dc50fcf05df529f
f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52
GET /j/exp/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 28
Connection: keep-alive
Last-Modified: Fri, 14 Oct 2022 18:57:24 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: 3TnMO1iw0qw17MhnYw4sprJhuU7ahGp7
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 11 Dec 2022 01:02:06 GMT
Etag: "5816cced8568d223aa09d889f300692b"
Vary: Accept-Encoding
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
Age: 24011
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6M6B7lA6TfJGlx2REZRcqjylhLJB3ryCTDIGjZOHvewIuND9Sa3_NQ==
bat.bing.com/action/0?ti=211010448&tm=gtm002&Ver=2&mid=e2a1b37b-a0c9-4415-8f65-2bf1b0b511bf&sid=533eecc0792711edb4da9fe98fccd565&vid=533eee10792711ed9d1ec9d6c77a192b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&p=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&r=<=2401&evt=pageLoad&sv=1&rn=498834
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=211010448&tm=gtm002&Ver=2&mid=e2a1b37b-a0c9-4415-8f65-2bf1b0b511bf&sid=533eecc0792711edb4da9fe98fccd565&vid=533eee10792711ed9d1ec9d6c77a192b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&p=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&r=<=2401&evt=pageLoad&sv=1&rn=498834
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=211010448&tm=gtm002&Ver=2&mid=e2a1b37b-a0c9-4415-8f65-2bf1b0b511bf&sid=533eecc0792711edb4da9fe98fccd565&vid=533eee10792711ed9d1ec9d6c77a192b&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&p=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&r=<=2401&evt=pageLoad&sv=1&rn=498834 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=19BAE67C02166DFF361FF40B03E36CF2; domain=.bing.com; expires=Fri, 05-Jan-2024 07:42:14 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1C2749E0A2104BF29C1A70EEAB57FC27 Ref B: OSL30EDGE0510 Ref C: 2022-12-11T07:42:14Z
date: Sun, 11 Dec 2022 07:42:13 GMT
X-Firefox-Spdy: h2
hemsync.clickagy.com/external/hasHashes?clkgypv=jstag&cb=null
3.212.177.218200 OK 28 B URL HTTP/2 hemsync.clickagy.com/external/hasHashes?clkgypv=jstag&cb=null
IP 3.212.177.218:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 830cb026fae1a13104725d2b3100ec10
40188da405f4a93c90f0b5e060e0ccca8e483eba
4d32822dd4fd4e7b58950d7c693e301eaa19b29305077afaebc12852df7f4ee0
GET /external/hasHashes?clkgypv=jstag&cb=null HTTP/1.1
Host: hemsync.clickagy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:14 GMT
content-type: text/plain; charset=utf-8
content-length: 28
access-control-allow-origin: https://www.coro.net
vary: origin
access-control-allow-credentials: true
access-control-expose-headers: content-length, last-modified, expires, content-type
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP 54.230.111.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.coro.net/
Origin: https://www.coro.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sun, 11 Dec 2022 02:33:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eBJigH6PwnfTutQXCyQOs7n3J6cg-lTc2h91w9EKd6Ddo5sas_5SuA==
age: 18533
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP 54.230.111.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.coro.net/
Origin: https://www.coro.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Sun, 11 Dec 2022 02:33:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nEnZ8dVDX_7V-eTdGWQOb5tum3Opze8V1AI4e7SdM8yP-xvG0XBohQ==
age: 18533
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a15de23015872f999e7b4fe1ff3aa1d2
10a51a76a6f0fb1c146077abb1f70b7e208a1751
26ddae77e27f7c29f921edc208816c5f5d2b10621d31bebd7c3fa3bd80e23a5a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP 54.230.111.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.coro.net/
Origin: https://www.coro.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sun, 11 Dec 2022 02:33:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4fsD7YXd5GBhU1QPO7GRUD-9rIbTC5CVDtu1_HyKZmLZ9YF2u_GSLQ==
age: 18533
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP 54.230.111.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.coro.net/
Origin: https://www.coro.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sun, 11 Dec 2022 02:33:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XhC-HOLC8JaPvmTQxoz6ovW2zvzBDtny8hvc6FtjsvIQfTvJdC0UuQ==
age: 18533
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
54.230.111.112200 OK 374 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP 54.230.111.112:0
Hash dd942693f796ec5a2a2ac4374c06d860
c48481affbaf98d7b8968346f2132021c3ab19de
4370b0c3af6df5b2d5dc421a9f8a86c1a758622f1bebf8ab65622167ac955be1
GET /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 11 Dec 2022 01:05:18 GMT
access-control-allow-origin: *
cache-control: public, max-age=25428
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qN4K2SpdOVQfCj5TwiYz8Jca8F0PxaQkV0qdZDxOf8MUVSHLcGsDEQ==
age: 23816
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-test-impression?beacon=1
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-test-impression?beacon=1 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sun, 11 Dec 2022 07:42:14 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
54.230.111.112200 OK 76 kB URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP 54.230.111.112:0
Hash f5067951ff0d75716bd1dc8d34761947
f6014c2630b2c43507762def53a4f5e854dd9f04
9c7754787492e01449bf0f762af74be96498596e23f22327ccc12b2a0caf21fc
GET /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 11 Dec 2022 01:05:18 GMT
access-control-allow-origin: *
cache-control: public, max-age=25428
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NwE98Br1iABxt_0Y_gCUQz34gb9lkXYuCGm9i_xXujReF1v4aLmziA==
age: 23816
X-Firefox-Spdy: h2
bat.bing.com/p/action/211010448.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/211010448.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/211010448.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=26D84B1100A86E9924B75966015D6F63; domain=.bing.com; expires=Fri, 05-Jan-2024 07:42:14 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FD3B366071E04723A88D1C442C8BA918 Ref B: OSL30EDGE0510 Ref C: 2022-12-11T07:42:14Z
date: Sun, 11 Dec 2022 07:42:13 GMT
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=1c338c7b69a1e40239a3ee1c0a15c1868873a2bb1670744532
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=1c338c7b69a1e40239a3ee1c0a15c1868873a2bb1670744532
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=1c338c7b69a1e40239a3ee1c0a15c1868873a2bb1670744532 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1417
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sun, 11 Dec 2022 07:42:14 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/872945354/?random=1670744531635&cv=11&fst=1670742000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&fmt=3&is_vtc=1&random=1208644119&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/872945354/?random=1670744531635&cv=11&fst=1670742000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&fmt=3&is_vtc=1&random=1208644119&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/872945354/?random=1670744531635&cv=11&fst=1670742000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tiba=Cyber%20Security%20Software%20-%20Endpoint%20Protection%20-%20Cloud%20Security%20-%20AI%20Security&fmt=3&is_vtc=1&random=1208644119&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 11 Dec 2022 07:42:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=1c338c7b69a1e40239a3ee1c0a15c1868873a2bb1670744532
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=1c338c7b69a1e40239a3ee1c0a15c1868873a2bb1670744532
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=1c338c7b69a1e40239a3ee1c0a15c1868873a2bb1670744532 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1723
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Sun, 11 Dec 2022 07:42:14 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
player-telemetry.vimeo.com/player-events/log/play
34.120.202.204200 OK 0 B URL HTTP/2 player-telemetry.vimeo.com/player-events/log/play
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /player-events/log/play HTTP/1.1
Host: player-telemetry.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 648
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
content-type: text/html; charset=UTF-8
date: Sun, 11 Dec 2022 07:42:14 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
scout.salesloft.com/i
54.86.57.22200 OK 48 B IP 54.86.57.22:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7600a6e90d35c6cf4dbb66afa1421d2c
5ae88bb36d1be7f8414aae8faaa3dd880c3c7399
19f368588e5f383f42ef1739e2ec68ed346173a78bbb244ff84a497a70443510
GET /i HTTP/1.1
Host: scout.salesloft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:14 GMT
content-type: application/json; charset=utf-8
content-length: 48
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.coro.net
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
x-request-id: 48b77ee40c2ae4790bcc3ccb89f43380
set-cookie: site_identity=971fd434-5ff7-48ef-b93d-3522f9f28ad5; path=/; expires=Mon, 11 Dec 2023 07:42:14 GMT; max-age=31536000; HttpOnly
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=368130%2C490106&time=1670744531991&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=368130%2C490106&time=1670744531991&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=368130%2C490106&time=1670744531991&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D368130%252C490106%26time%3D1670744531991%26url%3Dhttps%253A%252F%252Fwww.coro.net%252F%253FmsID%253Dab31266b-3b59-4fc3-9841-378f38d3fd58%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQLzK6uUPquRBAAAAYUAIm4VCmwAgxcCwGkZuCBdQrhHK3dsJ9rYdWPZJLP8k2ryKW-EjIOcetvJsg; Max-Age=2592000; Expires=Tue, 10 Jan 2023 07:42:14 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJfse0YmfYW3wAAAYUAIm4VErRkYcK3Cj4aIXrcrQjzpR7ayDtN7vl_zRm6Yy0eGyutoKFiRqolLQHehHbI9A; Max-Age=2592000; Expires=Tue, 10 Jan 2023 07:42:14 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&0d8a9257-a96f-4768-885d-733db2980343"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 11-Dec-2023 07:42:14 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2433:u=1:x=1:i=1670744534:t=1670830934:v=2:sig=AQHCJxXpi2DxMKiJm2KbHE_VhVM01gbC"; Expires=Mon, 12 Dec 2022 07:42:14 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXviIZ96F2huSvgOEJs+A==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7B877ED994984617B03F83F8D9C97011 Ref B: OSL30EDGE0115 Ref C: 2022-12-11T07:42:14Z
date: Sun, 11 Dec 2022 07:42:13 GMT
content-length: 0
X-Firefox-Spdy: h2
80vod-adaptive.akamaized.net/exp=1670748432~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=4ce12a49c0a15e83066d49f51a8025baca0378b205ffca5afd25e6cefe1d115d/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-1.m4s?r=dXM%3D
23.36.76.162200 OK 346 kB URL HTTP/1.1 80vod-adaptive.akamaized.net/exp=1670748432~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=4ce12a49c0a15e83066d49f51a8025baca0378b205ffca5afd25e6cefe1d115d/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-1.m4s?r=dXM%3D
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
Size 346 kB (346435 bytes)
Hash 88f7287a4a5ff01e8d152d0b483ab64e
1b760c15010966dabcd8cba24768edfda5967196
aac11dd47c32740fd5b82327830995ba937ad19065cfaecde9bff855ddea5412
GET /exp=1670748432~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=4ce12a49c0a15e83066d49f51a8025baca0378b205ffca5afd25e6cefe1d115d/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-1.m4s?r=dXM%3D HTTP/1.1
Host: 80vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 346435
using-starlord: true
origin-retrieved-hour: 1657944000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31032461
Date: Sun, 11 Dec 2022 07:42:14 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.9e4c2417.1670744534.940ca02
X-VIM-CACHEBC: EP:H11,E:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.162
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
ocsp.pki.goog/s/gts1d4/E4colUoO91Q
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/E4colUoO91Q
IP 142.250.74.131:0
Hash 0197f2cfba5a4ae5023b67f6ccef07df
1881c795ebb6951648e4bd27e4263bdb5d765cf1
bee4a1f90edc3b031ed93ec72605e3d6f1d019de80a6d0b18603b7392064e987
POST /s/gts1d4/E4colUoO91Q HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7064f6619ec94ac742915441ddf9be63
07864ef6316dfb3bfd38d602d2c38d237da8e61e
501f0b2261360de41668fde33f0518321c9335d5e1eab0f4a1014f75e061cca1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Dec 2022 07:42:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.hs-banner.com/v2/4165851/banner.js
104.18.33.171200 OK 63 kB URL HTTP/2 js.hs-banner.com/v2/4165851/banner.js
IP 104.18.33.171:0
File type ASCII text, with very long lines (65047)
Hash a10cfbb124fd29095e02581ac82bc4b5
a21b407b8088b181d9c4d5ab9ca1b524b7c7cb73
a0955146a7ca9f6ba387fd7cdc1a90eb77600d011a63c2f2b4d6ca82285d3174
GET /v2/4165851/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: DTYpSs/Bmv8b5qxuRpPtHVRRslAAMEQBnmRTqBCkS1DzHUmdgPSyo9nth8e0LDlpiD09Ufe3Csw=
x-amz-request-id: QJ5ECC9E884GTPXV
last-modified: Thu, 08 Dec 2022 21:00:11 GMT
etag: W/"0cbcf2567b049449e540b39f11f3cff1"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: .oikc192ZXFGLWwwbfks_RIMjBkSmDfH
access-control-allow-origin: https://www.coro.net
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Sun, 11 Dec 2022 07:47:13 GMT
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 777c9512ce940b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 1fe5c40e17042b6471c80cbfda35f6bf
8ba1a479d59cdba22bb1e2683134e5836bc0d78e
948ad7cab96f37f240f8ebd4e20cc47762c9981c52d75d3fc34ef192ca035159
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142451
Date: Sun, 11 Dec 2022 07:42:14 GMT
Etag: "6395089a-1d7"
Expires: Mon, 12 Dec 2022 23:16:25 GMT
Last-Modified: Sat, 10 Dec 2022 22:30:50 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: f-GUXJF5MU0hfjkXx-LyynVrDS0kV8NBcBUTgOdvMViqB-3GYOZxlQ==
Age: 2735
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=7f470979-d71b-4eb7-a125-90dec3b1fcd8&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=59053402-c05f-42e2-b41c-71da6a0d8bd3&tw_document_href=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0got&type=javascript&version=2.3.29
104.244.42.67200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=7f470979-d71b-4eb7-a125-90dec3b1fcd8&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=59053402-c05f-42e2-b41c-71da6a0d8bd3&tw_document_href=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0got&type=javascript&version=2.3.29
IP 104.244.42.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=7f470979-d71b-4eb7-a125-90dec3b1fcd8&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=59053402-c05f-42e2-b41c-71da6a0d8bd3&tw_document_href=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0got&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:14 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_ZTWNjy4e3RC8/kd51kYsLw=="; Max-Age=63072000; Expires=Tue, 10 Dec 2024 07:42:14 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: cf862b386559f409
strict-transport-security: max-age=631138519
x-response-time: 105
x-connection-hash: 90fde3707dbb43129fbbe30c1fad5aa5be3adb74e0d77c8fc961878de102ffde
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 216a1b0887023b97bb9cda2c8b2261e2
2da4ce21bdaefc5163bbeb204592b8cbdd18f7c6
03c95af13f3f1a64559eb24daaed345c42ac6f2408404cd4e8afe6aa8c965d73
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 01:44:17 GMT
Expires: Sun, 18 Dec 2022 01:44:16 GMT
Etag: "2da4ce21bdaefc5163bbeb204592b8cbdd18f7c6"
Cache-Control: max-age=582721,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 777c951cad3c0b51-OSL
www.facebook.com/tr/?id=401120693762451&ev=PageView&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&rl=&if=false&ts=1670744533211&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1670744533210.1374809264&it=1670744532349&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=401120693762451&ev=PageView&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&rl=&if=false&ts=1670744533211&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1670744533210.1374809264&it=1670744532349&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=401120693762451&ev=PageView&dl=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&rl=&if=false&ts=1670744533211&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1670744533210.1374809264&it=1670744532349&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 11 Dec 2022 07:42:14 GMT
X-Firefox-Spdy: h2
d.adroll.com/consent/check/QIYHMMZOTVBZLLJEM7VC4X?pv=96498029387.8&arrfrr=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&_s=bba52449308af1fe161e2f61bb0eb70c&_b=2
52.209.35.32200 OK 462 B URL HTTP/2 d.adroll.com/consent/check/QIYHMMZOTVBZLLJEM7VC4X?pv=96498029387.8&arrfrr=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&_s=bba52449308af1fe161e2f61bb0eb70c&_b=2
IP 52.209.35.32:0
File type ASCII text, with very long lines (462), with no line terminators
Hash 0e809153d05b6f7a9fb1c1963b9d5ebc
e14f9a84cf24aadff4d93fc8d2a0d9092837bd87
2396eb5921776e4ba06d663d4df5279cc751b35fdc9619a52553e37cb15d54c6
GET /consent/check/QIYHMMZOTVBZLLJEM7VC4X?pv=96498029387.8&arrfrr=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&_s=bba52449308af1fe161e2f61bb0eb70c&_b=2 HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:14 GMT
content-type: application/javascript
content-length: 462
server: nginx/1.22.0
X-Firefox-Spdy: h2
id.rlcdn.com/711861.gif
35.244.174.68451 Unavailable For Legal Reasons 0 B IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /711861.gif HTTP/1.1
Host: id.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Sun, 11 Dec 2022 07:42:14 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 042000eaaaa63e127e9f858602b11dcd
c58ba99af629aadf3557b0bb561080c157421c17
3f5dbbc5e6f57b6e4356c0de5226ba2bb1b809a770141d4e4d7ecf800189ead6
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 11 Dec 2022 07:42:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 10 Dec 2022 22:09:57 GMT
Expires: Sun, 11 Dec 2022 22:09:57 GMT
ETag: "c58ba99af629aadf3557b0bb561080c157421c17"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
sync.crwdcntrl.net/map/c=8545/tp=CKGY/tpid=c:3b49683b68be861543aeee01713fa50c/gdpr=0/gdpr_consent=false/?https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D120%26cm%3D%24%7Bprofile_id%7D
52.49.92.250404 Not Found 49 B URL HTTP/2 sync.crwdcntrl.net/map/c=8545/tp=CKGY/tpid=c:3b49683b68be861543aeee01713fa50c/gdpr=0/gdpr_consent=false/?https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D120%26cm%3D%24%7Bprofile_id%7D
IP 52.49.92.250:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /map/c=8545/tp=CKGY/tpid=c:3b49683b68be861543aeee01713fa50c/gdpr=0/gdpr_consent=false/?https%3A%2F%2Faorta.clickagy.com%2Fpixel.gif%3Fclkgypv%3Dpxl%26ch%3D120%26cm%3D%24%7Bprofile_id%7D HTTP/1.1
Host: sync.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Sun, 11 Dec 2022 07:42:14 GMT
content-type: image/gif
content-length: 49
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.18.12
access-control-allow-origin: *
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D368130%252C490106%26time%3D1670744531991%26url%3Dhttps%253A%252F%252Fwww.coro.net%252F%253FmsID%253Dab31266b-3b59-4fc3-9841-378f38d3fd58%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D368130%252C490106%26time%3D1670744531991%26url%3Dhttps%253A%252F%252Fwww.coro.net%252F%253FmsID%253Dab31266b-3b59-4fc3-9841-378f38d3fd58%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D368130%252C490106%26time%3D1670744531991%26url%3Dhttps%253A%252F%252Fwww.coro.net%252F%253FmsID%253Dab31266b-3b59-4fc3-9841-378f38d3fd58%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.coro.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=368130%2C490106&time=1670744531991&url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&551d8a99-d925-456b-82ba-099afcf11146"; Domain=.linkedin.com; Expires=Mon, 11-Dec-2023 07:42:14 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202212110742147158ff53-1076-486d-8527-cbdd9a32d37dAQGzh3V_luH0KnF1iFiyHAqyJu5nZwF6"; Domain=.www.linkedin.com; Expires=Mon, 11-Dec-2023 07:42:14 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzA3NDQ1MzQ7MjswMjG4fWcZXYhgk5tXh9JKixugghHuo5W33K6Soii1yka1lQ==; Domain=.linkedin.com; Expires=Fri, 09 Jun 2023 07:42:14 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2433:u=1:x=1:i=1670744534:t=1670830934:v=2:sig=AQHCJxXpi2DxMKiJm2KbHE_VhVM01gbC"; Expires=Mon, 12 Dec 2022 07:42:14 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com onyx.www.linkedin.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXviIaA5BYTIgOLu8frkA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B509CF3CD1F141A08E17CA10F9A79670 Ref B: OSL30EDGE0115 Ref C: 2022-12-11T07:42:14Z
date: Sun, 11 Dec 2022 07:42:13 GMT
content-length: 0
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-RHLs51mDdNxKx.js
54.230.111.4200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-RHLs51mDdNxKx.js
IP 54.230.111.4:0
Hash 58adde740b5d2e0f653ab44f1c9fa943
abe7bb45b42a9f39b8a400d060a022587d6f6dba
010c56a300b0d8e8dd463a75225d1b49e38de03cc0b421038075c9f4dedcdacd
GET /rules-p-RHLs51mDdNxKx.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Thu, 13 Oct 2022 22:57:19 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Sun, 11 Dec 2022 07:42:15 GMT
cache-control: max-age=3600
etag: "58adde740b5d2e0f653ab44f1c9fa943"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rt_DmheGXWjjGEjyUrfu_xhkjBsMHSW1czdTP5vo0XztAe1nJ0YWYQ==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 216a1b0887023b97bb9cda2c8b2261e2
2da4ce21bdaefc5163bbeb204592b8cbdd18f7c6
03c95af13f3f1a64559eb24daaed345c42ac6f2408404cd4e8afe6aa8c965d73
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 11 Dec 2022 07:42:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 01:44:17 GMT
Expires: Sun, 18 Dec 2022 01:44:16 GMT
Etag: "2da4ce21bdaefc5163bbeb204592b8cbdd18f7c6"
Cache-Control: max-age=582721,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 777c951e6e3c0b51-OSL
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
54.230.111.112200 OK 62 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP 54.230.111.112:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d39abb34da93ec5faa48669ac4788977
cc2627a86b99e91540251b6fb7e17a9b1faa1ee7
b329d16bd7e06de93beac4a9e4d67b8be6d1c944b7b8e398b929460f73b7c4ce
GET /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 11 Dec 2022 01:05:18 GMT
access-control-allow-origin: *
cache-control: public, max-age=25428
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EkIIsBIjaI_UwWx9cM5XrYTMJ1HxUrCchKkurA9etpMYlj5ny5QRsw==
age: 23816
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=2046572270;source=gtm;rf=0;a=p-RHLs51mDdNxKx;url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58;uht=2;fpan=1;fpa=P0-646588899-1670744532105;pbc=;ns=0;ce=1;qjs=1;qv=b2bd41b7-20221206125257;cm=;gdpr=0;ref=;d=coro.net;dst=0;et=1670744533487;tzo=0;ogl=locale.en_US%2Ctype.website%2Ctitle.All%20in%20one%20Cyber%20Protection%2Cdescription.Coro%20is%20an%20AI%20based%20cyber%20security%20software%20solution%20for%20businesses%252E%20Coro%20provid%2Curl.https%3A%2F%2Fwww%252Ecoro%252Enet%2F%2Csite_name.Coro%2Cimage.https%3A%2F%2Fwww%252Ecoro%252Enet%2Fwp-content%2Fuploads%2F2021%2F11%2Fdefault-social%252Epng%2Cimage%3Awidth.1640%2Cimage%3Aheight.624%2Cimage%3Atype.image%2Fpng;ses=510b1243-6625-4e41-b4ed-88aa299e559c
91.228.74.206200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=2046572270;source=gtm;rf=0;a=p-RHLs51mDdNxKx;url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58;uht=2;fpan=1;fpa=P0-646588899-1670744532105;pbc=;ns=0;ce=1;qjs=1;qv=b2bd41b7-20221206125257;cm=;gdpr=0;ref=;d=coro.net;dst=0;et=1670744533487;tzo=0;ogl=locale.en_US%2Ctype.website%2Ctitle.All%20in%20one%20Cyber%20Protection%2Cdescription.Coro%20is%20an%20AI%20based%20cyber%20security%20software%20solution%20for%20businesses%252E%20Coro%20provid%2Curl.https%3A%2F%2Fwww%252Ecoro%252Enet%2F%2Csite_name.Coro%2Cimage.https%3A%2F%2Fwww%252Ecoro%252Enet%2Fwp-content%2Fuploads%2F2021%2F11%2Fdefault-social%252Epng%2Cimage%3Awidth.1640%2Cimage%3Aheight.624%2Cimage%3Atype.image%2Fpng;ses=510b1243-6625-4e41-b4ed-88aa299e559c
IP 91.228.74.206:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=2046572270;source=gtm;rf=0;a=p-RHLs51mDdNxKx;url=https%3A%2F%2Fwww.coro.net%2F%3FmsID%3Dab31266b-3b59-4fc3-9841-378f38d3fd58;uht=2;fpan=1;fpa=P0-646588899-1670744532105;pbc=;ns=0;ce=1;qjs=1;qv=b2bd41b7-20221206125257;cm=;gdpr=0;ref=;d=coro.net;dst=0;et=1670744533487;tzo=0;ogl=locale.en_US%2Ctype.website%2Ctitle.All%20in%20one%20Cyber%20Protection%2Cdescription.Coro%20is%20an%20AI%20based%20cyber%20security%20software%20solution%20for%20businesses%252E%20Coro%20provid%2Curl.https%3A%2F%2Fwww%252Ecoro%252Enet%2F%2Csite_name.Coro%2Cimage.https%3A%2F%2Fwww%252Ecoro%252Enet%2Fwp-content%2Fuploads%2F2021%2F11%2Fdefault-social%252Epng%2Cimage%3Awidth.1640%2Cimage%3Aheight.624%2Cimage%3Atype.image%2Fpng;ses=510b1243-6625-4e41-b4ed-88aa299e559c HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:15 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=639589d7-05db9-96f09-44487; expires=Thu, 11-Jan-2024 07:42:15 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
80vod-adaptive.akamaized.net/exp=1670748432~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=4ce12a49c0a15e83066d49f51a8025baca0378b205ffca5afd25e6cefe1d115d/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-2.m4s?r=dXM%3D
23.36.76.162200 OK 284 kB URL HTTP/1.1 80vod-adaptive.akamaized.net/exp=1670748432~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=4ce12a49c0a15e83066d49f51a8025baca0378b205ffca5afd25e6cefe1d115d/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-2.m4s?r=dXM%3D
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
Size 284 kB (284464 bytes)
Hash 6c6ea70471f29ee062d90db63b79ba48
3c857f4eac5024c94c88ca186c12792450848cf8
9185e8722acf2100579bae582dcd9e7a0e49a95b6098fc3aa9ca03bdab275344
GET /exp=1670748432~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=4ce12a49c0a15e83066d49f51a8025baca0378b205ffca5afd25e6cefe1d115d/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-2.m4s?r=dXM%3D HTTP/1.1
Host: 80vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 284464
using-starlord: true
origin-retrieved-hour: 1657105200
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=31032518
Date: Sun, 11 Dec 2022 07:42:15 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.9e4c2417.1670744535.940ca04
X-VIM-CACHEBC: EP:H11,E:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.162
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
80vod-adaptive.akamaized.net/exp=1670748432~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=4ce12a49c0a15e83066d49f51a8025baca0378b205ffca5afd25e6cefe1d115d/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-3.m4s?r=dXM%3D
23.36.76.162200 OK 387 kB URL HTTP/1.1 80vod-adaptive.akamaized.net/exp=1670748432~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=4ce12a49c0a15e83066d49f51a8025baca0378b205ffca5afd25e6cefe1d115d/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-3.m4s?r=dXM%3D
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
Size 387 kB (386992 bytes)
Hash 9dfc92e6bd1761342c566421da9d7231
1f14137abff028b1d21f8ffc35926f42c5a9c4f9
4ef1eb18154bf41e0cf7ab1872ab0e65d212a316ad4a48050eca97f5ff04d3b8
GET /exp=1670748432~acl=%2F0968ce3e-6bdf-4e7b-b8c9-4145d2725897%2F%2A~hmac=4ce12a49c0a15e83066d49f51a8025baca0378b205ffca5afd25e6cefe1d115d/0968ce3e-6bdf-4e7b-b8c9-4145d2725897/sep/video/ba343669/chop/segment-3.m4s?r=dXM%3D HTTP/1.1
Host: 80vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 386992
using-starlord: true
origin-retrieved-hour: 1656770400
Access-Control-Max-Age: 86400
timing-allow-origin: *
Aka-c-hit: cache-hit
Cache-Control: max-age=30448435
Date: Sun, 11 Dec 2022 07:42:15 GMT
Connection: keep-alive
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
AK-REFERENCE-ID: 0.9e4c2417.1670744535.940ca16
X-VIM-CACHEBC: EP:H11,E:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.162
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=4165851
104.17.200.204200 OK 0 B URL HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=4165851
IP 104.17.200.204:0
GET /hs-script-loader-public/v1/config/pixel/json?portalId=4165851 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
content-type: application/json;charset=utf-8
cf-ray: 777c9516687db506-OSL
access-control-allow-origin: https://www.coro.net
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: 45744be3-30e4-477d-beac-6c420e2d6bd1
x-trace: 2BFE2DEBD491CEE17DAD329FB8467B15783407BABF000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=65lBOpV2wZgwwGXdezx0jna%2B4UmBnoG6RdeAovixewqn6zHiFFo03aaN6VkFkUOHl8SyNzAPzE3G5JGMXa1zARNiGp6kHZjNkUF0Y%2BItHuktuCZy5Iy2v9q%2BWsLNDxwB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.usemessages.com/conversations-embed.js
104.17.237.204200 OK 0 B URL HTTP/2 js.usemessages.com/conversations-embed.js
IP 104.17.237.204:0
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:12 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Fri, 09 Dec 2022 06:01:32 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: 76AcXrHM1.CdgwyluQJL2sQo.MAbFB2V
etag: W/"656fa9a50197c920df0a2d0ac18e9d1e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 68a3b1d5c75429221abc685a453afb60.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: 2MvynTiqusEFhfEaxkyrG3RfhDYpTASunkOaO35KGfdkPMocf_-6EQ==
age: 343
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.11519/bundles/project.js&cfRay=7776fc8eab150b45-IAD
x-hs-target-asset: conversations-embed/static-1.11519/bundles/project.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 777c9512b9c0b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hsadspixel.net/fb.js
104.17.116.176200 OK 0 B IP 104.17.116.176:0
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:12 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Dec 2022 03:25:35 UTC
etag: W/"cac538694d8cb071669002abe101c1fa"
x-amz-server-side-encryption: AES256
x-amz-version-id: uc7chkM909y9_fdLpHcf_jlYEUuyZ4oj
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f01dafb3bec9893b47152910d47900a4.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: NdC-n7tLIJCSy8u3NXMFAteKxKdIz2_NF6DGPpw5Adgs4zBc-toSqg==
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=adsscriptloaderstatic/static-1.303/bundles/pixels-release.js&cfRay=775e55407a51d953-IAD
x-hs-target-asset: adsscriptloaderstatic/static-1.303/bundles/pixels-release.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 407
server: cloudflare
cf-ray: 777c9512d897b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.206200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.206:0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "KvGSi9leJgKNKEGESzHjYw=="
expires: Sun, 18 Dec 2022 07:42:13 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
forms.hubspot.com/collected-forms/v1/config/json?portalId=4165851&utk=
104.19.155.83200 OK 0 B URL HTTP/2 forms.hubspot.com/collected-forms/v1/config/json?portalId=4165851&utk=
IP 104.19.155.83:0
GET /collected-forms/v1/config/json?portalId=4165851&utk= HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: 605d3609-2b6d-4882-ba75-42d74cc2084a
access-control-allow-credentials: false
access-control-allow-origin: https://www.coro.net
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=g2ABL7CIMRAp63TCTwvC98oNHQRAwrGHP5_seyZPU9U-1670744533-0-AXcfitO1erzZkwgszdvRRRqNA6NhDdXRNNm7Jp8dHpSoXac/bXWzpxKaHZ7BERt3MknvZfKsA/WKDPP65hOqcDE=; path=/; expires=Sun, 11-Dec-22 08:12:13 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rCvCRS9TuaD%2BdR%2BrZmk0uBB6%2BT%2FVV5bngunza%2BoCMHeuZcJAh9PLPS8OJG1CjkehjLmnK0gGI4LMvgKOVJvpuXlxWA4L%2BvuSAiqkkXioKn9qiMzJltAgsBWG9NfMM06jEGXk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 777c95163869b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1670744700000/4165851.js
104.17.68.176200 OK 0 B URL HTTP/2 js.hs-analytics.net/analytics/1670744700000/4165851.js
IP 104.17.68.176:0
GET /analytics/1670744700000/4165851.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
content-type: text/javascript
x-amz-id-2: Hd7FJW1hDM4IbB0qEX7RblmJPONS135qzAcaM40erR+fBD4bje9vMHkWp+Hoy7oirWCXBrW6qTc=
x-amz-request-id: ASJVEQZPCEEJHK1T
last-modified: Thu, 01 Dec 2022 14:12:15 GMT
etag: W/"f5b7a0aa77242a1cee3f7731c1f316bb"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Sun, 11 Dec 2022 07:47:13 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 777c95163aca1c02-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hscollectedforms.net/collectedforms.js
104.17.127.171200 OK 0 B URL HTTP/2 js.hscollectedforms.net/collectedforms.js
IP 104.17.127.171:0
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Dec 2022 07:42:13 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Dec 2022 02:49:13 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: SN4HXBautbT5xHa4DdPckLpyluwLE8QR
etag: W/"349cabd549e2249f8fb6ac3ac6f08e00"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcfffcf7e0fc8cd9cfe4125369a9f036.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: cbVW9BXM9o2TWVpLnAvUXNasQrGgWhaLj3PfhqSCU5g6M7nly6PKAw==
cache-control: s-maxage=600, max-age=300
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.312/bundles/project.js&cfRay=7767e86a0cfbb4f3-ARN
x-hs-target-asset: collected-forms-embed-js/static-1.312/bundles/project.js
access-control-allow-origin: *
x-hs-cache-status: HIT
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 777c9512dae3b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
54.230.111.112200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/368130,490106/domain/coro.net/token
IP 54.230.111.112:0
GET /partner/368130,490106/domain/coro.net/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.coro.net
Connection: keep-alive
Referer: https://www.coro.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Sun, 11 Dec 2022 01:05:18 GMT
access-control-allow-origin: *
cache-control: public, max-age=25428
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lISR0VrGuakzY2EidRmuJ7YoYxpjMGPmWiFeSg8iIjQiwxuvg33mSw==
age: 23816
X-Firefox-Spdy: h2