Overview

URLroanoke.family/
IP 151.101.130.159 (United States)
ASN#54113 FASTLY
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-28 14:15:36 UTC
StatusLoading report..
IDS alerts0
Blocklist alert37
urlquery alerts No alerts detected
Tags None

Domain Summary (39)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.globalsign.com (1) 2075 2012-07-20 17:46:16 UTC 2020-05-02 20:58:10 UTC 104.18.20.226
syndication.twitter.com (1) 833 2013-09-20 01:46:47 UTC 2022-11-28 05:55:06 UTC 104.244.42.72
ocsp.pki.goog (21) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
img-getpocket.cdn.mozilla.net (7) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-11-28 05:49:37 UTC 142.250.74.3
s.pinimg.com (1) 732 2018-07-08 20:06:47 UTC 2020-05-03 19:20:21 UTC 23.38.200.197
www.google.com (1) 7 2016-03-22 03:56:07 UTC 2022-11-28 05:49:46 UTC 142.250.74.164
cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2020-08-10 12:12:39 UTC 151.101.85.229
www.facebook.com (1) 99 2012-05-21 00:23:41 UTC 2021-06-08 06:38:51 UTC 31.13.72.36
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
cdn.cityspark.com (1) 37866 2018-08-22 06:57:25 UTC 2020-03-20 10:21:22 UTC 152.199.21.175
fonts.gstatic.com (6) 0 2014-09-09 00:40:21 UTC 2022-11-28 05:49:11 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
connect.facebook.net (3) 139 2012-05-22 02:51:28 UTC 2020-02-17 13:26:09 UTC 31.13.72.12
tpc.googlesyndication.com (2) 126 2020-01-16 08:35:32 UTC 2022-11-27 23:03:20 UTC 142.250.74.33
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-28 05:55:58 UTC 34.102.187.140
s7.addthis.com (3) 1504 2012-05-21 03:34:04 UTC 2020-04-01 20:53:06 UTC 23.38.200.123
platform.twitter.com (2) 597 2012-05-21 03:34:05 UTC 2020-05-03 05:23:23 UTC 151.101.84.157
adservice.google.com (1) 76 2021-02-20 16:10:48 UTC 2022-11-28 06:28:47 UTC 142.250.74.98
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.148.77.40
cdnjs.cloudflare.com (2) 235 2015-04-17 20:46:33 UTC 2022-11-28 05:40:54 UTC 104.17.25.14
s.imgur.com (2) 28402 2012-06-28 00:08:01 UTC 2020-03-16 19:39:25 UTC 151.101.84.193
v1.addthisedge.com (1) 1721 No data No data 23.38.200.123
z.moatads.com (1) 374 2014-02-11 16:19:47 UTC 2020-02-15 21:59:06 UTC 23.38.201.146
pagead2.googlesyndication.com (2) 101 2021-02-20 15:52:05 UTC 2022-11-28 06:28:38 UTC 142.250.74.66
csp.azureedge.net (4) 34966 2018-06-13 19:07:31 UTC 2020-04-29 15:59:31 UTC 23.36.77.32
adservice.google.no (1) 96969 2018-06-19 23:38:38 UTC 2020-05-14 07:59:11 UTC 216.58.207.194
pixel.quantserve.com (1) 417 2018-12-15 05:23:00 UTC 2020-04-25 05:46:00 UTC 91.228.74.244
www.googletagmanager.com (2) 75 2013-05-22 02:07:37 UTC 2022-11-28 06:09:03 UTC 142.250.74.168
www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-11-28 06:20:04 UTC 142.250.74.174
p.cityspark.com (1) 23340 2018-08-23 01:17:11 UTC 2020-04-01 01:43:07 UTC 52.160.40.218
ct.pinterest.com (3) 852 2015-03-12 08:12:48 UTC 2019-06-15 13:15:46 UTC 151.101.84.84
m.addthis.com (1) 1448 2013-11-06 20:12:22 UTC 2020-03-27 07:44:36 UTC 23.38.200.123
roanoke.family (68) 0 2018-11-24 01:20:22 UTC 2022-11-28 09:30:33 UTC 151.101.130.159 Unknown ranking
r3.o.lencr.org (7) 344 No data No data 23.36.76.226
ocsp.digicert.com (11) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-28 05:46:10 UTC 34.117.237.239
googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-11-28 06:09:35 UTC 216.58.207.194
partner.googleadservices.com (1) 798 2012-10-03 01:04:21 UTC 2022-11-28 05:50:00 UTC 172.217.21.162
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-28 05:48:59 UTC 142.250.74.10

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-28 2 roanoke.family/ Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/contentstudio-plugin-master/_inc/main.css (...) Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/embedpress/Gutenberg/dist/blocks.style.bu (...) Phishing
2022-11-28 2 roanoke.family/ Phishing
2022-11-28 2 roanoke.family/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3 Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/wp-views/embedded/res/css/wpv-pagination. (...) Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/bb-plugin/css/jquery.magnificpopup.min.cs (...) Phishing
2022-11-28 2 roanoke.family/wp-includes/js/imagesloaded.min.js?ver=6.0.3 Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-fi (...) Phishing
2022-11-28 2 roanoke.family/wp-content/uploads/2021/02/image0-9-150x150.jpeg Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/bb-plugin/js/jquery.ba-throttle-debounce. (...) Phishing
2022-11-28 2 roanoke.family/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3 Phishing
2022-11-28 2 roanoke.family/wp-content/uploads/bb-plugin/cache/147b49b19e0cad98854f0240b (...) Phishing
2022-11-28 2 roanoke.family/wp-includes/js/backbone.min.js?ver=1.4.1 Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/wp-views/embedded/res/js/wpv-pagination-e (...) Phishing
2022-11-28 2 roanoke.family/wp-content/themes/bb-theme/js/theme.min.js?ver=1.7.11 Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/wp-views/vendor/toolset/toolset-common/re (...) Phishing
2022-11-28 2 roanoke.family/wp-content/uploads/bb-plugin/cache/24c8b22b6af93d5c878a9719f (...) Phishing
2022-11-28 2 roanoke.family/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.cs (...) Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/simple-social-buttons/assets/css/front.cs (...) Phishing
2022-11-28 2 roanoke.family/wp-content/themes/bb-theme-child/style.css?ver=6.0.3 Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/simple-social-buttons/assets/js/frontend- (...) Phishing
2022-11-28 2 roanoke.family/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=9.2.0 Phishing
2022-11-28 2 roanoke.family/wp-content/uploads/bb-plugin/cache/5-layout.js?ver=f6895918a (...) Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/embedpress/assets/js/front.js?ver=3.5.2 Phishing
2022-11-28 2 roanoke.family/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 Phishing
2022-11-28 2 roanoke.family/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 Phishing
2022-11-28 2 roanoke.family/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 Phishing
2022-11-28 2 roanoke.family/wp-includes/js/mediaelement/wp-playlist.min.js?ver=6.0.3 Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/al (...) Phishing
2022-11-28 2 roanoke.family/wp-content/themes/bb-theme/js/bootstrap.min.js?ver=1.7.11 Phishing
2022-11-28 2 roanoke.family/wp-content/plugins/woobox/woobox_requiresdk.js?ver=6.0.3 Phishing
2022-11-28 2 roanoke.family/wp-includes/css/dashicons.min.css?ver=6.0.3 Phishing
2022-11-28 2 roanoke.family/wp-content/themes/bb-theme/css/bootstrap.min.css?ver=1.7.11 Phishing
2022-11-28 2 roanoke.family/wp-includes/js/mediaelement/mediaelement-and-player.min.js?v (...) Phishing
2022-11-28 2 roanoke.family/wp-content/uploads/2018/05/water-fight-children-water-play-5 (...) Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 151.101.130.159
Date UQ / IDS / BL URL IP
2023-02-01 11:59:19 +0000 0 - 6 - 0 www.benningtongreen.co.uk/ 151.101.130.159
2023-01-28 20:01:01 +0000 0 - 2 - 0 www.doktor.se/ 151.101.130.159
2023-01-26 21:20:46 +0000 0 - 3 - 0 toronto.iabc.to/wp-login.php 151.101.130.159
2023-01-22 05:06:45 +0000 0 - 0 - 13 franosbarbershop.com/wp-content/verif.accs.se (...) 151.101.130.159
2023-01-14 22:19:11 +0000 0 - 0 - 2 infusetheplanet.com/wp-content/themes/twentys (...) 151.101.130.159


Last 5 reports on ASN: FASTLY
Date UQ / IDS / BL URL IP
2023-02-02 02:04:19 +0000 0 - 0 - 6 sneha8898.github.io/fbclone/ 185.199.108.153
2023-02-02 02:02:54 +0000 3 - 0 - 4 required-form.firebaseapp.com/next/posts/1005 (...) 199.36.158.100
2023-02-02 02:01:17 +0000 0 - 0 - 2 meghabhatt0529.github.io/NetflixClone/ 185.199.110.153
2023-02-02 01:54:56 +0000 3 - 0 - 3 zikoooooo3.firebaseapp.com/ 199.36.158.100
2023-02-02 01:54:36 +0000 3 - 0 - 3 zikoooooo3.web.app/ 199.36.158.100


Last 5 reports on domain: roanoke.family
Date UQ / IDS / BL URL IP
2023-01-05 01:37:25 +0000 5 - 0 - 42 roanoke.family/wp-content/online/tracking-pac (...) 151.101.130.159
2022-11-29 21:43:44 +0000 0 - 0 - 2 roanoke.family/works/zaz/webcss/ 151.101.130.159
2022-11-29 18:57:01 +0000 0 - 0 - 2 roanoke.family/works/zaz/webcss/ 151.101.130.159
2022-11-29 16:39:16 +0000 0 - 0 - 2 roanoke.family/works/zaz/webcss/ 151.101.130.159
2022-11-29 03:01:46 +0000 1 - 0 - 10 roanoke.family/works/zaz/webcss/ 151.101.130.159


No other reports with similar screenshot

JavaScript

Executed Scripts (89)

Executed Evals (111)
#1 JavaScript::Eval (size: 2) - SHA256: 243a7b77913ebb81b27635fb1fed1270b6f08cfeebc52fea59040b68cc5b3f87
Si
#2 JavaScript::Eval (size: 19) - SHA256: 5421715bbdaf2550e31d10fc28d444310a8fe7147bbddecf0abb490358a1553b
/.*\d:\d\d | \d+$/g
#3 JavaScript::Eval (size: 569) - SHA256: 0c4a0500393046930927c8cb6c1658a5189684cbada8b55f936f8cbaa6067c38
0,
function(T, k, n, I, O, W, Z, F, N, r, S, X, w, x, JL, Y) {
    function nt(m, G) {
        for (; S < m;) F |= b(8, true, T) << S, S += 8;
        return G = F & (1 << m) - 1, F >>= (S -= m, m), G
    }
    for (JL = (W = (Z = (I = (X = q(T, 30), S = F = 0, (nt(3) | 0) + 1), nt(5)), w = 0, []), 0); w < Z; w++) k = nt(1), W.push(k), JL += k ? 0 : 1;
    for (x = (O = (n = ((JL | 0) - 1).toString(2).length, []), 0); x < Z; x++) W[x] || (O[x] = nt(n));
    for (r = 0; r < Z; r++) W[r] && (O[r] = q(T, 29));
    for (N = (Y = I, []); Y--;) N.push(E(T, q(T, 9)));
    V(85, T, function(m, G, xA, $A, YA) {
        for (G = (YA = (xA = [], []), 0); G < Z; G++) {
            if (!($A = O[G], W)[G]) {
                for (; $A >= xA.length;) xA.push(q(m, 30));
                $A = xA[$A]
            }
            YA.push($A)
        }
        m.G = ft(12, (m.j = ft(8, m, N.slice()), m), YA)
    }, X)
}
#4 JavaScript::Eval (size: 413) - SHA256: 694e8ad0c520a0ef8491b38838368a9185f0d87f148cbd7f7a64a4a4659e1bea
0, Wb = function(Q, C, u, A, R, J, T, k) {
    if (!A.v) {
        A.lV++;
        try {
            for (R = A.B, T = void 0, J = 0; --u;) try {
                if (k = void 0, A.j) T = aX(A.j, A);
                else {
                    if ((J = E(A, 494), J) >= R) break;
                    T = E(A, (k = q((l(248, A, J), A), 9), k))
                }(T && T[OW] & 2048 ? T(A, u) : hL(0, A, Q, [MO, 21, k]), t)(51, C, u, false, A, false)
            } catch (n) {
                E(A, 7) ? hL(22, A, Q, n) : l(7, A, n)
            }
            if (!u) {
                if (A.ZW) {
                    Wb(3, (A.lV--, 14), 112994546553, A);
                    return
                }
                hL(0, A, Q, [MO, 33])
            }
        } catch (n) {
            try {
                hL(22, A, Q, n)
            } catch (I) {
                d(A, ":", 6, I)
            }
        }
        A.lV--
    }
}
#5 JavaScript::Eval (size: 2) - SHA256: cd86af6dcfd57071af8bcd16656b027ed8dc2d56d2eff23fe934e580614d946c
cT
#6 JavaScript::Eval (size: 2) - SHA256: ce66470e18f3579ac7665d2a660da03089cd89698b57c5e900e8ba608bb394ee
$0
#7 JavaScript::Eval (size: 472) - SHA256: 6a217773e11d14ea59aab09036de41306737d845118d7d019bedb844e4047d45
Ct = function(Q, C, u, A, R, J, T, k, n, I, O, W) {
    return (R | 32) == ((R + 4 ^ 8) < R && (R - 9 | 18) >= R && (O = (T = J[C] << u | J[2 * (C | Q) - ~(C & Q) + ~(C | Q)] << 16 | J[~(C & 2) - 3 * ~(C | 2) + 2 * (~C ^ 2)] << 8, k = J[-2 * ~(C & 3) - A * (~C ^ 3) + 3 * (C | -4) + 3 * (~C | 3)], -~T + 2 * (~T & k) + (T | ~k))), R) && (O = W = function() {
        if (J.R == J) {
            if (J.l) {
                var Z = [QU, T, C, void 0, n, I, arguments];
                if (2 == k) var F = B(21, true, J, (L(0, Z, 21, J), u), u);
                else if (k == A) {
                    var N = !J.C.length;
                    (L(0, Z, 21, J), N) && B(16, true, J, u, u)
                } else F = T1(Z, ":", 52, J);
                return F
            }
            n && I && n.removeEventListener(I, W, AL)
        }
    }), O
}
#8 JavaScript::Eval (size: 253) - SHA256: 0752336674ca44bf7373e9bd7797d916bebcfaaef0ea79c9f0dc58372b6e856a
0,
function(T, k, n, I, O, W, Z, F, N) {
    t(50, 14, k, true, T, false) || (n = $0(8, 31, 1, T.R, 0), F = n.x9, W = n.Gw, Z = n.u, N = n.bV, O = Z.length, I = 0 == O ? new F[N] : 1 == O ? new F[N](Z[0]) : 2 == O ? new F[N](Z[0], Z[1]) : 3 == O ? new F[N](Z[0], Z[1], Z[2]) : 4 == O ? new F[N](Z[0], Z[1], Z[2], Z[3]) : 2(), l(W, T, I))
}
#9 JavaScript::Eval (size: 452) - SHA256: a019737575995757fcf29993e860623794c72b093a68f3dc5e206c083f322386
0, hL = function(Q, C, u, A, R, J, T, k, n, I) {
    if (!C.Hc) {
        if (n = ((T = E(C, (R = void 0, A && A[0] === MO && (Q = A[1], R = A[2], A = void 0), 116)), 0 == T.length) && (I = E(C, 248) >> u, T.push(Q, I >> 8 & 255, 255 - ~I + ~(I | 255)), void 0 != R && T.push(-~(R | 255) - (R & -256) + (R | -256))), ""), A && (A.message && (n += A.message), A.stack && (n += ":" + A.stack)), J = E(C, 34), J > u) {
            C.R = (k = (J -= (n = n.slice(0, ~(J & u) - ~(J | u) - 2 * (~J & u)), (n.length | 0) + u), n = gD(2, n, 63), C).R, C);
            try {
                M(C, g(2, n.length).concat(n), 375, 12)
            } finally {
                C.R = k
            }
        }
        l(34, C, J)
    }
}
#10 JavaScript::Eval (size: 131) - SHA256: 2785d90e19a92bef62cdd99abb421d06fc755a2832db7da6ae88d8e288b1ce88
0, XN = function(Q, C, u, A, R, J) {
    return (l(494, (Wb(3, ((J = E(A, 494), A.D) && J < A.B ? (l(494, A, A.B), Rs(494, u, A)) : l(494, A, u), C), R, A), A), J), E)(A, Q)
}
#11 JavaScript::Eval (size: 2) - SHA256: f6a89de4038a568f2bdb884f2196685476034b17741bf4c98b70fa05e50cadef
Dc
#12 JavaScript::Eval (size: 70) - SHA256: 21221f459bb1d5cdc6dc0b2ecb5e0097e6961d06e5786b0b52b614f10741dbff
0,
function(T, k, n, I) {
    l((n = (I = q((k = q(T, 8), T), 9), T.l[k]) && E(T, k), I), T, n)
}
#13 JavaScript::Eval (size: 75) - SHA256: 930a4bc3067357cf216891bbf6c5c48ac08c97c64e24ede98f39642a1fae1311
0,
function(T, k, n, I) {
    l((k = q(T, (n = q(T, (I = q(T, 31), 9)), 8)), k), T, E(T, I) | E(T, n))
}
#14 JavaScript::Eval (size: 2) - SHA256: e75b11da693d7bb5273985dcf9f02729455da7e7c80e54a0615e00ec2ae76d8e
pt
#15 JavaScript::Eval (size: 320) - SHA256: af9ce5b707fd338152bccc16db3923c578c7473823470eb755241379c08ade85
0,
function(T, k, n, I, O, W, Z, F, N, r) {
    for (N = 0, Z = [], n = O = 0; n < T.d.length;) {
        for (I = T.d[k = "", n++]; k.length != I;) {
            for (; T.M[N] == O;) k += A[T.M[++N]], N++;
            if (k.length == I) break;
            k += A[T[O++]]
        }
        if (r = T.d[n++]) F = 1 == r ? k : r.match(/=$/) ? r + k : "this." + r + "=" + k, W = eval(FN("0," + F)), 1 == r && (W[QU] = 371892), Z.push(W)
    }
    return delete T.d, delete(T.length = 0, T).M, Z
}
#16 JavaScript::Eval (size: 2) - SHA256: 688c5a4a65af33d6ddb7a8cb8e0d934e42d0f417a1b0fb6f755e050aa15a9dae
Rs
#17 JavaScript::Eval (size: 47) - SHA256: f90a58e28c623dca000085f464bd9ce0645c18a5d2a2a172534d768e5851ab3a
0,
function(T, k) {
    Rs((k = E(T, q(T, 31)), 494), k, T.R)
}
#18 JavaScript::Eval (size: 22) - SHA256: 063b61b1da22b3eb8fd461b3197cbf69b4063a5e820538e279ac1edfe1578107
0,
function(T) {
    os(3, T)
}
#19 JavaScript::Eval (size: 137) - SHA256: 2c5e9e91dda193e7eaf02db63ab28eb8a2d6e7de17bfdf37ea62bc2f07cf685c
0,
function(Q, C, u, A, R, J) {
    for (R = 0; R < Q.length; R++) J = Q.charAt ? (A = Q.charCodeAt(R), (A | 0) + (255 & ~A) - (255 ^ A)) : Q[R], C.push(J);
    C.d.push(Q.length, u)
}
#20 JavaScript::Eval (size: 1) - SHA256: a9f51566bd6705f7ea6ad54bb9deb449f795582d6529a0e22207b8981233ec58
E
#21 JavaScript::Eval (size: 133) - SHA256: 5942aa9c75d3103ff331c5c12ffb2526f213f05975d880f11dfd1cb91d8af7f8
0, E = function(Q, C, u) {
    if (void 0 === (u = Q.l[C], u)) throw [MO, 30, C];
    if (u.value) return u.create();
    return (u.create(5 * C * C + 1 * C + -82), u).prototype
}
#22 JavaScript::Eval (size: 65) - SHA256: 63a7a47055c612183f0fb17c042c48d26e3050b38e740178d4f75ab5a24e7112
0, Dc = function(Q, C, u, A) {
    M(C, g(Q, (u = (A = q(C, 31), q(C, 8)), E(C, A))), u)
}
#23 JavaScript::Eval (size: 211) - SHA256: 1073763debac890f269005426c6a9a6f0ebefb1d22f3283095c9d6423c830143
$0 = function(Q, C, u, A, R, J, T, k, n, I) {
    for (T = (J = q(A, (k = q((I = A[qE] || {}, A), C), I.Gw = q(A, 9), I.u = [], n = A.R == A ? (b(Q, true, A) | R) - u : 1, C)), R); T < n; T++) I.u.push(q(A, 9));
    for (I.bV = E(A, k); n--;) I.u[n] = E(A, I.u[n]);
    return I.x9 = E(A, J), I
}
#24 JavaScript::Eval (size: 79) - SHA256: d24713d90c6c5eed3b87cb4431354d2769e3f8bdd7c3c1b8da26812a62d959dc
0,
function(T, k, n, I, O) {
    l((n = (I = (O = q(T, (k = q(T, 31), 29)), E)(T, k), E)(T, O), O), T, n % I)
}
#25 JavaScript::Eval (size: 22) - SHA256: 24565cbb14758e808cf8242dfbe257e5a96843e36d237348fbb468b93b6e6b9e
0,
function(T) {
    os(7, T)
}
#26 JavaScript::Eval (size: 2) - SHA256: 9adf009b9ea42792e73e5dc86e9c9024489d74ad894c0a3acbc03095158eaabc
ft
#27 JavaScript::Eval (size: 288) - SHA256: 96e02c2adebef561909a3c54329d9d1f34a3dc017feee75294acb3c1b5a59c09
sW = function(Q, C, u, A, R, J, T, k, n, I, O, W) {
    C.push((J = Q[0] << 24 | Q[1] << 16, n = Q[2] << 8, (J & n) + ~(J & n) - ~J + (~J & n)) | Q[3]), C.push((k = (W = Q[4] << 24, O = Q[5] << 16, -~(W & O) + -2 - (~W ^ O)), A = Q[6] << 8, (k | 0) + ~k - ~(k | A)) | Q[7]), C.push((I = (T = Q[8] << 24, R = Q[9] << 16, (T | 0) + (R | 0) + ~T - (~T | R)), u = Q[10] << 8, ~(I & u) - 2 * ~(I | u) + (~I ^ u)) | Q[11])
}
#28 JavaScript::Eval (size: 165) - SHA256: 3887cadeb096c2866c2c8dfaff8ed7a05e49c1e8f2cd9d29cb506a327dd62e6a
0,
function(T, k, n, I, O, W, Z) {
    (W = q(T, (Z = (O = q(T, 29), q)(T, 9), 29)), T.R == T) && (n = E(T, Z), k = E(T, O), I = E(T, W), k[n] = I, 17 == O && (T.A = void 0, 2 == n && (T.g = cT(32, false, 8, T), T.A = void 0)))
}
#29 JavaScript::Eval (size: 98) - SHA256: 0094e0a904d0fbf293446a28e3e8264531a3db9c87593635b4c926c0dfc7c2bb
0,
function(T, k, n, I, O, W) {
    l((n = E(T, (I = (k = (O = q(T, (W = q(T, 31), 30)), q(T, 29)), E(T, O)), W)), k), T, n in I | 0)
}
#30 JavaScript::Eval (size: 291) - SHA256: cc1063b74883a1001e4e87e68373e6983ea6a6ea41a6a40d94b128a7fbf67a59
0,
function(T, k, n, I, O, W, Z, F, N, r, S, X, w, x) {
    if (!t(48, 14, k, true, T, true)) {
        if ("object" == tL("null", (x = E(T, (N = (I = (r = E(T, (S = q(T, (Z = q(T, (W = (O = q(T, 8), q(T, 8)), 8)), 9)), S)), E(T, O)), E(T, Z)), W)), "call"), I)) {
            for (w in n = [], I) n.push(w);
            I = n
        }
        for (N = (F = (X = 0, I.length), 0 < N ? N : 1); X < F; X += N) x(I.slice(X, (X | 0) + (N | 0)), r)
    }
}
#31 JavaScript::Eval (size: 262) - SHA256: 2a4f0396c7f7976b5effc180100214bbf45bafb489f3d028cf91c908ca84a636
0, TM = function(Q, C, u, A, R, J, T, k, n, I) {
    for (k = (I = (n = T[Q] | A, T[R] | A), A); 16 > k; k++) u = u >>> 8 | u << 24, u += J | A, n = n >>> 8 | n << 24, n += I | A, J = J << Q | J >>> C, u ^= I + 908, n ^= k + 908, J ^= u, I = I << Q | I >>> C, I ^= n;
    return [J >>> 24 & 255, J >>> 16 & 255, J >>> 8 & 255, J >>> A & 255, u >>> 24 & 255, u >>> 16 & 255, u >>> 8 & 255, u >>> A & 255]
}
#32 JavaScript::Eval (size: 35) - SHA256: 1e3606d95ce27d593157594820335681a9380f51a96147303cd8000e60a95e12
document.createElement('div').style
#33 JavaScript::Eval (size: 29) - SHA256: 53e5b7d706a350fe98d52499058624e15cddc1541f17370f94a899a386c50255
document.createElement('img')
#34 JavaScript::Eval (size: 91) - SHA256: 49da83c9a35fedc4ea7b56f4cf84a41209d74acfb7dcd4b8e6b405c789d00802
0,
function(T, k, n, I, O, W) {
    I = (k = E(T, (W = (n = q(T, (O = q(T, 31), 8)), q(T, 31)), n)), E)(T, O), l(W, T, I[k])
}
#35 JavaScript::Eval (size: 199) - SHA256: 7cca9bbaee3c5b8350b9ff02528e08b6758a18d3cb10dc099f1b2339aba65d76
0, ZY = function(Q, C, u, A, R, J, T, k, n, I) {
    if ((A & 61) == (A << 2 & 7 || (R = b(8, Q, u), R & 128 && (R = 128 + (R | -128) | b(8, Q, u) << C), I = R), A)) {
        for (n = (T = q(R, 29), C); u > C; u--) n = (J = n << 8, k = b(8, Q, R), (k | C) + (J ^ k) - (~J & k));
        l(T, R, n)
    }
    return I
}
#36 JavaScript::Eval (size: 79) - SHA256: ee2e616eaf81c9d41805bb7bfab5a746f75712826b78e70f1668ddb3abeb6921
0,
function(T, k, n, I, O) {
    l((n = (I = (O = q(T, (k = q(T, 31), 29)), E)(T, k), E)(T, O), O), T, n * I)
}
#37 JavaScript::Eval (size: 1) - SHA256: acac86c0e609ca906f632b0e2dacccb2b77d22b0621f20ebece1a4835b93f6f0
l
#38 JavaScript::Eval (size: 212) - SHA256: 2e23851a138573b2700c22b4763f6b75d6c3f2a9e5719d9175db8ef80188ae9f
0, Si = function(Q, C, u, A, R) {
    if (!(R = (A = C, D.trustedTypes), R) || !R.createPolicy) return A;
    try {
        A = R.createPolicy(u, {
            createHTML: KI,
            createScript: KI,
            createScriptURL: KI
        })
    } catch (J) {
        if (D.console) D.console[Q](J.message)
    }
    return A
}
#39 JavaScript::Eval (size: 206) - SHA256: 91152bd6707053b8c46f6554ac8446dc5650a5a29eb64096c136070bcc05de78
0,
function(T, k, n, I, O, W, Z, F, N, r) {
    (n = E(T, (k = E(T, (Z = E(T, (W = q(T, (O = q(T, (r = q(T, (N = q(T, 9), 31)), 8)), 30)), O)), r)), W)), F = E(T.R, N), 0 !== F) && (I = Ct(1, n, false, 1, 32, T, Z, 1, F, k), F.addEventListener(k, I, AL), l(296, T, [F, k, I]))
}
#40 JavaScript::Eval (size: 2) - SHA256: 57bbd14657f900e97ee7766c372c86ad8f1bf4ac67405187535581af710680b9
Ct
#41 JavaScript::Eval (size: 71) - SHA256: f3d308bca74e4059468f8ab5e66a50f1e344eeab2ac51705cd6d982503b36f33
0, Rs = function(Q, C, u) {
    l(Q, u, ((u.hU.push(u.l.slice()), u).l[Q] = void 0, C))
}
#42 JavaScript::Eval (size: 290) - SHA256: be155481fb8cf1d60f3ebe387ee4705098a9224529609becb4c34356fd19bf76
0, sW = function(Q, C, u, A, R, J, T, k, n, I, O, W) {
    C.push((J = Q[0] << 24 | Q[1] << 16, n = Q[2] << 8, (J & n) + ~(J & n) - ~J + (~J & n)) | Q[3]), C.push((k = (W = Q[4] << 24, O = Q[5] << 16, -~(W & O) + -2 - (~W ^ O)), A = Q[6] << 8, (k | 0) + ~k - ~(k | A)) | Q[7]), C.push((I = (T = Q[8] << 24, R = Q[9] << 16, (T | 0) + (R | 0) + ~T - (~T | R)), u = Q[10] << 8, ~(I & u) - 2 * ~(I | u) + (~I ^ u)) | Q[11])
}
#43 JavaScript::Eval (size: 2) - SHA256: d1a5ac9a015fac2ef7b341673635512a1511f41fe37d111b267f039eec5d4f58
k0
#44 JavaScript::Eval (size: 2) - SHA256: dc06baf81d32384632444362294625b76cb8d3505c9c86f9775283b732169136
Wb
#45 JavaScript::Eval (size: 59) - SHA256: d580f2097ff4d2aed634a7ab3108845b9075effa66d4b860fb10052f8c7d6576
0,
function(T, k, n) {
    l((n = q(T, (k = q(T, 31), 29)), n), T, "" + E(T, k))
}
#46 JavaScript::Eval (size: 183) - SHA256: 04865e01548e61443a7ea604f09d0bc3e5c99e4038f4903af1e8ed77863cdd33
0, b7 = function(Q, C, u, A, R, J, T, k) {
    try {
        R = Q[((C & 2) - 1 - -3 + (C & -3)) % 3], Q[C] = (J = (T = Q[C], A = Q[((C | 0) + 1) % 3], ~(T & A) - ~(T | A) - 2 * (~T & A)) - (R | 0), k = 1 == C ? R << u : R >>> u, (k | 0) - 2 * (J & k) - 1 - ~J)
    } catch (n) {
        throw n;
    }
}
#47 JavaScript::Eval (size: 2) - SHA256: fd83ad606fcbce2b01fab6bac0530c45b4a81993a7cc2c1a6522d69ddedeeeb2
ZY
#48 JavaScript::Eval (size: 350) - SHA256: c14baf0a0466cc29ccb49807eb1781332e0ea7cbe0203b11f35f4394b50b13a8
0, cT = function(Q, C, u, A, R, J, T, k, n, I, O, W, Z, F, N, r, S) {
    if ((F = E(A, 494), F) >= A.B) throw [MO, 31];
    for (Z = (S = 0, W = F, J = A.lD.length, Q); 0 < Z;) k = W >> 3, R = A.D[k], n = W % u, O = u - (n | 0), N = O < Z ? O : Z, C && (I = A, I.A != W >> 6 && (I.A = W >> 6, r = E(I, 17), I.AU = TM(3, 29, I.A, 0, 2, I.g, [0, 0, r[1], r[2]])), R ^= A.AU[k & J]), W += N, S |= (R >> u - (n | 0) - (N | 0) & (1 << N) - 1) << (Z | 0) - (N | 0), Z -= N;
    return l(494, A, (T = S, (F | 0) + (Q | 0))), T
}
#49 JavaScript::Eval (size: 500) - SHA256: 18c73e7080f64a5e6213b78d8399bafa5e667773bdf0c979198b0d6d3913165c
0, ft = function(Q, C, u, A, R, J, T, k, n, I, O, W) {
    return (Q & 28) == Q && (A = sH[C.N](C.FD), A[C.N] = function() {
        return u
    }, A.concat = function(Z) {
        u = Z
    }, W = A), (Q - 8 ^ 22) >= Q && (Q + 3 ^ 22) < Q && (n = A & C, J = [-16, 1, 32, -14, -69, 2, J, -11, 3, -88], O = yU, k = sH[T.N](T.mY), k[T.N] = function(Z) {
        n += 6 + C * A, I = Z, n &= C
    }, k.concat = function(Z, F, N, r, S) {
        return (S = (I = (r = (F = R % 16 + 1, +n + 5 * R * R * F + 39 * I * I + (O() | u) * F - 195 * R * R * I) - 39 * R * I + J[Z = n + 51, (Z | u) + 14 - 2 * (Z | C) + (Z & -8)] * R * F - F * I - -3198 * I, void 0), J[r]), J)[(N = n + 37, -~(N | C) - (~N & C) + (~N | C)) + (1 - (A ^ 2) - (~A | 2))] = S, J[n + (A & 2)] = 1, S
    }, W = k), W
}
#50 JavaScript::Eval (size: 130) - SHA256: a924b27d38d51e446ea91a939dc5e4e49d644afb59345261710f2a3f3d992525
0, k0 = function(Q, C, u, A, R) {
    if (3 == Q.length) {
        for (R = 0; 3 > R; R++) C[R] += Q[R];
        for (A = 0, u = [13, 8, 13, 12, 16, 5, 3, 10, 15]; 9 > A; A++) C[3](C, A % 3, u[A])
    }
}
#51 JavaScript::Eval (size: 348) - SHA256: e5baf08873f4e42ddad6235a9fd7aacdefb3f93bed59d3dc4666fb91a34dbfcc
cT = function(Q, C, u, A, R, J, T, k, n, I, O, W, Z, F, N, r, S) {
    if ((F = E(A, 494), F) >= A.B) throw [MO, 31];
    for (Z = (S = 0, W = F, J = A.lD.length, Q); 0 < Z;) k = W >> 3, R = A.D[k], n = W % u, O = u - (n | 0), N = O < Z ? O : Z, C && (I = A, I.A != W >> 6 && (I.A = W >> 6, r = E(I, 17), I.AU = TM(3, 29, I.A, 0, 2, I.g, [0, 0, r[1], r[2]])), R ^= A.AU[k & J]), W += N, S |= (R >> u - (n | 0) - (N | 0) & (1 << N) - 1) << (Z | 0) - (N | 0), Z -= N;
    return l(494, A, (T = S, (F | 0) + (Q | 0))), T
}
#52 JavaScript::Eval (size: 22) - SHA256: ed12e0c16241f9a5367e75f9d0484aba8a974c2c8c558987a50e088c97c8079d
0,
function(T) {
    os(4, T)
}
#53 JavaScript::Eval (size: 486) - SHA256: f23836fcece58d56bf05bd3d5f5cfc4b4094e9fb42cdbe487bd8a82dbad22c05
0, gD = function(Q, C, u, A, R, J, T, k, n, I) {
    for (I = (R = C.replace(/\r\n/g, "\n"), 0), A = [], J = 0; J < R.length; J++) T = R.charCodeAt(J), 128 > T ? A[I++] = T : (2048 > T ? A[I++] = T >> 6 | 192 : (55296 == (T | 64512) + (T & -64513) - Q * (T ^ 64512) + (~T & 64512) && J + 1 < R.length && 56320 == (R.charCodeAt(J + 1) & 64512) ? (T = 65536 + (-~(T & 1023) + (T ^ 1023) + (~T ^ 1023) << 10) + (R.charCodeAt(++J) & 1023), A[I++] = (k = T >> 18, -(k & 240) - -482 + (k ^ 240) + Q * (k | -241)), A[I++] = T >> 12 & u | 128) : A[I++] = T >> 12 | 224, A[I++] = (n = T >> 6, (n | u) + Q * (~n ^ u) - (n | -64) - (~n | u)) | 128), A[I++] = T & u | 128);
    return A
}
#54 JavaScript::Eval (size: 31) - SHA256: bed41e7dc797dc551c4aa670b00f57d58a25e0eb630b136b758013e01e4ea82b
0,
function(T) {
    ZY(true, 0, 4, 9, T)
}
#55 JavaScript::Eval (size: 2) - SHA256: 86c12c64bc1f7f48454cae381e265215d5846d8bb1fa4dd61db27f5caafc391a
sW
#56 JavaScript::Eval (size: 82) - SHA256: 4b223f3b6e1ca682d1c8a4d4516fb41122d823a1b43f4aea7dabf9b70e41acf9
0,
function(T, k, n) {
    (k = E((n = q(T, 30), T.R), n), k[0]).removeEventListener(k[1], k[2], AL)
}
#57 JavaScript::Eval (size: 22) - SHA256: 877fe205f07efe77f47f25b0d08a472271dcc61bcdd0190c16627fab0ee126a1
0,
function(T) {
    Dc(1, T)
}
#58 JavaScript::Eval (size: 31) - SHA256: 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1
(a = 0) => {
    let b;
    const c = class {};
}
#59 JavaScript::Eval (size: 40026) - SHA256: 39f04eedc816769d038c40430e4efbd21e553936dea27ab99e886df194a5423d
//# sourceMappingURL=data:application/json;charset=utf-8;base64,eyJ2ZXJzaW9uIjogMywic291cmNlcyI6WyIiXSwic291cmNlc0NvbnRlbnQiOlsiICJdLCJuYW1lcyI6WyJjbG9zdXJlRHluYW1pY0J1dHRvbiJdLCJtYXBwaW5ncyI6IkFBQUE7QUFBQTtBQUFBO0FBQUE7QUFBQTtBQUFBO0FBQUEifQ==
(function() {
    var Ct = function(Q, C, u, A, R, J, T, k, n, I, O, W) {
            return (R | 32) == ((R + 4 ^ 8) < R && (R - 9 | 18) >= R && (O = (T = J[C] << u | J[2 * (C | Q) - ~(C & Q) + ~(C | Q)] << 16 | J[~(C & 2) - 3 * ~(C | 2) + 2 * (~C ^ 2)] << 8, k = J[-2 * ~(C & 3) - A * (~C ^ 3) + 3 * (C | -4) + 3 * (~C | 3)], -~T + 2 * (~T & k) + (T | ~k))), R) && (O = W = function() {
                if (J.R == J) {
                    if (J.l) {
                        var Z = [QU, T, C, void 0, n, I, arguments];
                        if (2 == k) var F = B(21, true, J, (L(0, Z, 21, J), u), u);
                        else if (k == A) {
                            var N = !J.C.length;
                            (L(0, Z, 21, J), N) && B(16, true, J, u, u)
                        } else F = T1(Z, ":", 52, J);
                        return F
                    }
                    n && I && n.removeEventListener(I, W, AL)
                }
            }), O
        },
        uC = function(Q, C, u, A) {
            return C - 6 & Q || (this.src = u, this.O = 0, this.o = {}), A
        },
        RX = function(Q, C, u, A, R, J, T, k, n, I, O, W) {
            if ((3 == (Q - 5 & 15) && (this.type = C, this.currentTarget = this.target = u, this.defaultPrevented = this.X = false), 6) > Q >> 1 && 1 <= ((Q ^ 72) & 15)) {
                for (k = T = 0; k < C.length; k++) T += C.charCodeAt(k), T += T << 10, T ^= T >> 6;
                W = ((O = (T = (R = (T += T << 3, T >> 11), -(T & R) - ~(T & R) + -2 - (~T ^ R)), T + (T << 15) >>> 0), n = new Number((J = (I = 1 << u, (I | 1) + -2 - (I ^ 1) - (~I | 1)), -~(O & J) + ~J - ~(O | J) + (~O | J))), n)[0] = (O >>> u) % A, n)
            }
            return 2 == (Q - 9 & 14) && (W = Math.floor(this.zw + (this.U() - this.i))), W
        },
        OH = function(Q, C, u, A, R, J, T, k) {
            return (C ^ (C - 9 & ((C & 74) == ((C - 2 | 3) < C && (C - 5 | 52) >= C && (k = !!(T = J.KE, A * (T | u) - (R | u) - A * (T & ~R) + (~T & R)) && !!(J.vc & R)), C) && (iC.call(this), u || kA || (kA = new IX), this.JU = this.CE = this.VG = this.oR = this.k9 = null, this.IR = void 0, this.e$ = false), 13) || (k = u && u.parentNode ? u.parentNode.removeChild(u) : null), 27)) >> Q || (this.Y = D.document || document), k
        },
        K = function(Q, C, u, A, R, J, T, k, n) {
            if ((C | (22 > C + 6 && 9 <= (C << 1 & 15) && (n = Q), 72)) == C) a: {
                for (k = Q; k < u.length; ++k)
                    if (T = u[k], !T.Z && T.listener == A && T.capture == !!R && T.RR == J) {
                        n = k;
                        break a
                    }
                n = -1
            }
            return (C | ((C & 11) == C && (u.Z = Q, u.listener = null, u.proxy = null, u.src = null, u.RR = null), 24)) == C && (u = Q[WT], n = u instanceof H ? u : null), n
        },
        ZY = function(Q, C, u, A, R, J, T, k, n, I) {
            if ((A & 61) == (A << 2 & 7 || (R = b(8, Q, u), R & 128 && (R = 128 + (R | -128) | b(8, Q, u) << C), I = R), A)) {
                for (n = (T = q(R, 29), C); u > C; u--) n = (J = n << 8, k = b(8, Q, R), (k | C) + (J ^ k) - (~J & k));
                l(T, R, n)
            }
            return I
        },
        f = function(Q, C, u, A, R, J, T) {
            return ((u | (u - 7 << 2 < u && (u - 5 ^ 28) >= u && (R = C.type, R in A.o && y(1, 7, A.o[R], C) && (K(true, 3, C), A.o[R].length == Q && (delete A.o[R], A.O--))), 40)) == u && (T = !!(A.vc & R) && !!(A.S & R) != C && (!(J = A.Re, (R | 0) - (J ^ R) - (~J ^ R) + (J | ~R)) || A.dispatchEvent(Lt(28, 3, 32, 2, 4, Q, R, C))) && !A.LE), u) + 4 & 7 || (T = typeof C.className == Q ? C.className : C.getAttribute && C.getAttribute("class") || A), T
        },
        V = function(Q, C, u, A, R, J, T, k) {
            if ((Q | ((Q & 55) == (13 > (Q ^ 81) && 1 <= (Q ^ 38) >> 4 && (l(A, C, u), u[BT] = 2796), Q) && (C.classList ? Array.prototype.forEach.call(u, function(n) {
                    L(" ", 0, 10, "string", C, n)
                }) : y("string", 10, Array.prototype.filter.call(t(32, "string", C), function(n) {
                    return !(0 <= y(1, 46, n, u))
                }).join(" "), C)), 48)) == Q)
                if (C.classList) Array.prototype.forEach.call(u, function(n, I) {
                    C.classList ? C.classList.add(n) : V(10, 0, "string", C, n) || (I = f("string", C, 12, ""), y("string", 8, I + (0 < I.length ? " " + n : n), C))
                });
                else {
                    for (A in R = (Array.prototype.forEach.call((J = {}, t(36, "string", C)), function(n) {
                            J[n] = true
                        }), Array.prototype.forEach.call(u, function(n) {
                            J[n] = true
                        }), ""), J) R += 0 < R.length ? " " + A : A;
                    y("string", 3, R, C)
                }
            return 4 == (Q >> (Q - 9 >> 4 || (A.classList ? J = A.classList.contains(R) : (T = t(14, u, A), J = y(1, 14, R, T) >= C), k = J), 1) & 13) && (Fk.call(this), this.J = new H(this), this.Tw = null, this.XD = this), k
        },
        oX = function(Q, C, u, A, R, J, T, k, n, I, O, W) {
            if ((C + 3 & 25) >= ((C & Q) == C && (O = function(Z) {
                    return u.call(O.src, O.listener, Z)
                }, u = DY, W = O), C) && (C + 7 & 43) < C)
                if (J && J.once) L(true, u, 57, n, R, T, J, k);
                else if (Array.isArray(R))
                for (I = 0; I < R.length; I++) oX(38, 14, "object", false, R[I], J, T, k, n);
            else n = U(41, 10, n), k && k[NO] ? k.J.add(String(R), n, A, a(42, u, J) ? !!J.capture : !!J, T) : t(3, false, "object", k, A, J, n, T, R);
            if ((C | 80) == C && (this.LE = this.LE), (C + 7 ^ 20) >= C && (C - 3 | 48) < C) a: {
                for (T in J)
                    if (R.call(void 0, J[T], T, J)) {
                        W = A;
                        break a
                    }
                W = u
            }
            if (!((C ^ 77) >> 4)) {
                if (R = window.btoa) {
                    for (J = (A = 0, ""); A < u.length; A += 8192) J += String.fromCharCode.apply(null, u.slice(A, A + 8192));
                    T = R(J).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
                } else T = void 0;
                W = T
            }
            return W
        },
        j4 = function(Q, C, u, A, R, J, T, k, n, I, O) {
            if (u - 5 << 2 >= u && (u + 9 ^ 14) < u) {
                for (n = (I = [], A = 0); n < R.length; n++)
                    for (A += Q, T = (k = T << Q, J = R[n], 3 * (k & J) + ~k + ~J - 2 * (~k ^ J)); 7 < A;) A -= 8, I.push((C = T >> A, (C | 0) + 255 - (C | 255)));
                O = I
            }
            if ((u | 72) == u)
                for (J = A.length, T = "string" === typeof A ? A.split(R) : A, k = Q; k < J; k++) k in T && C.call(void 0, T[k], k, A);
            if ((u | 48) == u) {
                if (!(C = (HT.call(this, A), Q))) {
                    for (J = this.constructor; J;) {
                        if (k = (T = U(41, 9, J), rD[T])) break;
                        J = (n = Object.getPrototypeOf(J.prototype)) && n.constructor
                    }
                    C = k ? "function" === typeof k.yG ? k.yG() : new k : null
                }
                this.V = C
            }
            return (u & 44) == ((u + 7 ^ 23) < u && (u + 2 ^ 15) >= u && (c.call(this, R ? R.type : ""), this.relatedTarget = this.currentTarget = this.target = null, this.button = this.screenY = this.screenX = this.clientY = this.clientX = this.offsetY = this.offsetX = 0, this.key = "", this.charCode = this.keyCode = 0, this.metaKey = this.shiftKey = this.altKey = this.ctrlKey = false, this.state = null, this.pointerId = 0, this.pointerType = "", this.h = null, R && (C = this.type = R.type, A = R.changedTouches && R.changedTouches.length ? R.changedTouches[0] : null, this.target = R.target || R.srcElement, this.currentTarget = Q, J = R.relatedTarget, J || ("mouseover" == C ? J = R.fromElement : "mouseout" == C && (J = R.toElement)), this.relatedTarget = J, A ? (this.clientX = void 0 !== A.clientX ? A.clientX : A.pageX, this.clientY = void 0 !== A.clientY ? A.clientY : A.pageY, this.screenX = A.screenX || 0, this.screenY = A.screenY || 0) : (this.offsetX = R.offsetX, this.offsetY = R.offsetY, this.clientX = void 0 !== R.clientX ? R.clientX : R.pageX, this.clientY = void 0 !== R.clientY ? R.clientY : R.pageY, this.screenX = R.screenX || 0, this.screenY = R.screenY || 0), this.button = R.button, this.keyCode = R.keyCode || 0, this.key = R.key || "", this.charCode = R.charCode || ("keypress" == C ? R.keyCode : 0), this.ctrlKey = R.ctrlKey, this.altKey = R.altKey, this.shiftKey = R.shiftKey, this.metaKey = R.metaKey, this.pointerId = R.pointerId || 0, this.pointerType = "string" === typeof R.pointerType ? R.pointerType : Kt[R.pointerType] || "", this.state = R.state, this.h = R, R.defaultPrevented && v.T.preventDefault.call(this))), u) && (this.listener = A, this.proxy = null, this.src = Q, this.type = C, this.capture = !!J, this.RR = R, this.key = ++S4, this.F = this.Z = false), O
        },
        B = function(Q, C, u, A, R, J, T, k, n, I, O) {
            if (3 == (Q ^ 13) >> 3 && u.C.length) {
                (u.dX = (u.dX && 0(), C), u).Pc = R;
                try {
                    J = u.U(), u.aR = 0, u.K = J, u.i = J, T = B(8, true, null, 52, ":", u, R), k = u.U() - u.i, u.zw += k, k < (A ? 0 : 10) || 0 >= u.qK-- || (k = Math.floor(k), u.nE.push(254 >= k ? k : 254))
                } finally {
                    u.dX = false
                }
                O = T
            }
            if ((Q & (3 == Q - 8 >> 3 && (C.yG = function() {
                    return C.sM ? C.sM : C.sM = new C
                }, C.sM = void 0), 105)) == Q) {
                for (; J.C.length;) {
                    k = (J.H = u, J).C.pop();
                    try {
                        I = T1(k, R, A, J)
                    } catch (W) {
                        d(J, R, 5, W)
                    }
                    if (T && J.H) {
                        (n = J.H, n)(function() {
                            B(20, C, J, C, C)
                        });
                        break
                    }
                }
                O = I
            }
            return (Q - 2 | 89) >= Q && (Q + 8 & 63) < Q && (T = typeof R, J = T != C ? T : R ? Array.isArray(R) ? "array" : T : "null", O = J == A || J == C && typeof R.length == u), O
        },
        Xk = function(Q, C, u, A, R, J, T, k, n) {
            return J >> ((J - 5 ^ 13) >= J && (J + 9 ^ 14) < J && P.call(this, A, R || z.yG(), u), 1) & C || (n = function() {}, T = void 0, u = bC(A, function(I) {
                n && (R && qO(R), T = I, n(), n = void 0)
            }, !!R)[Q], k = {
                invoke: function(I, O, W, Z, F) {
                    function N() {
                        T(function(r) {
                            qO(function() {
                                I(r)
                            })
                        }, W)
                    }
                    if (!O) return Z = u(W), I && I(Z), Z;
                    T ? N() : (F = n, n = function() {
                        (F(), qO)(N)
                    })
                }
            }), k
        },
        y = function(Q, C, u, A, R, J, T) {
            if ((C - 6 ^ 25) >= ((C & 123) == C && (typeof A.className == Q ? A.className = u : A.setAttribute && A.setAttribute("class", u)), C) && (C - 6 | 11) < C) a: if ("string" === typeof A) T = "string" !== typeof u || u.length != Q ? -1 : A.indexOf(u, 0);
                else {
                    for (R = 0; R < A.length; R++)
                        if (R in A && A[R] === u) {
                            T = R;
                            break a
                        }
                    T = -1
                }
            return 1 == (C + 2 & 5) && (J = y(Q, 21, A, u), (R = 0 <= J) && Array.prototype.splice.call(u, J, Q), T = R), T
        },
        a = function(Q, C, u, A, R, J, T, k, n, I, O, W, Z) {
            if (!((Q ^ (((Q - 2 >> ((Q ^ 60) >> 4 || "number" === typeof A || !A || A.Z || ((T = A.src) && T[NO] ? f(u, A, 5, T.J) : (k = A.type, R = A.proxy, T.removeEventListener ? T.removeEventListener(k, R, A.capture) : T.detachEvent ? T.detachEvent(d(k, "on", 25), R) : T.addListener && T.removeListener && T.removeListener(R), lC--, (J = K(T, 26)) ? (f(u, A, 6, J), J.O == u && (J.src = null, T[WT] = null)) : K(C, 10, A))), 4) || (Z = Math.floor(this.U())), Q) - 9 | 33) < Q && (Q - 8 | 20) >= Q && (A = typeof u, Z = A == C && null != u || "function" == A), 70)) & 8))
                if (I = J.J.o[String(R)]) {
                    for (O = (n = !(I = I.concat(), 0), C); O < I.length; ++O)(W = I[O]) && !W.Z && W.capture == u && (k = W.listener, T = W.RR || W.src, W.F && f(C, W, 7, J.J), n = false !== k.call(T, A) && n);
                    Z = n && !A.defaultPrevented
                } else Z = true;
            return Z
        },
        ft = function(Q, C, u, A, R, J, T, k, n, I, O, W) {
            return (Q & 28) == Q && (A = sH[C.N](C.FD), A[C.N] = function() {
                return u
            }, A.concat = function(Z) {
                u = Z
            }, W = A), (Q - 8 ^ 22) >= Q && (Q + 3 ^ 22) < Q && (n = A & C, J = [-16, 1, 32, -14, -69, 2, J, -11, 3, -88], O = yU, k = sH[T.N](T.mY), k[T.N] = function(Z) {
                n += 6 + C * A, I = Z, n &= C
            }, k.concat = function(Z, F, N, r, S) {
                return (S = (I = (r = (F = R % 16 + 1, +n + 5 * R * R * F + 39 * I * I + (O() | u) * F - 195 * R * R * I) - 39 * R * I + J[Z = n + 51, (Z | u) + 14 - 2 * (Z | C) + (Z & -8)] * R * F - F * I - -3198 * I, void 0), J[r]), J)[(N = n + 37, -~(N | C) - (~N & C) + (~N | C)) + (1 - (A ^ 2) - (~A | 2))] = S, J[n + (A & 2)] = 1, S
            }, W = k), W
        },
        q = function(Q, C, u, A, R, J, T, k) {
            if (C - 7 << 2 >= C && (C + 3 & 38) < C)
                if (T = "array" === tL("null", "call", A) ? A : [A], this.v) Q(this.v);
                else try {
                    R = !this.C.length, J = [], L(0, [VU, J, T], 17, this), L(0, [UH, Q, J], 33, this), u && !R || B(19, true, this, true, u)
                } catch (n) {
                    d(this, ":", 3, n), Q(this.v)
                }
                return (C | 8) == C && (Q.j ? k = aX(Q.G, Q) : (A = cT(8, true, 8, Q), A & 128 && (A ^= 128, R = cT(2, true, 8, Q), A = (u = A << 2, ~(u & R) - 3 * ~(u | R) - 2 * (~u & R) + 2 * (~u | R))), k = A)), k
        },
        e = function(Q, C, u, A, R, J, T, k, n, I, O) {
            return ((C ^ 12) & 3 || (Array.isArray(J) && (J = J.join(" ")), T = "aria-" + R, "" === J || void 0 == J ? (wD || (n = {}, wD = (n.atomic = false, n.autocomplete = A, n.dropeffect = A, n.haspopup = false, n.live = Q, n.multiline = false, n.multiselectable = false, n.orientation = "vertical", n.readonly = false, n.relevant = "additions text", n.required = false, n.sort = A, n.busy = false, n.disabled = false, n.hidden = false, n.invalid = "false", n)), k = wD, R in k ? u.setAttribute(T, k[R]) : u.removeAttribute(T)) : u.setAttribute(T, J)), C + 4 & 6) || (I = function() {}, I.prototype = u.prototype, A.T = u.prototype, A.prototype = new I, A.prototype.constructor = A, A.Bd = function(W, Z, F) {
                for (var N = Array(arguments.length - Q), r = Q; r < arguments.length; r++) N[r - Q] = arguments[r];
                return u.prototype[Z].apply(W, N)
            }), O
        },
        L = function(Q, C, u, A, R, J, T, k, n, I) {
            if (((6 <= (u + (2 == (u << 1 & 23) && A.C.splice(Q, Q, C), 8) & 7) && 4 > (u ^ 100) >> 4 && Q.JU && Q.JU.forEach(C, void 0), u) - 9 | 41) < u && (u - 3 | 93) >= u) {
                if (!Q) throw Error("Invalid class name " + Q);
                if ("function" !== typeof C) throw Error("Invalid decorator function " + C);
            }
            if (((u & 26) == u && (R.classList ? R.classList.remove(J) : V(11, C, A, R, J) && y(A, 11, Array.prototype.filter.call(t(34, A, R), function(O) {
                    return O != J
                }).join(Q), R)), 6) > (u << 1 & 14) && 2 <= u - 9 >> 4)
                if (Array.isArray(R))
                    for (n = 0; n < R.length; n++) L(true, "object", 41, A, R[n], J, T, k);
                else A = U(41, 11, A), k && k[NO] ? k.J.add(String(R), A, Q, a(46, C, T) ? !!T.capture : !!T, J) : t(5, false, "object", k, Q, T, A, J, R);
            return I
        },
        d = function(Q, C, u, A, R, J, T, k, n, I, O, W, Z) {
            if ((u - ((u | 24) == u && (Z = Q in mO ? mO[Q] : mO[Q] = C + Q), 8) | 4) < u && (u + 1 & 50) >= u)
                if (Array.isArray(k))
                    for (W = Q; W < k.length; W++) d(0, "object", 16, A, R, J, T, k[W]);
                else I = a(45, C, A) ? !!A.capture : !!A, T = U(41, 3, T), R && R[NO] ? R.J.remove(String(k), T, I, J) : R && (O = K(R, 25)) && (n = O.EM(J, T, k, I)) && a(57, true, 0, n);
            return u + 1 >> 2 < u && (u + 1 ^ 26) >= u && (Q.v = ((Q.v ? Q.v + "~" : "E:") + A.message + C + A.stack).slice(0, 2048)), Z
        },
        Lt = function(Q, C, u, A, R, J, T, k, n) {
            if (0 <= ((C | (1 == (C - 5 & 3) && (A.Z ? k = true : (T = new v(u, this), R = A.listener, J = A.RR || A.src, A.F && a(56, true, 0, A), k = R.call(J, T)), n = k), 1)) & 3) && 20 > C + 7) a: {
                switch (T) {
                    case 1:
                        n = k ? "disable" : "enable";
                        break a;
                    case A:
                        n = k ? "highlight" : "unhighlight";
                        break a;
                    case R:
                        n = k ? "activate" : "deactivate";
                        break a;
                    case 8:
                        n = k ? "select" : "unselect";
                        break a;
                    case J:
                        n = k ? "check" : "uncheck";
                        break a;
                    case u:
                        n = k ? "focus" : "blur";
                        break a;
                    case 64:
                        n = k ? "open" : "close";
                        break a
                }
                throw Error("Invalid component state");
            }
            return (C | 6) < Q && 17 <= C << 1 && (n = sH[u](sH.prototype, {
                call: A,
                console: A,
                replace: A,
                propertyIsEnumerable: A,
                prototype: A,
                document: A,
                parent: A,
                stack: A,
                floor: A,
                length: A,
                splice: A,
                pop: A
            })), n
        },
        t = function(Q, C, u, A, R, J, T, k, n, I, O, W, Z, F) {
            if (9 <= (Q + 7 & 15) && 10 > (Q >> 1 & 16)) {
                if (!n) throw Error("Invalid event type");
                if (W = (Z = a(44, ((I = K(A, 24)) || (A[WT] = I = new H(A)), u), J) ? !!J.capture : !!J, I).add(n, T, R, Z, k), !W.proxy) {
                    if (((((O = oX(38, 6), W).proxy = O, O).src = A, O).listener = W, A).addEventListener) vT || (J = Z), void 0 === J && (J = C), A.addEventListener(n.toString(), O, J);
                    else if (A.attachEvent) A.attachEvent(d(n.toString(), "on", 24), O);
                    else if (A.addListener && A.removeListener) A.addListener(O);
                    else throw Error("addEventListener and attachEvent are unavailable.");
                    lC++
                }
            }
            if (24 <= Q >> (Q + 1 >> 1 < Q && (Q - 9 ^ 12) >= Q && (this.R = C), 1) && 4 > (Q | 3) >> 5) {
                if (R.R = (R.wX += ((k = (T = (W = 0 < (A || R.aR++, R).rX && R.dX && R.Pc && 1 >= R.lV && !R.j && !R.H && (!A || 1 < R.uV - u) && 0 == document.hidden, I = (n = 4 == R.aR) || W ? R.U() : R.K, I - R.K), T) >> C, R).g && (R.g ^= k * (T << 2)), k), k || R.R), n || W) R.aR = 0, R.K = I;
                !W || I - R.i < R.rX - (J ? 255 : A ? 5 : 2) ? F = false : (R.uV = u, O = E(R, A ? 248 : 494), l(494, R, R.B), R.C.push([dD, O, A ? u + 1 : u]), R.H = qO, F = true)
            }
            return (Q & 110) == Q && (F = u.classList ? u.classList : f(C, u, 20, "").match(/\S+/g) || []), F
        },
        U = function(Q, C, u, A, R, J, T, k, n, I) {
            if ((C + 7 ^ (2 == ((C & Q) == C && (I = Object.prototype.hasOwnProperty.call(u, PT) && u[PT] || (u[PT] = ++z1)), C >> 1 & 11) && (T = A, T = (J = T << 13, -(J | 0) + (T | J) + (~T & J)), T = (k = T >> 17, ~T - ~k + 2 * (T & ~k)), T = (n = T << 5, (T | 0) - (T & n) - 1 - (T | ~n)), (T = (R | 0) + (T & ~R) - (T ^ R)) || (T = 1), I = (u | 0) - (u & T) + (~u & T)), 29)) < C && (C + 9 ^ 29) >= C)
                if (R = A.length, R > u) {
                    for (T = (J = Array(R), u); T < R; T++) J[T] = A[T];
                    I = J
                } else I = [];
            return C - 6 << (4 == ((C ^ 14) & 22) && ("function" === typeof u ? I = u : (u[e4] || (u[e4] = function(O) {
                return u.handleEvent(O)
            }), I = u[e4])), 2) >= C && (C - 1 | 81) < C && (R.UM(function(O) {
                J = O
            }, u, A), I = J), I
        },
        G1 = function(Q, C, u, A, R, J, T, k, n, I) {
            if (8 <= ((((u ^ 57) >> 4 || (C(function(O) {
                    O(A)
                }), I = [function() {
                    return A
                }]), u) & Q) == u && (I = (J = EH[A.substring(0, 3) + "_"]) ? J(A.substring(3), C, R) : G1(92, C, 48, A)), u << 2 & 15) && 1 > u - 7 >> 4)
                for (n in J = C, R.o) {
                    for (T = R.o[n], k = C; k < T.length; k++) ++J, K(A, 8, T[k]);
                    delete R.o[R.O--, n]
                }
            return I
        },
        hL = function(Q, C, u, A, R, J, T, k, n, I) {
            if (!C.Hc) {
                if (n = ((T = E(C, (R = void 0, A && A[0] === MO && (Q = A[1], R = A[2], A = void 0), 116)), 0 == T.length) && (I = E(C, 248) >> u, T.push(Q, I >> 8 & 255, 255 - ~I + ~(I | 255)), void 0 != R && T.push(-~(R | 255) - (R & -256) + (R | -256))), ""), A && (A.message && (n += A.message), A.stack && (n += ":" + A.stack)), J = E(C, 34), J > u) {
                    C.R = (k = (J -= (n = n.slice(0, ~(J & u) - ~(J | u) - 2 * (~J & u)), (n.length | 0) + u), n = gD(2, n, 63), C).R, C);
                    try {
                        M(C, g(2, n.length).concat(n), 375, 12)
                    } finally {
                        C.R = k
                    }
                }
                l(34, C, J)
            }
        },
        aX = function(Q, C, u) {
            return (u = Q.create().shift(), C.j.create()).length || C.G.create().length || (C.G = void 0, C.j = void 0), u
        },
        pt = function(Q, C) {
            for (C = []; Q--;) C.push(255 * Math.random() | 0);
            return C
        },
        g = function(Q, C, u, A) {
            for (A = (u = (Q | 0) - 1, []); 0 <= u; u--) A[(Q | 0) - 1 - (u | 0)] = C >> 8 * u & 255;
            return A
        },
        Fk = function() {
            return oX.call(this, 38, 80)
        },
        iC = function() {
            return V.call(this, 8)
        },
        bC = function(Q, C, u, A) {
            return G1.call(this, 92, C, 8, Q, u, A)
        },
        QV = function(Q, C, u, A, R) {
            return j4.call(this, R, u, 8, A, C, Q)
        },
        TM = function(Q, C, u, A, R, J, T, k, n, I) {
            for (k = (I = (n = T[Q] | A, T[R] | A), A); 16 > k; k++) u = u >>> 8 | u << 24, u += J | A, n = n >>> 8 | n << 24, n += I | A, J = J << Q | J >>> C, u ^= I + 908, n ^= k + 908, J ^= u, I = I << Q | I >>> C, I ^= n;
            return [J >>> 24 & 255, J >>> 16 & 255, J >>> 8 & 255, J >>> A & 255, u >>> 24 & 255, u >>> 16 & 255, u >>> 8 & 255, u >>> A & 255]
        },
        h = function(Q, C, u) {
            u = this;
            try {
                AZ(this, C, Q)
            } catch (A) {
                d(this, ":", 7, A), C(function(R) {
                    R(u.v)
                })
            }
        },
        gD = function(Q, C, u, A, R, J, T, k, n, I) {
            for (I = (R = C.replace(/\r\n/g, "\n"), 0), A = [], J = 0; J < R.length; J++) T = R.charCodeAt(J), 128 > T ? A[I++] = T : (2048 > T ? A[I++] = T >> 6 | 192 : (55296 == (T | 64512) + (T & -64513) - Q * (T ^ 64512) + (~T & 64512) && J + 1 < R.length && 56320 == (R.charCodeAt(J + 1) & 64512) ? (T = 65536 + (-~(T & 1023) + (T ^ 1023) + (~T ^ 1023) << 10) + (R.charCodeAt(++J) & 1023), A[I++] = (k = T >> 18, -(k & 240) - -482 + (k ^ 240) + Q * (k | -241)), A[I++] = T >> 12 & u | 128) : A[I++] = T >> 12 | 224, A[I++] = (n = T >> 6, (n | u) + Q * (~n ^ u) - (n | -64) - (~n | u)) | 128), A[I++] = T & u | 128);
            return A
        },
        u7 = function(Q, C) {
            for (var u, A, R = 1; R < arguments.length; R++) {
                for (u in A = arguments[R], A) Q[u] = A[u];
                for (var J = 0; J < CI.length; J++) u = CI[J], Object.prototype.hasOwnProperty.call(A, u) && (Q[u] = A[u])
            }
        },
        Rs = function(Q, C, u) {
            l(Q, u, ((u.hU.push(u.l.slice()), u).l[Q] = void 0, C))
        },
        z = function() {
            return B.call(this, 90)
        },
        D = this || self,
        l = function(Q, C, u) {
            if (494 == Q || 248 == Q) C.l[Q] ? C.l[Q].concat(u) : C.l[Q] = ft(24, C, u);
            else {
                if (C.Hc && 17 != Q) return;
                264 == Q || 375 == Q || 131 == Q || 116 == Q || 28 == Q ? C.l[Q] || (C.l[Q] = ft(14, 7, 0, 94, Q, u, C)) : C.l[Q] = ft(13, 7, 0, 65, Q, u, C)
            }
            17 == Q && (C.g = cT(32, false, 8, C), C.A = void 0)
        },
        JZ = function() {
            return uC.call(this, 3, 16)
        },
        IX = function() {
            return OH.call(this, 4, 18)
        },
        nI = function(Q, C) {
            return V.call(this, 3, Q, C)
        },
        i7 = function(Q, C, u, A, R) {
            return V.call(this, 56, Q, C, u, A, R)
        },
        tL = function(Q, C, u, A, R) {
            if ("object" == (A = typeof u, A))
                if (u) {
                    if (u instanceof Array) return "array";
                    if (u instanceof Object) return A;
                    if (R = Object.prototype.toString.call(u), "[object Window]" == R) return "object";
                    if ("[object Array]" == R || "number" == typeof u.length && "undefined" != typeof u.splice && "undefined" != typeof u.propertyIsEnumerable && !u.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == R || "undefined" != typeof u.call && "undefined" != typeof u.propertyIsEnumerable && !u.propertyIsEnumerable(C)) return "function"
                } else return Q;
            else if ("function" == A && "undefined" == typeof u.call) return "object";
            return A
        },
        k0 = function(Q, C, u, A, R) {
            if (3 == Q.length) {
                for (R = 0; 3 > R; R++) C[R] += Q[R];
                for (A = 0, u = [13, 8, 13, 12, 16, 5, 3, 10, 15]; 9 > A; A++) C[3](C, A % 3, u[A])
            }
        },
        Is = function(Q, C, u, A, R, J, T, k, n, I) {
            function O(W) {
                W && C.appendChild("string" === typeof W ? R.createTextNode(W) : W)
            }
            for (n = u; n < J.length; n++)
                if (k = J[n], !B(56, "object", "number", A, k) || a(43, "object", k) && k.nodeType > T) O(k);
                else {
                    a: {
                        if (k && "number" == typeof k.length) {
                            if (a(41, "object", k)) {
                                I = "function" == typeof k.item || "string" == typeof k.item;
                                break a
                            }
                            if ("function" === typeof k) {
                                I = "function" == typeof k.item;
                                break a
                            }
                        }
                        I = Q
                    }
                    j4(T, O, 72, I ? U(41, 23, T, k) : k, "")
                }
        },
        c = function(Q, C) {
            return RX.call(this, 8, Q, C)
        },
        Wb = function(Q, C, u, A, R, J, T, k) {
            if (!A.v) {
                A.lV++;
                try {
                    for (R = A.B, T = void 0, J = 0; --u;) try {
                        if (k = void 0, A.j) T = aX(A.j, A);
                        else {
                            if ((J = E(A, 494), J) >= R) break;
                            T = E(A, (k = q((l(248, A, J), A), 9), k))
                        }(T && T[OW] & 2048 ? T(A, u) : hL(0, A, Q, [MO, 21, k]), t)(51, C, u, false, A, false)
                    } catch (n) {
                        E(A, 7) ? hL(22, A, Q, n) : l(7, A, n)
                    }
                    if (!u) {
                        if (A.ZW) {
                            Wb(3, (A.lV--, 14), 112994546553, A);
                            return
                        }
                        hL(0, A, Q, [MO, 33])
                    }
                } catch (n) {
                    try {
                        hL(22, A, Q, n)
                    } catch (I) {
                        d(A, ":", 6, I)
                    }
                }
                A.lV--
            }
        },
        HT = function(Q) {
            return OH.call(this, 4, 10, Q)
        },
        Zc = function() {
            return uC.call(this, 3, 3)
        },
        AZ = function(Q, C, u, A, R, J) {
            for (J = ((Q.mY = Lt(28, (Q.k6 = LI, (Q.lD = Q[UH], Q).jj = Bb, 13), Q.N, {get: function() {
                        return this.concat()
                    }
                }), Q).FD = sH[Q.N](Q.mY, {
                    value: {
                        value: {}
                    }
                }), 0), A = []; 128 > J; J++) A[J] = String.fromCharCode(J);
            B(17, true, (L(0, [(L(0, ((V(86, (V(91, Q, (l(183, (V(91, Q, function(T, k, n, I) {
                if (I = T.hU.pop()) {
                    for (k = b(8, true, T); 0 < k; k--) n = q(T, 30), I[n] = T.l[n];
                    I[34] = (I[116] = T.l[116], T.l[34]), T.l = I
                } else l(494, T, T.B)
            }, (V(90, Q, (Q.LZ = (V(82, (l(34, (V(84, Q, (V(93, (l(446, (l(264, (V(87, (l(116, (V((V(85, Q, function(T, k, n, I, O, W, Z) {
                for (k = (Z = (n = (I = (O = q(T, 30), ZY(true, 7, T, 6)), ""), E(T, 328)), W = Z.length, 0); I--;) k = ((k | 0) + (ZY(true, 7, T, 10) | 0)) % W, n += A[Z[k]];
                l(O, T, n)
            }, (V(83, Q, (V(93, Q, function() {}, (l(296, Q, (V(87, Q, function(T, k, n, I, O, W, Z, F, N, r, S, X, w, x, JL, Y) {
                function nt(m, G) {
                    for (; S < m;) F |= b(8, true, T) << S, S += 8;
                    return G = F & (1 << m) - 1, F >>= (S -= m, m), G
                }
                for (JL = (W = (Z = (I = (X = q(T, 30), S = F = 0, (nt(3) | 0) + 1), nt(5)), w = 0, []), 0); w < Z; w++) k = nt(1), W.push(k), JL += k ? 0 : 1;
                for (x = (O = (n = ((JL | 0) - 1).toString(2).length, []), 0); x < Z; x++) W[x] || (O[x] = nt(n));
                for (r = 0; r < Z; r++) W[r] && (O[r] = q(T, 29));
                for (N = (Y = I, []); Y--;) N.push(E(T, q(T, 9)));
                V(85, T, function(m, G, xA, $A, YA) {
                    for (G = (YA = (xA = [], []), 0); G < Z; G++) {
                        if (!($A = O[G], W)[G]) {
                            for (; $A >= xA.length;) xA.push(q(m, 30));
                            $A = xA[$A]
                        }
                        YA.push($A)
                    }
                    m.G = ft(12, (m.j = ft(8, m, N.slice()), m), YA)
                }, X)
            }, (V(81, (l(7, Q, (V(89, Q, function(T, k, n, I, O, W, Z, F, N) {
                t(50, 14, k, true, T, false) || (n = $0(8, 31, 1, T.R, 0), F = n.x9, W = n.Gw, Z = n.u, N = n.bV, O = Z.length, I = 0 == O ? new F[N] : 1 == O ? new F[N](Z[0]) : 2 == O ? new F[N](Z[0], Z[1]) : 3 == O ? new F[N](Z[0], Z[1], Z[2]) : 4 == O ? new F[N](Z[0], Z[1], Z[2], Z[3]) : 2(), l(W, T, I))
            }, (l(340, (V(80, Q, function(T, k, n, I, O) {
                for (k = (I = ZY(true, 7, (n = q(T, 29), T), 14), 0), O = []; k < I; k++) O.push(b(8, true, T));
                l(n, T, O)
            }, (V(80, Q, (Q.Na = (Q.TN = (V(80, Q, function(T, k, n, I) {
                l((n = (k = b((I = q(T, 30), 8), true, T), q(T, 9)), n), T, E(T, I) >>> k)
            }, (V(84, Q, (V(82, (V(88, Q, (V(86, ((l(28, Q, [0, (((V((V(88, Q, (l(375, Q, (l((V(81, Q, ((l(248, Q, (l(494, ((Q.l = [], Q).pZ = (Q.j = void 0, Q.K = 0, Q.wX = (Q.G = void 0, Q.qK = (Q.Pc = (Q.D = [], false), 25), Q.C = [], Q.E9 = 0, (Q.aR = (Q.R = Q, Q.AU = void 0, void 0), Q.tU = function(T) {
                return t.call(this, 9, T)
            }, Q).g = (Q.Hc = false, Q.lV = 0, void 0), 1), Q.dX = ((Q.B = 0, Q).hU = (R = (Q.rX = 0, Q.uV = 8001, Q.cc = [], Q.H = null, Q.i = 0, window.performance) || {}, []), Q.nE = [], (Q.zw = 0, Q.A = void 0, Q).v = void 0, false), R.timeOrigin || (R.timing || {}).navigationStart || 0), Q), 0), 0)), l)(199, Q, Q), function(T, k, n, I, O, W) {
                l((n = E(T, (I = (k = (O = q(T, (W = q(T, 31), 30)), q(T, 29)), E(T, O)), W)), k), T, n in I | 0)
            }), 400), 131), Q, []), pt)(4)), function(T) {
                ZY(true, 0, 4, 9, T)
            }), 49), 82), Q, function(T, k, n, I) {
                t(52, 14, k, true, T, false) || (I = q(T, 8), n = q(T, 8), l(n, T, function(O) {
                    return eval(O)
                }(FN(E(T.R, I)))))
            }, 161), V)(90, Q, function(T) {
                Dc(4, T)
            }, 73), V)(81, Q, function(T, k, n) {
                (k = E((n = q(T, 30), T.R), n), k[0]).removeEventListener(k[1], k[2], AL)
            }, 18), 0), 0]), V)(83, Q, function(T, k, n, I, O, W, Z, F, N, r) {
                (n = E(T, (k = E(T, (Z = E(T, (W = q(T, (O = q(T, (r = q(T, (N = q(T, 9), 31)), 8)), 30)), O)), r)), W)), F = E(T.R, N), 0 !== F) && (I = Ct(1, n, false, 1, 32, T, Z, 1, F, k), F.addEventListener(k, I, AL), l(296, T, [F, k, I]))
            }, 222), Q), function(T, k) {
                Rs((k = E(T, q(T, 31)), 494), k, T.R)
            }, 87), function(T, k, n, I, O) {
                l((I = tL("null", (n = E(T, (O = q((k = q(T, 8), T), 30), k)), "call"), n), O), T, I)
            }), 82), Q), function(T, k, n, I, O) {
                l((n = (I = (O = q(T, (k = q(T, 31), 29)), E)(T, k), E)(T, O), O), T, n + I)
            }, 378), function(T) {
                Dc(1, T)
            }), 271), 314)), 0), 0), function(T) {
                os(4, T)
            }), 93), 69)), Q), 0), 460)), 501)), Q), function(T) {
                os(3, T)
            }, 409), 429)), 0)), 36)), function(T, k, n, I, O, W) {
                (O = (I = q(T, (W = q(T, (k = q(T, 30), 29)), 9)), E(T, W)), n = E(T, k) == O, l)(I, T, +n)
            }), 48), 206)), 89), Q, function(T, k, n, I, O) {
                !t(49, 14, k, true, T, false) && (O = $0(8, 31, 1, T, 0), I = O.x9, n = O.bV, T.R == T || n == T.tU && I == T) && (l(O.Gw, T, n.apply(I, O.u)), T.K = T.U())
            }, 301), Q), []), Q), function(T, k, n, I, O, W, Z, F, N, r, S, X, w, x) {
                if (!t(48, 14, k, true, T, true)) {
                    if ("object" == tL("null", (x = E(T, (N = (I = (r = E(T, (S = q(T, (Z = q(T, (W = (O = q(T, 8), q(T, 8)), 8)), 9)), S)), E(T, O)), E(T, Z)), W)), "call"), I)) {
                        for (w in n = [], I) n.push(w);
                        I = n
                    }
                    for (N = (F = (X = 0, I.length), 0 < N ? N : 1); X < F; X += N) x(I.slice(X, (X | 0) + (N | 0)), r)
                }
            }, 77), Q), [165, 0, 0]), Q), D), Q), function(T, k, n) {
                l((n = q(T, (k = q(T, 31), 29)), n), T, "" + E(T, k))
            }, 205), function(T, k, n, I) {
                l((k = q(T, (n = q(T, (I = q(T, 31), 9)), 8)), k), T, E(T, I) || E(T, n))
            }), 465), Q), 2048), Q), function(T, k, n, I, O, W) {
                I = (k = E(T, (W = (n = q(T, (O = q(T, 31), 8)), q(T, 31)), n)), E)(T, O), l(W, T, I[k])
            }, 180), 0), function(T, k, n, I, O, W, Z) {
                (W = q(T, (Z = (O = q(T, 29), q)(T, 9), 29)), T.R == T) && (n = E(T, Z), k = E(T, O), I = E(T, W), k[n] = I, 17 == O && (T.A = void 0, 2 == n && (T.g = cT(32, false, 8, T), T.A = void 0)))
            }), 287), 231)), new NE("Submit"), Q), {}), function(T, k, n, I) {
                0 != (I = E(T, (n = (k = q(T, 29), q)(T, 9), n)), E(T, k)) && l(494, T, I)
            }), 439), Q), function(T, k, n, I, O, W, Z, F) {
                W = (Z = E(T, (F = (k = q(T, (O = q(T, (I = (n = q(T, 31), q(T, 30)), 8)), 29)), E(T, k)), I)), E(T, O)), l(n, T, Ct(1, W, false, 1, 33, T, Z, F))
            }, 478), L)(0, [BT], 17, Q), [Hb, u]), 37, Q), rC), C], 33, Q), Q), true, true)
        },
        os = function(Q, C, u, A, R, J, T) {
            M(C, ((A = E((T = (u = (J = (R = Q & 3, Q) & 4, q(C, 30)), q(C, 29)), C), u), J && (A = gD(2, "" + A, 63)), R) && M(C, g(2, A.length), T), A), T)
        },
        NE = function(Q, C, u) {
            return Xk.call(this, 0, 3, u, Q, C, 5)
        },
        v = function(Q, C, u, A, R) {
            return j4.call(this, C, A, 14, u, Q, R)
        },
        KI = function(Q) {
            return K.call(this, Q, 5)
        },
        b = function(Q, C, u) {
            return u.j ? aX(u.G, u) : cT(Q, C, Q, u)
        },
        M = function(Q, C, u, A, R, J, T, k, n) {
            if (Q.R == Q)
                for (R = E(Q, u), 375 == u ? (k = function(I, O, W, Z, F) {
                        if ((O = ((W = R.length, W) | 0) - 4 >> 3, R).iV != O) {
                            Z = [(F = (O << 3) - 4, 0), 0, J[1], (R.iV = O, J[2])];
                            try {
                                R.OM = TM(3, 29, Ct(1, (F & 4) - 1 - ~(F | 4), 24, 4, 9, R), 0, 2, Ct(1, F, 24, 4, 10, R), Z)
                            } catch (N) {
                                throw N;
                            }
                        }
                        R.push(R.OM[(W | 7) - ~W + ~(W | 7) - (W & -8)] ^ I)
                    }, J = E(Q, 28)) : k = function(I) {
                        R.push(I)
                    }, A && k(A & 255), T = C.length, n = 0; n < T; n++) k(C[n])
        },
        DY = function(Q, C, u, A, R, J) {
            return Lt.call(this, 28, 26, C, Q, u, A, R, J)
        },
        Si = function(Q, C, u, A, R) {
            if (!(R = (A = C, D.trustedTypes), R) || !R.createPolicy) return A;
            try {
                A = R.createPolicy(u, {
                    createHTML: KI,
                    createScript: KI,
                    createScriptURL: KI
                })
            } catch (J) {
                if (D.console) D.console[Q](J.message)
            }
            return A
        },
        ji = function() {
            return RX.call(this, 22)
        },
        p, b7 = function(Q, C, u, A, R, J, T, k) {
            try {
                R = Q[((C & 2) - 1 - -3 + (C & -3)) % 3], Q[C] = (J = (T = Q[C], A = Q[((C | 0) + 1) % 3], ~(T & A) - ~(T | A) - 2 * (~T & A)) - (R | 0), k = 1 == C ? R << u : R >>> u, (k | 0) - 2 * (J & k) - 1 - ~J)
            } catch (n) {
                throw n;
            }
        },
        E = function(Q, C, u) {
            if (void 0 === (u = Q.l[C], u)) throw [MO, 30, C];
            if (u.value) return u.create();
            return (u.create(5 * C * C + 1 * C + -82), u).prototype
        },
        H = function(Q) {
            return uC.call(this, 3, 18, Q)
        },
        $0 = function(Q, C, u, A, R, J, T, k, n, I) {
            for (T = (J = q(A, (k = q((I = A[qE] || {}, A), C), I.Gw = q(A, 9), I.u = [], n = A.R == A ? (b(Q, true, A) | R) - u : 1, C)), R); T < n; T++) I.u.push(q(A, 9));
            for (I.bV = E(A, k); n--;) I.u[n] = E(A, I.u[n]);
            return I.x9 = E(A, J), I
        },
        x0 = function(Q, C, u, A) {
            return Xk.call(this, 0, 3, u, Q, C, 8, A)
        },
        XN = function(Q, C, u, A, R, J) {
            return (l(494, (Wb(3, ((J = E(A, 494), A.D) && J < A.B ? (l(494, A, A.B), Rs(494, u, A)) : l(494, A, u), C), R, A), A), J), E)(A, Q)
        },
        T1 = function(Q, C, u, A, R, J, T, k, n, I) {
            if ((n = Q[0], n) == VU) A.qK = 25, A.P(Q);
            else if (n == UH) {
                I = Q[1];
                try {
                    k = A.v || A.P(Q)
                } catch (O) {
                    d(A, C, 8, O), k = A.v
                }
                I(k)
            } else if (n == dD) A.P(Q);
            else if (n == Hb) A.P(Q);
            else if (n == rC) {
                try {
                    for (J = 0; J < A.cc.length; J++) try {
                        R = A.cc[J], R[0][R[1]](R[2])
                    } catch (O) {}
                } catch (O) {}(0, Q[1])(function(O, W) {
                    A.UM(O, true, W)
                }, (A.cc = [], function(O) {
                    (L(0, [OW], 85, (O = !A.C.length, A)), O) && B(18, true, A, false, true)
                }))
            } else {
                if (n == QU) return T = Q[2], l(u, A, Q[6]), l(183, A, T), A.P(Q);
                n == OW ? (A.D = [], A.l = null, A.nE = []) : n == BT && "loading" === D.document.readyState && (A.H = function(O, W) {
                    function Z() {
                        W || (W = true, O())
                    }(D.document.addEventListener((W = false, "DOMContentLoaded"), Z, AL), D).addEventListener("load", Z, AL)
                })
            }
        },
        cT = function(Q, C, u, A, R, J, T, k, n, I, O, W, Z, F, N, r, S) {
            if ((F = E(A, 494), F) >= A.B) throw [MO, 31];
            for (Z = (S = 0, W = F, J = A.lD.length, Q); 0 < Z;) k = W >> 3, R = A.D[k], n = W % u, O = u - (n | 0), N = O < Z ? O : Z, C && (I = A, I.A != W >> 6 && (I.A = W >> 6, r = E(I, 17), I.AU = TM(3, 29, I.A, 0, 2, I.g, [0, 0, r[1], r[2]])), R ^= A.AU[k & J]), W += N, S |= (R >> u - (n | 0) - (N | 0) & (1 << N) - 1) << (Z | 0) - (N | 0), Z -= N;
            return l(494, A, (T = S, (F | 0) + (Q | 0))), T
        },
        P = function(Q, C, u, A, R, J, T, k) {
            return j4.call(this, C, A, 55, u, Q, R, J, T, k)
        },
        l7 = function(Q) {
            return OH.call(this, 4, 11, Q)
        },
        sW = function(Q, C, u, A, R, J, T, k, n, I, O, W) {
            C.push((J = Q[0] << 24 | Q[1] << 16, n = Q[2] << 8, (J & n) + ~(J & n) - ~J + (~J & n)) | Q[3]), C.push((k = (W = Q[4] << 24, O = Q[5] << 16, -~(W & O) + -2 - (~W ^ O)), A = Q[6] << 8, (k | 0) + ~k - ~(k | A)) | Q[7]), C.push((I = (T = Q[8] << 24, R = Q[9] << 16, (T | 0) + (R | 0) + ~T - (~T | R)), u = Q[10] << 8, ~(I & u) - 2 * ~(I | u) + (~I ^ u)) | Q[11])
        },
        Dc = function(Q, C, u, A) {
            M(C, g(Q, (u = (A = q(C, 31), q(C, 8)), E(C, A))), u)
        },
        PT = "closure_uid_" + (1E9 * Math.random() >>> 0),
        z1 = 0,
        kA, vT = function(Q, C) {
            if (!D.addEventListener || !Object.defineProperty) return false;
            Q = (C = false, Object.defineProperty({}, "passive", {get: function() {
                    C = true
                }
            }));
            try {
                D.addEventListener("test", function() {}, Q), D.removeEventListener("test", function() {}, Q)
            } catch (u) {}
            return C
        }(),
        Kt = {
            2: (e(2, 13, c, (Fk.prototype.LE = false, c.prototype.stopPropagation = (c.prototype.preventDefault = function() {
                this.defaultPrevented = true
            }, function() {
                this.X = true
            }), v)), "touch"),
            3: "pen",
            4: "mouse"
        },
        NO = "closure_listenable_" + ((v.prototype.stopPropagation = function() {
            (v.T.stopPropagation.call(this), this.h).stopPropagation ? this.h.stopPropagation() : this.h.cancelBubble = true
        }, v.prototype.preventDefault = function(Q) {
            Q = (v.T.preventDefault.call(this), this).h, Q.preventDefault ? Q.preventDefault() : Q.returnValue = false
        }, 1E6 * Math.random()) | 0),
        S4 = 0,
        CI = "constructor hasOwnProperty isPrototypeOf propertyIsEnumerable toLocaleString toString valueOf".split(" "),
        WT = "closure_lm_" + (1E6 * (((H.prototype.EM = (H.prototype.hasListener = function(Q, C, u, A, R) {
            return oX(38, (A = (u = void 0 !== C, R = void 0 !== Q) ? Q.toString() : "", 57), false, true, function(J, T) {
                for (T = 0; T < J.length; ++T)
                    if (!(R && J[T].type != A || u && J[T].capture != C)) return true;
                return false
            }, this.o)
        }, function(Q, C, u, A, R, J) {
            return -1 < (R = (J = this.o[u.toString()], -1), J && (R = K(0, 72, J, C, A, Q)), R) ? J[R] : null
        }), H).prototype.remove = function(Q, C, u, A, R, J, T) {
            if (!(R = Q.toString(), R in this.o)) return false;
            return -1 < (J = K(0, 74, (T = this.o[R], T), C, u, A), J) ? (K(true, 9, T[J]), Array.prototype.splice.call(T, J, 1), 0 == T.length && (delete this.o[R], this.O--), true) : false
        }, H).prototype.add = function(Q, C, u, A, R, J, T, k, n) {
            return (T = K(0, ((n = (k = Q.toString(), this.o[k]), n) || (n = this.o[k] = [], this.O++), 73), n, C, A, R), -1 < T) ? (J = n[T], u || (J.F = false)) : (J = new QV(!!A, R, k, C, this.src), J.F = u, n.push(J)), J
        }, Math.random()) | 0),
        mO = {},
        lC = 0,
        e4 = "__closure_events_fn_" + (1E9 * Math.random() >>> 0);
    (((((e(2, 29, Fk, iC), iC).prototype[NO] = true, p = iC.prototype, p.MK = function(Q) {
        this.Tw = Q
    }, p).addEventListener = function(Q, C, u, A) {
        oX(38, 13, "object", false, Q, u, A, this, C)
    }, p).removeEventListener = function(Q, C, u, A) {
        d(0, "object", 15, u, this, A, C, Q)
    }, p).dispatchEvent = function(Q, C, u, A, R, J, T, k, n, I, O) {
        if (n = this.Tw)
            for (A = []; n; n = n.Tw) A.push(n);
        if (J = !("string" === (k = (I = (R = A, C = Q, this.XD), C.type) || C, typeof C) ? C = new c(C, I) : C instanceof c ? C.target = C.target || I : (u = C, C = new c(k, I), u7(C, u)), 0), R)
            for (O = R.length - 1; !C.X && 0 <= O; O--) T = C.currentTarget = R[O], J = a(21, 0, true, C, k, T) && J;
        if (C.X || (T = C.currentTarget = I, J = a(19, 0, true, C, k, T) && J, C.X || (J = a(18, 0, false, C, k, T) && J)), R)
            for (O = 0; !C.X && O < R.length; O++) T = C.currentTarget = R[O], J = a(20, 0, false, C, k, T) && J;
        return J
    }, p.EM = function(Q, C, u, A) {
        return this.J.EM(Q, C, String(u), A)
    }, p).hasListener = function(Q, C) {
        return this.J.hasListener(void 0 !== Q ? String(Q) : void 0, C)
    };
    var wD;
    (((p = (e(2, 5, (((((((((p = IX.prototype, p).I = function(Q) {
        return "string" === typeof Q ? this.Y.getElementById(Q) : Q
    }, p).getElementsByTagName = function(Q, C) {
        return (C || this.Y).getElementsByTagName(String(Q))
    }, p).createElement = function(Q, C, u) {
        return ("application/xhtml+xml" === (C = (u = this.Y, String(Q)), u).contentType && (C = C.toLowerCase()), u).createElement(C)
    }, p).createTextNode = function(Q) {
        return this.Y.createTextNode(String(Q))
    }, p.appendChild = function(Q, C) {
        Q.appendChild(C)
    }, p.append = function(Q, C) {
        Is(false, Q, 1, "array", 9 == Q.nodeType ? Q : Q.ownerDocument || Q.document, arguments, 0)
    }, p).canHaveChildren = function(Q) {
        if (1 != Q.nodeType) return false;
        switch (Q.tagName) {
            case "APPLET":
            case "AREA":
            case "BASE":
            case "BR":
            case "COL":
            case "COMMAND":
            case "EMBED":
            case "FRAME":
            case "HR":
            case "IMG":
            case "INPUT":
            case "IFRAME":
            case "ISINDEX":
            case "KEYGEN":
            case "LINK":
            case "NOFRAMES":
            case "NOSCRIPT":
            case "META":
            case "OBJECT":
            case "PARAM":
            case "SCRIPT":
            case "SOURCE":
            case "STYLE":
            case "TRACK":
            case "WBR":
                return false
        }
        return true
    }, p).removeNode = l7, p).contains = function(Q, C) {
        if (!Q || !C) return false;
        if (Q.contains && 1 == C.nodeType) return Q == C || Q.contains(C);
        if ("undefined" != typeof Q.compareDocumentPosition) return Q == C || !!(Q.compareDocumentPosition(C) & 16);
        for (; C && Q != C;) C = C.parentNode;
        return C == Q
    }, B)(34, Zc), Zc.prototype.yC = 0, Zc.prototype.Y9 = "", iC), HT), HT.prototype), p.fE = Zc.yG(), p.I = function() {
        return this.k9
    }, p).getParent = function() {
        return this.oR
    }, p).MK = function(Q) {
        if (this.oR && this.oR != Q) throw Error("Method not supported");
        HT.T.MK.call(this, Q)
    }, p.pE = function() {
        this.e$ = ((L(this, function(Q) {
            Q.e$ && Q.pE()
        }, 78), this).IR && G1(92, 0, 3, true, this.IR), false)
    }, p).removeChild = function(Q, C, u, A, R, J, T, k, n, I, O, W) {
        if (Q && ("string" === typeof Q ? I = Q : ((W = Q.VG) || (O = Q.fE, k = Q, A = O.Y9 + ":" + (O.yC++).toString(36), W = k.VG = A), I = W), R = I, this.CE && R ? (n = this.CE, J = (null !== n && R in n ? n[R] : void 0) || null) : J = null, Q = J, R && Q)) {
            if (null == (y(1, 23, this.JU, ((u = this.CE, R) in u && delete u[R], Q)), C && (Q.pE(), Q.k9 && l7(Q.k9)), T = Q, T)) throw Error("Unable to set parent component");
            (T.oR = null, HT.T).MK.call(T, null)
        }
        if (!Q) throw Error("Child is not in parent component");
        return Q
    };
    var yV, fI = {
            button: "pressed",
            checkbox: "checked",
            menuitem: "selected",
            menuitemcheckbox: "checked",
            menuitemradio: "checked",
            radio: "checked",
            tab: (B(36, ji), "selected"),
            treeitem: "selected"
        },
        rD = (B(35, (e(2, ((((p = ji.prototype, p.gX = function() {
            return "goog-control"
        }, p).j$ = function(Q) {
            return Q.I()
        }, p.s = function(Q, C, u, A, R, J) {
            if (A = Q.I()) this.QG || (J = this.gX(), J.replace(/\xa0|\s/g, " "), this.QG = {
                1: J + "-disabled",
                2: J + "-hover",
                4: J + "-active",
                8: J + "-selected",
                16: J + "-checked",
                32: J + "-focused",
                64: J + "-open"
            }), (R = this.QG[C]) && this.W(Q, R, u), this.S$(A, C, u)
        }, p).W = function(Q, C, u, A) {
            (A = Q.I ? Q.I() : Q) && (u ? i7 : nI)(A, [C])
        }, p).NK = function(Q, C, u, A, R, J) {
            if (Q.vc & 32 && (u = Q.j$())) {
                if (!C && Q.S & 32) {
                    try {
                        u.blur()
                    } catch (T) {}
                    Q.S & 32 && (OH(4, 5, 0, 2, 4, Q) && Q.setActive(false), OH(4, 12, 0, 2, 32, Q) && f(16, false, 41, Q, 32) && Q.s(32, false))
                }
                if (A = u.hasAttribute("tabindex")) J = u.tabIndex, A = "number" === typeof J && 0 <= J && 32768 > J;
                A != C && (R = u, C ? R.tabIndex = 0 : (R.tabIndex = -1, R.removeAttribute("tabIndex")))
            }
        }, p.S$ = function(Q, C, u, A, R, J, T) {
            (R = Q.getAttribute((A = (yV || (yV = {
                1: "disabled",
                8: "selected",
                16: "checked",
                64: "expanded"
            }), yV[C]), "role")) || null) ? (T = fI[R] || A, J = "checked" == A || "selected" == A ? T : A) : J = A, J && e("off", 16, Q, "none", J, u)
        }, 37), ji, JZ), JZ)), JZ.prototype.gX = function() {
            return "goog-button"
        }, {});
    if ((((((((p = (e(2, 5, HT, (JZ.prototype.S$ = function(Q, C, u) {
            switch (C) {
                case 8:
                case 16:
                    e("off", 8, Q, "none", "pressed", u);
                    break;
                default:
                case 64:
                case 1:
                    JZ.T.S$.call(this, Q, C, u)
            }
        }, P)), P).prototype, p).W = function(Q, C) {
            C ? Q && (this.L ? 0 <= y(1, 20, Q, this.L) || this.L.push(Q) : this.L = [Q], this.V.W(this, Q, true)) : Q && this.L && y(1, 31, this.L, Q) && (0 == this.L.length && (this.L = null), this.V.W(this, Q, false))
        }, p).KE = 255, p.pE = function() {
            ((P.T.pE.call(this), this).Wc && this.Wc.detach(), this.isVisible() && this.isEnabled()) && this.V.NK(this, false)
        }, p.vc = 39, p).oe = true, p.L = null, p.j$ = function() {
            return this.V.j$(this)
        }, p).Re = 0, p).S = 0, p).isVisible = function() {
            return this.oe
        }, p.isEnabled = function() {
            return !(this.S & 1)
        }, p.isActive = function() {
            return !!(this.S & 4)
        }, p.setActive = function(Q) {
            f(16, Q, 43, this, 4) && this.s(4, Q)
        }, p.getState = function() {
            return this.S
        }, p.s = function(Q, C, u, A, R, J, T) {
            u || 1 != Q ? this.vc & Q && C != !!(this.S & Q) && (this.V.s(this, Q, C), this.S = C ? (R = this.S, -~Q - (~R ^ Q) + (~R & Q) + 2 * (R | ~Q)) : (J = this.S, ~Q + (~J ^ ~Q) - (~J | ~Q))) : (A = !C, T = this.getParent(), T && "function" == typeof T.isEnabled && !T.isEnabled() || !f(16, !A, 40, this, 1) || (A || (this.setActive(false), f(16, false, 42, this, 2) && this.s(2, false)), this.isVisible() && this.V.NK(this, A), this.s(1, !A, true)))
        }, "function") !== typeof P) throw Error("Invalid component class " + P);
    if ("function" !== typeof ji) throw Error("Invalid renderer class " + ji);
    var tZ = U(41, 8, P);
    L("goog-button", function() {
        return new NE(null)
    }, (e(2, 21, (((B(37, (e(2, 13, (L("goog-control", function() {
        return new P(null)
    }, (rD[tZ] = ji, 3)), JZ), z), z)), z.prototype).S$ = function() {}, z).prototype.s = function(Q, C, u, A) {
        (A = (z.T.s.call(this, Q, C, u), Q.I())) && 1 == C && (A.disabled = u)
    }, z.prototype.NK = function() {}, P), NE), 6));
    var EH, qO = D.requestIdleCallback ? function(Q) {
            requestIdleCallback(function() {
                Q()
            }, {
                timeout: 4
            })
        } : D.setImmediate ? function(Q) {
            setImmediate(Q)
        } : function(Q) {
            setTimeout(Q, 0)
        },
        AL = {
            passive: true,
            capture: true
        },
        qE = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        QU = [],
        VU = ((h.prototype.ZW = false, h.prototype.cd = void 0, h.prototype).Bc = "toString", []),
        Hb = [],
        rC = [],
        OW = (h.prototype.Ma = void 0, []),
        BT = [],
        dD = [],
        MO = {},
        UH = [],
        sH = (((sW, function() {})(pt), b7, function() {})(k0), h.prototype.N = "create", MO.constructor),
        yU = ((p = h.prototype, p.wx = function(Q, C, u, A, R, J, T, k, n, I) {
            return RX.call(this, 3, Q, C, u, A, R, J, T, k, n, I)
        }, p.CZ = function() {
            return RX.call(this, 12)
        }, p).U = (window.performance || {}).now ? function() {
            return this.pZ + window.performance.now()
        } : function() {
            return +new Date
        }, p.J0 = function() {
            return a.call(this, 9)
        }, void 0);
    ((p.vd = function(Q, C, u, A, R, J, T) {
        return U.call(this, 41, 5, Q, C, u, A, R, J, T)
    }, p).UM = (p.s9 = function(Q, C, u, A, R, J, T, k, n) {
        return j4.call(this, C, A, 35, u, Q, R, J, T, k, n)
    }, function(Q, C, u, A, R, J) {
        return q.call(this, Q, 16, C, u, A, R, J)
    }), h.prototype).P = function(Q, C) {
        return C = (Q = {}, {}), yU = function() {
                return Q == C ? -82 : -142
            },
            function(u, A, R, J, T, k, n, I, O, W, Z, F, N, r, S, X, w, x, JL, Y) {
                JL = Q, Q = C;
                try {
                    if (X = u[0], X == Hb) {
                        N = u[1];
                        try {
                            for (n = (W = atob((w = (r = [], 0), N)), 0); n < W.length; n++) Z = W.charCodeAt(n), 255 < Z && (r[w++] = Z & 255, Z >>= 8), r[w++] = Z;
                            l(17, (this.B = (this.D = r, this.D.length) << 3, this), [0, 0, 0])
                        } catch (nt) {
                            hL(17, this, 3, nt);
                            return
                        }
                        Wb(3, 14, 8001, this)
                    } else if (X == VU) u[1].push(E(this, 34), E(this, 264).length, E(this, 131).length, E(this, 375).length), l(183, this, u[2]), this.l[254] && XN(183, 14, E(this, 254), this, 8001);
                    else {
                        if (X == UH) {
                            this.R = (A = (R = g(2, (E(this, (F = u[2], 264)).length | 0) + 2), this).R, this);
                            try {
                                I = E(this, 116), 0 < I.length && M(this, g(2, I.length).concat(I), 264, 15), M(this, g(1, this.wX), 264, 104), M(this, g(1, this[UH].length), 264), x = 0, x += E(this, 340) & 2047, x -= (E(this, 264).length | 0) + 5, T = E(this, 375), 4 < T.length && (x -= (T.length | 0) + 3), 0 < x && M(this, g(2, x).concat(pt(x)), 264, 10), 4 < T.length && M(this, g(2, T.length).concat(T), 264, 153)
                            } finally {
                                this.R = A
                            }
                            if (Y = (((S = pt(2).concat(E(this, 264)), S[1] = S[0] ^ 3, S)[3] = S[1] ^ R[0], S)[4] = S[1] ^ R[1], this.DW(S))) Y = "!" + Y;
                            else
                                for (J = 0, Y = ""; J < S.length; J++) k = S[J][this.Bc](16), 1 == k.length && (k = "0" + k), Y += k;
                            return (E(this, (E(this, (l((O = Y, 34), this, F.shift()), 264)).length = F.shift(), 131)).length = F.shift(), E)(this, 375).length = F.shift(), O
                        }
                        if (X == dD) XN(183, 14, u[1], this, u[2]);
                        else if (X == QU) return XN(183, 14, u[1], this, 8001)
                    }
                } finally {
                    Q = JL
                }
            }
    }(), h.prototype.ae = 0;
    var LI, Bb = ((h.prototype[rC] = [0, 0, 1, 1, 0, 1, 1], (h.prototype.DW = function(Q, C, u, A, R) {
            return oX.call(this, 38, 67, Q, C, u, A, R)
        }, h).prototype).zN = 0, /./),
        VV = Hb.pop.bind(h.prototype[VU]),
        FN = (LI = Lt(28, 15, (Bb[h.prototype.Bc] = VV, h).prototype.N, {get: VV
        }), h.prototype.Sj = void 0, function(Q, C) {
            return (C = Si("error", null, "bg")) && 1 === Q.eval(C.createScript("1")) ? function(u) {
                return C.createScript(u)
            } : function(u) {
                return "" + u
            }
        })(D);
    (40 < (EH = D.botguard || (D.botguard = {}), EH.m) || (EH.m = 41, EH.bg = x0, EH.a = bC), EH).KDL_ = function(Q, C, u) {
        return u = new h(Q, C), [function(A) {
            return U(41, 82, false, A, u)
        }]
    };
}).call(this);
#60 JavaScript::Eval (size: 388) - SHA256: 44b7a004fb4bc68402acee41ed4155a513d5d7aeb7ca43067b5f7e9dadafabb4
q = function(Q, C, u, A, R, J, T, k) {
    if (C - 7 << 2 >= C && (C + 3 & 38) < C)
        if (T = "array" === tL("null", "call", A) ? A : [A], this.v) Q(this.v);
        else try {
            R = !this.C.length, J = [], L(0, [VU, J, T], 17, this), L(0, [UH, Q, J], 33, this), u && !R || B(19, true, this, true, u)
        } catch (n) {
            d(this, ":", 3, n), Q(this.v)
        }
        return (C | 8) == C && (Q.j ? k = aX(Q.G, Q) : (A = cT(8, true, 8, Q), A & 128 && (A ^= 128, R = cT(2, true, 8, Q), A = (u = A << 2, ~(u & R) - 3 * ~(u | R) - 2 * (~u & R) + 2 * (~u | R))), k = A)), k
}
#61 JavaScript::Eval (size: 2) - SHA256: e1b0acf86b9621b8c13ca17bb2f2a23d662bfa940453d8e897a77e39d9e8bd59
b7
#62 JavaScript::Eval (size: 181) - SHA256: 532554fe0fd1defd2d102503b45504b9ad9289e476e9c1b5066c6062b63c00bf
b7 = function(Q, C, u, A, R, J, T, k) {
    try {
        R = Q[((C & 2) - 1 - -3 + (C & -3)) % 3], Q[C] = (J = (T = Q[C], A = Q[((C | 0) + 1) % 3], ~(T & A) - ~(T | A) - 2 * (~T & A)) - (R | 0), k = 1 == C ? R << u : R >>> u, (k | 0) - 2 * (J & k) - 1 - ~J)
    } catch (n) {
        throw n;
    }
}
#63 JavaScript::Eval (size: 2) - SHA256: 840a8dcfeae95966a870b0b5257997ce94cbc19dd979409d1671d2e93a9e0de6
os
#64 JavaScript::Eval (size: 248) - SHA256: 2d6c3ef492c1087a7a0b963b8e313c66d4d95db24b4c8b7354fcc56104bca315
l = function(Q, C, u) {
    if (494 == Q || 248 == Q) C.l[Q] ? C.l[Q].concat(u) : C.l[Q] = ft(24, C, u);
    else {
        if (C.Hc && 17 != Q) return;
        264 == Q || 375 == Q || 131 == Q || 116 == Q || 28 == Q ? C.l[Q] || (C.l[Q] = ft(14, 7, 0, 94, Q, u, C)) : C.l[Q] = ft(13, 7, 0, 65, Q, u, C)
    }
    17 == Q && (C.g = cT(32, false, 8, C), C.A = void 0)
}
#65 JavaScript::Eval (size: 138) - SHA256: 78168121350b11f24e6faf725e6fe62c2066bcd1a40efc1e9baaf39ea10a34b0
0,
function(T, k, n, I, O, W, Z, F) {
    W = (Z = E(T, (F = (k = q(T, (O = q(T, (I = (n = q(T, 31), q(T, 30)), 8)), 29)), E(T, k)), I)), E(T, O)), l(n, T, Ct(1, W, false, 1, 33, T, Z, F))
}
#66 JavaScript::Eval (size: 1) - SHA256: cd0aa9856147b6c5b4ff2b7dfee5da20aa38253099ef1b4a64aced233c9afe29
g
#67 JavaScript::Eval (size: 1) - SHA256: 8e35c2cd3bf6641bdb0e2050b76932cbb2e6034a0ddacc1d9bea82a6ba57f7cf
q
#68 JavaScript::Eval (size: 498) - SHA256: 8943e3808d2818cffb00cd9c60e6b9719df67467b6d5c1592af7dac26bcbea9e
ft = function(Q, C, u, A, R, J, T, k, n, I, O, W) {
    return (Q & 28) == Q && (A = sH[C.N](C.FD), A[C.N] = function() {
        return u
    }, A.concat = function(Z) {
        u = Z
    }, W = A), (Q - 8 ^ 22) >= Q && (Q + 3 ^ 22) < Q && (n = A & C, J = [-16, 1, 32, -14, -69, 2, J, -11, 3, -88], O = yU, k = sH[T.N](T.mY), k[T.N] = function(Z) {
        n += 6 + C * A, I = Z, n &= C
    }, k.concat = function(Z, F, N, r, S) {
        return (S = (I = (r = (F = R % 16 + 1, +n + 5 * R * R * F + 39 * I * I + (O() | u) * F - 195 * R * R * I) - 39 * R * I + J[Z = n + 51, (Z | u) + 14 - 2 * (Z | C) + (Z & -8)] * R * F - F * I - -3198 * I, void 0), J[r]), J)[(N = n + 37, -~(N | C) - (~N & C) + (~N | C)) + (1 - (A ^ 2) - (~A | 2))] = S, J[n + (A & 2)] = 1, S
    }, W = k), W
}
#69 JavaScript::Eval (size: 22) - SHA256: d480cc2904bf3fb18ad7339083a8ddc4d01cd0cb0d25a30302cb8e7c204b7514
0,
function(T) {
    os(0, T)
}
#70 JavaScript::Eval (size: 136) - SHA256: 7bf897f713a4cbad7c285c849888d2e75797dc57b63af5b3e2838370c1c39174
0, os = function(Q, C, u, A, R, J, T) {
    M(C, ((A = E((T = (u = (J = (R = Q & 3, Q) & 4, q(C, 30)), q(C, 29)), C), u), J && (A = gD(2, "" + A, 63)), R) && M(C, g(2, A.length), T), A), T)
}
#71 JavaScript::Eval (size: 22) - SHA256: cad2709417bbfa44e9cf1bdab3fc73e4623c1e3654b01114cbe28cbd0e5eb623
0,
function(T) {
    Dc(2, T)
}
#72 JavaScript::Eval (size: 22) - SHA256: 07f0a1379b1fd8f83d4d15ea482db3b0003d47c3156786071c60306003d637dc
0,
function(T) {
    Dc(4, T)
}
#73 JavaScript::Eval (size: 375) - SHA256: 032f5060cb01b5a30f6a810ed20460c0352d8e9d3fe2478c53ded458d9d70d08
0, M = function(Q, C, u, A, R, J, T, k, n) {
    if (Q.R == Q)
        for (R = E(Q, u), 375 == u ? (k = function(I, O, W, Z, F) {
                if ((O = ((W = R.length, W) | 0) - 4 >> 3, R).iV != O) {
                    Z = [(F = (O << 3) - 4, 0), 0, J[1], (R.iV = O, J[2])];
                    try {
                        R.OM = TM(3, 29, Ct(1, (F & 4) - 1 - ~(F | 4), 24, 4, 9, R), 0, 2, Ct(1, F, 24, 4, 10, R), Z)
                    } catch (N) {
                        throw N;
                    }
                }
                R.push(R.OM[(W | 7) - ~W + ~(W | 7) - (W & -8)] ^ I)
            }, J = E(Q, 28)) : k = function(I) {
                R.push(I)
            }, A && k(A & 255), T = C.length, n = 0; n < T; n++) k(C[n])
}
#74 JavaScript::Eval (size: 213) - SHA256: 74e2fd49914d08ea5491cf6e4501908b25c6b15cd6fba36cecf7d358c9ca8983
0, $0 = function(Q, C, u, A, R, J, T, k, n, I) {
    for (T = (J = q(A, (k = q((I = A[qE] || {}, A), C), I.Gw = q(A, 9), I.u = [], n = A.R == A ? (b(Q, true, A) | R) - u : 1, C)), R); T < n; T++) I.u.push(q(A, 9));
    for (I.bV = E(A, k); n--;) I.u[n] = E(A, I.u[n]);
    return I.x9 = E(A, J), I
}
#75 JavaScript::Eval (size: 51) - SHA256: 5acc0aeed1a71ae01f76f8d6ba772455d38ad782399827bca3f6ac7791bf13df
b = function(Q, C, u) {
    return u.j ? aX(u.G, u) : cT(Q, C, Q, u)
}
#76 JavaScript::Eval (size: 2) - SHA256: d80517b01e0a600953970886552a49903be18791674c6eee956d0c42aadd5462
aX
#77 JavaScript::Eval (size: 118) - SHA256: ed41d81a77766e5d633753b2ad29f5f1e626f0cc07655db2e348136db3843083
0, aX = function(Q, C, u) {
    return (u = Q.create().shift(), C.j.create()).length || C.G.create().length || (C.G = void 0, C.j = void 0), u
}
#78 JavaScript::Eval (size: 92) - SHA256: cb5abdcca7097f7e15d628d536eb80d4577ff0fdd8ebedf2c78c4359e310b090
0,
function(T, k, n, I, O, W) {
    (O = (I = q(T, (W = q(T, (k = q(T, 30), 29)), 9)), E(T, W)), n = E(T, k) == O, l)(I, T, +n)
}
#79 JavaScript::Eval (size: 2) - SHA256: dfa50c5595397c61c39d437beb400a427d91773974409c8cb1d9c8e88be93e8b
TM
#80 JavaScript::Eval (size: 2) - SHA256: 9e6c44ede19dd1af4074a3e35e84fd4ef010d6b85053457ab9d84f282d168dd1
XN
#81 JavaScript::Eval (size: 128) - SHA256: fdf92df13681b942798eede4317c78da37955199123149d9d9f8b5c73143f13f
k0 = function(Q, C, u, A, R) {
    if (3 == Q.length) {
        for (R = 0; 3 > R; R++) C[R] += Q[R];
        for (A = 0, u = [13, 8, 13, 12, 16, 5, 3, 10, 15]; 9 > A; A++) C[3](C, A % 3, u[A])
    }
}
#82 JavaScript::Eval (size: 70) - SHA256: fd53ae429000521bd35d7c2702d8240d6a0fea2ff26c12b9f4a9e967df245934
0, pt = function(Q, C) {
    for (C = []; Q--;) C.push(255 * Math.random() | 0);
    return C
}
#83 JavaScript::Eval (size: 474) - SHA256: 243fbccae64534b3514d738f9eef1adb49c0df1b37eacb8906a558e91ca2e252
0, Ct = function(Q, C, u, A, R, J, T, k, n, I, O, W) {
    return (R | 32) == ((R + 4 ^ 8) < R && (R - 9 | 18) >= R && (O = (T = J[C] << u | J[2 * (C | Q) - ~(C & Q) + ~(C | Q)] << 16 | J[~(C & 2) - 3 * ~(C | 2) + 2 * (~C ^ 2)] << 8, k = J[-2 * ~(C & 3) - A * (~C ^ 3) + 3 * (C | -4) + 3 * (~C | 3)], -~T + 2 * (~T & k) + (T | ~k))), R) && (O = W = function() {
        if (J.R == J) {
            if (J.l) {
                var Z = [QU, T, C, void 0, n, I, arguments];
                if (2 == k) var F = B(21, true, J, (L(0, Z, 21, J), u), u);
                else if (k == A) {
                    var N = !J.C.length;
                    (L(0, Z, 21, J), N) && B(16, true, J, u, u)
                } else F = T1(Z, ":", 52, J);
                return F
            }
            n && I && n.removeEventListener(I, W, AL)
        }
    }), O
}
#84 JavaScript::Eval (size: 2) - SHA256: 4b86f6aadae30d8ecb58bebea14a1964b4749cdf207515169e8a128670172471
hL
#85 JavaScript::Eval (size: 1) - SHA256: 3e23e8160039594a33894f6564e1b1348bbd7a0088d42c4acb73eeaed59c009d
b
#86 JavaScript::Eval (size: 141) - SHA256: 0233bc29abaa039dcbb3981ac7415e07430691e9a31bcbb3b7746d3f07c16de2
0,
function(T, k, n, I) {
    if (I = T.hU.pop()) {
        for (k = b(8, true, T); 0 < k; k--) n = q(T, 30), I[n] = T.l[n];
        I[34] = (I[116] = T.l[116], T.l[34]), T.l = I
    } else l(494, T, T.B)
}
#87 JavaScript::Eval (size: 77) - SHA256: 361c832a3759e2080516a019aa9de63bf135a4bd5e706f673b67850202fad314
0,
function(T, k, n, I) {
    l((n = (k = b((I = q(T, 30), 8), true, T), q(T, 9)), n), T, E(T, I) >>> k)
}
#88 JavaScript::Eval (size: 79) - SHA256: 005474d8b33f5d37bd0ffb53964e71ff8d9968eaca5b949633bac4317bb1078e
0,
function(T, k, n, I, O) {
    l((n = (I = (O = q(T, (k = q(T, 31), 29)), E)(T, k), E)(T, O), O), T, n + I)
}
#89 JavaScript::Eval (size: 250) - SHA256: e0af13797034c56dc683b7023ca687cd324ff76f3a1b6cf19f8477802fd7a66d
0, l = function(Q, C, u) {
    if (494 == Q || 248 == Q) C.l[Q] ? C.l[Q].concat(u) : C.l[Q] = ft(24, C, u);
    else {
        if (C.Hc && 17 != Q) return;
        264 == Q || 375 == Q || 131 == Q || 116 == Q || 28 == Q ? C.l[Q] || (C.l[Q] = ft(14, 7, 0, 94, Q, u, C)) : C.l[Q] = ft(13, 7, 0, 65, Q, u, C)
    }
    17 == Q && (C.g = cT(32, false, 8, C), C.A = void 0)
}
#90 JavaScript::Eval (size: 79) - SHA256: dbda6ffa361d37743980d93e90560a9ebd285568988965b973cd5cfead1974b7
0,
function(T, k, n, I, O) {
    l((n = (I = (O = q(T, (k = q(T, 31), 29)), E)(T, k), E)(T, O), O), T, n - I)
}
#91 JavaScript::Eval (size: 91) - SHA256: aab5d4fbced99e07921530808643b8c9d33966b5200eda9f10d88ee7f4d4ab89
0,
function(T, k, n, I, O, W) {
    (O = (I = q(T, (W = q(T, (k = q(T, 30), 29)), 9)), E(T, W)), n = E(T, k) > O, l)(I, T, +n)
}
#92 JavaScript::Eval (size: 197) - SHA256: cd4ef25b1fd7b24bfed26f15602a9e7f4d273c364e4dfaf62cfdc9cc2542dd95
ZY = function(Q, C, u, A, R, J, T, k, n, I) {
    if ((A & 61) == (A << 2 & 7 || (R = b(8, Q, u), R & 128 && (R = 128 + (R | -128) | b(8, Q, u) << C), I = R), A)) {
        for (n = (T = q(R, 29), C); u > C; u--) n = (J = n << 8, k = b(8, Q, R), (k | C) + (J ^ k) - (~J & k));
        l(T, R, n)
    }
    return I
}
#93 JavaScript::Eval (size: 2) - SHA256: dbf6743154c455ef7d4b58c4453bd920c8fc1ad6f50875cea9e8edd73254113f
gD
#94 JavaScript::Eval (size: 104) - SHA256: 7d3aa529b50cdfc613fbdbb819245a2f5b524d55f01aefd12856fa4c9618c7a5
0,
function(T, k, n, I, O) {
    for (k = (I = ZY(true, 7, (n = q(T, 29), T), 14), 0), O = []; k < I; k++) O.push(b(8, true, T));
    l(n, T, O)
}
#95 JavaScript::Eval (size: 83) - SHA256: 0cb21d1de060008bab472c15c63e6f15828de601f85deff00d701d26c0f6819a
0,
function(_, $) {
    while (_._ += !(_.$[_[_._] = _[$._]] && _.M.push(_._, _[$._])), $.$ ^ ++$._);
}
#96 JavaScript::Eval (size: 76) - SHA256: 1e5c33f1940d5f0f4569dbdf0747d9cfb2df63cbd418bde4e4bc856bcfa5a2dc
0,
function(T, k, n, I) {
    l((n = (k = b((I = q(T, 30), 8), true, T), q(T, 9)), n), T, E(T, I) << k)
}
#97 JavaScript::Eval (size: 131) - SHA256: d755017a443dd24ea9789c55319a4adceb3d0234e85f28e58f6ab2da543063cb
E = function(Q, C, u) {
    if (void 0 === (u = Q.l[C], u)) throw [MO, 30, C];
    if (u.value) return u.create();
    return (u.create(5 * C * C + 1 * C + -82), u).prototype
}
#98 JavaScript::Eval (size: 114) - SHA256: a0d8c61f2034437b65c289c978488193c4cac406e6a1ca402b2442a01708a5c3
0,
function(T, k, n, I) {
    t(52, 14, k, true, T, false) || (I = q(T, 8), n = q(T, 8), l(n, T, function(O) {
        return eval(O)
    }(FN(E(T.R, I)))))
}
#99 JavaScript::Eval (size: 8) - SHA256: 3c4b9b06fe520e9d07b2150eebd412a59c91d789706d99a2b2dc9bf217604d1f
_ate.cbs
#100 JavaScript::Eval (size: 32) - SHA256: a1bbea6153ac33ce659a4b13ca3dfdd4fe26ae4178a26a51df832c60dc76cfba
0,
function(T) {
    ZY(true, 0, 1, 13, T)
}
#101 JavaScript::Eval (size: 141) - SHA256: 0cbf4b6196513142561205c76529ee8ffdb3685df9a7b6fce0c3bc7c4b73d0d1
0,
function(T, k, n, I, O) {
    !t(49, 14, k, true, T, false) && (O = $0(8, 31, 1, T, 0), I = O.x9, n = O.bV, T.R == T || n == T.tU && I == T) && (l(O.Gw, T, n.apply(I, O.u)), T.K = T.U())
}
#102 JavaScript::Eval (size: 153) - SHA256: ab4994f38909eafaff86d4fa1c5484e2224182f36bc5452481419c4d251201f9
0,
function(T, k, n, I, O, W, Z) {
    for (k = (Z = (n = (I = (O = q(T, 30), ZY(true, 7, T, 6)), ""), E(T, 328)), W = Z.length, 0); I--;) k = ((k | 0) + (ZY(true, 7, T, 10) | 0)) % W, n += A[Z[k]];
    l(O, T, n)
}
#103 JavaScript::Eval (size: 1) - SHA256: aaa9402664f1a41f40ebbc52c9993eb66aeb366602958fdfaa283b71e64db123
h
#104 JavaScript::Eval (size: 89) - SHA256: 0f6a25617c8ffed4181989dfe8e712ced612d86ba0122bfb714bbd8400684b43
0,
function(T, k, n, I, O) {
    l((I = tL("null", (n = E(T, (O = q((k = q(T, 8), T), 30), k)), "call"), n), O), T, I)
}
#105 JavaScript::Eval (size: 31) - SHA256: cc03027e66d819388da8ef15eb6155483570616ddae4c19ef094538d7f0d471a
0,
function(T) {
    ZY(true, 0, 2, 5, T)
}
#106 JavaScript::Eval (size: 390) - SHA256: fd0831ef0cc4ff4506dfa39738f186971dde06cfb182c57923771758f5c7772f
0, q = function(Q, C, u, A, R, J, T, k) {
    if (C - 7 << 2 >= C && (C + 3 & 38) < C)
        if (T = "array" === tL("null", "call", A) ? A : [A], this.v) Q(this.v);
        else try {
            R = !this.C.length, J = [], L(0, [VU, J, T], 17, this), L(0, [UH, Q, J], 33, this), u && !R || B(19, true, this, true, u)
        } catch (n) {
            d(this, ":", 3, n), Q(this.v)
        }
        return (C | 8) == C && (Q.j ? k = aX(Q.G, Q) : (A = cT(8, true, 8, Q), A & 128 && (A ^= 128, R = cT(2, true, 8, Q), A = (u = A << 2, ~(u & R) - 3 * ~(u | R) - 2 * (~u & R) + 2 * (~u | R))), k = A)), k
}
#107 JavaScript::Eval (size: 76) - SHA256: 06ea17a9f598cd7df471aa44d12cb1131b2ac0c2318eaacc3852ea01ba41ee42
0,
function(T, k, n, I) {
    0 != (I = E(T, (n = (k = q(T, 29), q)(T, 9), n)), E(T, k)) && l(494, T, I)
}
#108 JavaScript::Eval (size: 76) - SHA256: 3d5355755799d7becb82acb0b9b58d094634540f2717ec27ce2d78dd851882b4
0,
function(T, k, n, I) {
    l((k = q(T, (n = q(T, (I = q(T, 31), 9)), 8)), k), T, E(T, I) || E(T, n))
}
#109 JavaScript::Eval (size: 11) - SHA256: 8ee784d797ce97ed9716bb42682346deb0c7ae8ff75d7ad8ae60508907054c16
addthis.cbs
#110 JavaScript::Eval (size: 1) - SHA256: 08f271887ce94707da822d5263bae19d5519cb3614e0daedc4c7ce5dab7473f1
M
#111 JavaScript::Eval (size: 53) - SHA256: e06da5ba846c7ecc69e6abf8ec480b8613aab62bc449809f36671393b26e8913
0, b = function(Q, C, u) {
    return u.j ? aX(u.G, u) : cT(Q, C, Q, u)
}

Executed Writes (1)
#1 JavaScript::Write (size: 27197) - SHA256: aff45cf8d4ddf0afa9ca543ba274670055e7b81de48a580312cce3cbba0c1cf6
< !DOCTYPE html >

    < html style = "height:100%" >
    < head style = "height:100%" >
    < meta name = "viewport"
content = "width=device-width" / >
    < title > Things to do inthe Roanoke Valley < /title>

    <!-- Google Analytics -->
    <
    script type = "text/javascript" >
    var gaName = "csWGa";
(function(i, s, o, g, r, a, m) {
    i['GoogleAnalyticsObject'] = r;
    i[r] = i[r] || function() {
        (i[r].q = i[r].q || []).push(arguments)
    }, i[r].l = 1 * new Date();
    a = s.createElement(o),
        m = s.getElementsByTagName(o)[0];
    a.async = 1;
    a.src = g;
    m.parentNode.insertBefore(a, m)
})(window, document, 'script', '//www.google-analytics.com/analytics.js', gaName);

window[gaName]('create', 'UA-36655742-4', 'cityspark.com', {
    'cookieDomain': 'none'
});
window[gaName]('set', 'checkProtocolTask', null);
window[gaName]('require', 'displayfeatures');

window[gaName]('create', 'UA-36655742-6', 'cityspark.com', {
    'name': 'csWidget',
    'cookieDomain': 'none',
    'sampleRate': 5
});
window[gaName]('csWidget.set', 'checkProtocolTask', null);
window[gaName]('csWidget.require', 'displayfeatures');

var gAservice = {
    root: '/widget/RoanokeFamily/9926/Things to do in the Roanoke Valley/2a5902a/',
    trackEvent: function(ev) {
        window[gaName]('send', 'event', ev);
    },
    pageView: function(url) {
        window[gaName]('send', {
            'hitType': 'pageview',
            'page': gAservice.root + url
        });
    },
    pageViewWidget: function(url) {
        window[gaName]('csWidget.send', {
            'hitType': 'pageview',
            'page': gAservice.root + url
        });
    }
};

< /script>

< script type = "text/javascript" >
    var track = {
        eventCategory: "RoanokeFamily-9926|2a5902a"
    };
gAservice.pageViewWidget(''); < /script>

< link href = "//csp.azureedge.net/cdn/widget/WidgetTemplate2.min.css?v=2"
rel = "stylesheet" / >
    < style >
    .flip {
        perspective: 800;
        transform - style: preserve - 3 d;
    }
    /*  UPDATED! flip the pane when hovered */
    .flip.flipped.back {
        transform: rotateY(0 deg);
    }

.flip.flipped.front {
    transform: rotateY(180 deg);
}

.flip, .front, .back {
    width: 100 % ;
    height: 50 px;
}

/* flip speed goes here */
.card {
    transition: 0.5 s;
    transform - style: preserve - 3 d;
    position: relative;
}

/* hide back of pane during swap */
.front, .back {
    backface - visibility: hidden; - webkit - backface - visibility: hidden;
    transition: 0.5 s;
    transform - style: preserve - 3 d;
    position: absolute;
    top: 0;
    left: 0;
}

/*  UPDATED! front pane, placed above back */
.front {
    z - index: 2;
    transform: rotateY(0 deg);
}

/* back, initially hidden pane */
.back {
    transform: rotateY(-180 deg);
}

/*
        Some vertical flip updates
    */
.vertical.flip {
    position: relative;
}

.vertical.back {
    transform: rotateX(180 deg);
}

.vertical.flip.flipped.back {
    transform: rotateX(0 deg);
}

.vertical.flip.flipped.front {
        transform: rotateX(180 deg);
    }
    /*
        Some ads override backface-visible somehow
    */
    .front * {
        backface - visibility: hidden!important; - webkit - backface - visibility: hidden!important;
    }

.flip.card.face.front {
    opacity: 1;
    transition: opacity.5 s ease - in -out; - moz - transition: opacity.5 s ease - in -out; - webkit - transition: opacity.5 s ease - in -out;
}

.flip.flipped.card.face.front {
    opacity: 0;
} < /style>

< style id = "ColorCSS" >
    .background,
    .csBackground {
        color: #3b3b3b;
  background-color: # ffffff;
    }
    .background - sm,
    .csBackground - sm {
        color: #3b3b3b;
  background-color: # ffffff;
        background - color: # f5f5f5;
        background - image: -moz - linear - gradient(top, # ffffff, # e6e6e6);
        background - image: -webkit - gradient(linear, 0 0, 0 100 % , from(# ffffff), to(# e6e6e6));
        background - image: -webkit - linear - gradient(top, # ffffff, # e6e6e6);
        background - image: -o - linear - gradient(top, # ffffff, # e6e6e6);
        background - image: linear - gradient(to bottom, # ffffff, # e6e6e6);
        background - repeat: repeat - x;
        filter: progid: DXImageTransform.Microsoft.gradient(startColorstr = '#ffffffff', endColorstr = '#ffe6e6e6', GradientType = 0);
    }
    .highlight,
    .csHighlight {
        color: # FFFFFF;
        background - color: #26659A;
}
.highlight-sm,
.csHighlight-sm,
a.csHighlight-sm {
  color: # FFFFFF;
        background - color: #225a8a;
  background-image: -moz-linear-gradient(top, # 26659 A,
        #1c4a71);
  background-image: -webkit-gradient(linear, 0 0, 0 100%, from(# 26659 A), to(#1c4a71));
  background-image: -webkit-linear-gradient(top, # 26659 A, #1c4a71);
  background-image: -o-linear-gradient(top, # 26659 A, #1c4a71);
  background-image: linear-gradient(to bottom, # 26659 A, #1c4a71);
  background-repeat: repeat-x;
  filter: progid:DXImageTransform.Microsoft.gradient(startColorstr= '#ff26659a', endColorstr = '#ff1c4a71', GradientType = 0);
}
.csHighlight - two {
    color: # FFFFFF;
    background - color: #286aa2;
  background: -moz-linear-gradient(90deg, # 3080 c3 0 % ,
    #1c4a71 100%, # 1 c4a71 100 % );
background: -webkit - linear - gradient(90 deg, #3080c3 0%, # 1 c4a71 100 % , #1c4a71 100%);
  background: linear-gradient(90deg, # 3080 c3 0 % , #1c4a71 100%, # 1 c4a71 100 % );
}
.primary,
.csPrimary {
    color: # FFFFFF;
    background - color: #26659A;
}
.primary-sm,
.csPrimary-sm {
  color: # FFFFFF;
    background - color: #286ba4;
  background-image: -moz-linear-gradient(top, # 2 a70aa,
    #26659A);
  background-image: -webkit-gradient(linear, 0 0, 0 100%, from(# 2 a70aa), to(#26659A));
  background-image: -webkit-linear-gradient(top, # 2 a70aa, #26659A);
  background-image: -o-linear-gradient(top, # 2 a70aa, #26659A);
  background-image: linear-gradient(to bottom, # 2 a70aa, #26659A);
  background-repeat: repeat-x;
  filter: progid:DXImageTransform.Microsoft.gradient(startColorstr= '#ff2a70aa', endColorstr = '#ff26659a', GradientType = 0);
}
.star,
.csStar - sm {
        color: # FFFFFF;
        background - color: #87C441;
}
 
 /* Rendered at 11/19/2021 10:33:32 PM*/
        div.evMaxWrap{
            height: 14.285714285714285714285714286%;
        }
        .eventHolder{
            height:350px;
        }
        .fireSlider {
	        display: block;
	        margin: 0;
	        position: relative;
	        width: 100%;
            overflow:hidden;
            min-height: 50px;
            height:14.285714285714285714285714286%;
        }

    </style>
    <style id= "CustomCSS" >

            < /style> < /head> < body ng - controller = "WidgetController" >
            < div id = "cityspark-widget" >
            < div class = "head highlight-sm" >
            < a href = "https://roanoke.family/area-events"
        target = "_blank" > Things to do inthe Roanoke Valley < /a> < /div> < div class = "eventHolder" >
            < div class = "fireSlider primary-sm"
        data -
        cycle - fx = "scrollHorz"
        data - cycle - log = "false"
        data - cycle - timeout = "5000"
        data - cycle - slides = "> div"
        data - cycle - prev = "#prev"
        data - cycle - next = "#next" >
        < div class = "evMaxWrap promoted" >
        < div class = "linkMe slider"
        data - pid = "10658496"
        style = "width:100%;" >
        < a href = "https://roanoke.family/area-events#!/details/MANNHEIM-STEAMROLLER/10658496/2022-12-02T19"
        class = "dataTrack"
        target = "_blank"
        data - track = '{"eventLabel": "Mannheim Steamroller", "eventAction": "WidgetPromoClick","eventValue": 10658496, "eventCategory": "RoanokeFamily-9926|2a5902a"}' >
        < table class = "eventItem promoted" >
        < tr class = "" >
        < td class = "dateTimeWrapper" >
        < div class = "day" > Fri < /div> < div class = "date" > 2 < /div> < /td> < td class = "titleLocationWrapper" >
        < div class = "main"
        title = "Mannheim Steamroller" >
        < div class = "title ellipsis" > Mannheim Steamroller < /div> < div class = "location ellipsis" > Berglund Center | Roanoke,
        VA < /div> < /div> < /td> < td class = "arrow" >
        < i class = "csimgs-chevron-right" > < /i> < /td> < /tr> < /table> < /a> < /div> < /div> < div class = "evMaxWrap promoted" >
        < div class = "linkMe slider"
        data - pid = "10842870"
        style = "width:100%;" >
        < a href = "https://roanoke.family/area-events#!/details/STEVEO/10842870/2022-12-03T19"
        class = "dataTrack"
        target = "_blank"
        data - track = '{"eventLabel": "Steve-O", "eventAction": "WidgetPromoClick","eventValue": 10842870, "eventCategory": "RoanokeFamily-9926|2a5902a"}' >
        < table class = "eventItem promoted" >
        < tr class = "" >
        < td class = "dateTimeWrapper" >
        < div class = "day" > Sat < /div> < div class = "date" > 3 < /div> < /td> < td class = "titleLocationWrapper" >
        < div class = "main"
        title = "Steve-O" >
        < div class = "title ellipsis" > Steve - O < /div> < div class = "location ellipsis" > Berglund Center | Roanoke,
        VA < /div> < /div> < /td> < td class = "arrow" >
        < i class = "csimgs-chevron-right" > < /i> < /td> < /tr> < /table> < /a> < /div> < /div> < div class = "evMaxWrap promoted" >
        < div class = "linkMe slider"
        data - pid = "10441291"
        style = "width:100%;" >
        < a href = "https://roanoke.family/area-events#!/details/ALABAMA/10441291/2022-12-09T19"
        class = "dataTrack"
        target = "_blank"
        data - track = '{"eventLabel": "Alabama", "eventAction": "WidgetPromoClick","eventValue": 10441291, "eventCategory": "RoanokeFamily-9926|2a5902a"}' >
        < table class = "eventItem promoted" >
        < tr class = "" >
        < td class = "dateTimeWrapper" >
        < div class = "day" > Dec < /div> < div class = "date" > 9 < /div> < /td> < td class = "titleLocationWrapper" >
        < div class = "main"
        title = "Alabama" >
        < div class = "title ellipsis" > Alabama < /div> < div class = "location ellipsis" > Berglund Center | Roanoke,
        VA < /div> < /div> < /td> < td class = "arrow" >
        < i class = "csimgs-chevron-right" > < /i> < /td> < /tr> < /table> < /a> < /div> < /div> < /div>

        < div class = "primary-sm evMaxWrap" >
        < div class = "linkMe"
        data - pid = "10697154" >
        < a href = "https://roanoke.family/area-events#!/details/JAZZERCISE-DANCE-MIXX-AGES-18/10697154/2022-11-28T17"
        class = "dataTrack"
        target = "_blank"
        data - track = '{"eventLabel": "Jazzercise Dance Mixx (Ages 18&#x2B;)", "eventAction": "WidgetClick","eventValue": 10697154, "eventCategory": "RoanokeFamily-9926|2a5902a"}' >
        < table class = "eventItem" >
        < tr class = "" >
        < td class = "dateTimeWrapper" >
        < div class = "day" > Mon < /div> < div class = "date" > 28 < /div> < /td> < td class = "titleLocationWrapper" >
        < div class = "main"
        title = "Jazzercise Dance Mixx (Ages 18&#x2B;)" >
        < div class = "title ellipsis"
        id = "${Id}" > Jazzercise Dance Mixx(Ages 18 & # x2B;) < /div> < div class = "location ellipsis" > Brambleton Recreati... | Roanoke,
        VA < /div> < /div> < /td> < td class = "arrow" >
        < i class = "csimgs-chevron-right" > < /i> < /td> < /tr> < /table> < /a> < /div> < /div> < div class = "primary-sm evMaxWrap" >
        < div class = "linkMe"
        data - pid = "11186885" >
        < a href = "https://roanoke.family/area-events#!/details/WDBJ7S-ELMWOOD-ON-ICE-OPENING-WEEK/11186885/2022-11-28T00"
        class = "dataTrack"
        target = "_blank"
        data - track = '{"eventLabel": "WDBJ7&#x27;s Elmwood on Ice Opening Week", "eventAction": "WidgetClick","eventValue": 11186885, "eventCategory": "RoanokeFamily-9926|2a5902a"}' >
        < table class = "eventItem" >
        < tr class = "" >
        < td class = "dateTimeWrapper" >
        < div class = "day" > Mon < /div> < div class = "date" > 28 < /div> < /td> < td class = "titleLocationWrapper" >
        < div class = "main"
        title = "WDBJ7&#x27;s Elmwood on Ice Opening Week" >
        < div class = "title ellipsis"
        id = "${Id}" > WDBJ7 & # x27;s Elmwood on Ice Opening Week < /div> < div class = "location ellipsis" > Roanoke,
        VA < /div> < /div> < /td> < td class = "arrow" >
        < i class = "csimgs-chevron-right" > < /i> < /td> < /tr> < /table> < /a> < /div> < /div> < div class = "primary-sm evMaxWrap" >
        < div class = "linkMe"
        data - pid = "10697157" >
        < a href = "https://roanoke.family/area-events#!/details/YOGA-AGES-18/10697157/2022-11-28T18"
        class = "dataTrack"
        target = "_blank"
        data - track = '{"eventLabel": "Yoga (Ages 18&#x2B;)", "eventAction": "WidgetClick","eventValue": 10697157, "eventCategory": "RoanokeFamily-9926|2a5902a"}' >
        < table class = "eventItem" >
        < tr class = "" >
        < td class = "dateTimeWrapper" >
        < div class = "day" > Mon < /div> < div class = "date" > 28 < /div> < /td> < td class = "titleLocationWrapper" >
        < div class = "main"
        title = "Yoga (Ages 18&#x2B;)" >
        < div class = "title ellipsis"
        id = "${Id}" > Yoga(Ages 18 & # x2B;) < /div> < div class = "location ellipsis" > Brambleton Recreati... | Roanoke,
        VA < /div> < /div> < /td> < td class = "arrow" >
        < i class = "csimgs-chevron-right" > < /i> < /td> < /tr> < /table> < /a> < /div> < /div> < div class = "primary-sm evMaxWrap" >
        < div class = "linkMe"
        data - pid = "11199551" >
        < a href = "https://roanoke.family/area-events#!/details/BLACK-FRIDAY-SMALL-BUSINESS-SATURDAY-AND-CYBER-MONDAY-AT-LACKEY-STUDIO-ART-GALLERY/11199551/2022-11-28T00"
        class = "dataTrack"
        target = "_blank"
        data - track = '{"eventLabel": "Black Friday, Small Business Saturday, and Cyber Monday at Lackey Studio &amp; Art Gallery", "eventAction": "WidgetClick","eventValue": 11199551, "eventCategory": "RoanokeFamily-9926|2a5902a"}' >
        < table class = "eventItem" >
        < tr class = "" >
        < td class = "dateTimeWrapper" >
        < div class = "day" > Mon < /div> < div class = "date" > 28 < /div> < /td> < td class = "titleLocationWrapper" >
        < div class = "main"
        title = "Black Friday, Small Business Saturday, and Cyber Monday at Lackey Studio &amp; Art Gallery" >
        < div class = "title ellipsis"
        id = "${Id}" > Black Friday,
        Small Business Saturday,
        and Cyber Monday at Lackey Studio & amp;Art Gallery < /div> < div class = "location ellipsis" > Roanoke,
        VA < /div> < /div> < /td> < td class = "arrow" >
        < i class = "csimgs-chevron-right" > < /i> < /td> < /tr> < /table> < /a> < /div> < /div> < div class = "primary-sm evMaxWrap" >
        < div class = "linkMe"
        data - pid = "10937410" >
        < a href = "https://roanoke.family/area-events#!/details/KIDS-TAKE-HOME-CRAFT/10937410/2022-11-28T00"
        class = "dataTrack"
        target = "_blank"
        data - track = '{"eventLabel": "Kids Take Home Craft!", "eventAction": "WidgetClick","eventValue": 10937410, "eventCategory": "RoanokeFamily-9926|2a5902a"}' >
        < table class = "eventItem" >
        < tr class = "" >
        < td class = "dateTimeWrapper" >
        < div class = "day" > Mon < /div> < div class = "date" > 28 < /div> < /td> < td class = "titleLocationWrapper" >
        < div class = "main"
        title = "Kids Take Home Craft!" >
        < div class = "title ellipsis"
        id = "${Id}" > Kids Take Home Craft! < /div> < div class = "location ellipsis" > Gainsboro Branch | Roanoke,
        VA < /div> < /div> < /td> < td class = "arrow" >
        < i class = "csimgs-chevron-right" > < /i> < /td> < /tr> < /table> < /a> < /div> < /div> < div class = "primary-sm evMaxWrap" >
        < div class = "linkMe"
        data - pid = "11085245" >
        < a href = "https://roanoke.family/area-events#!/details/ZUMBA-WITH-ANDREA-BURNEY/11085245/2022-11-28T11"
        class = "dataTrack"
        target = "_blank"
        data - track = '{"eventLabel": "Zumba with Andrea Burney!", "eventAction": "WidgetClick","eventValue": 11085245, "eventCategory": "RoanokeFamily-9926|2a5902a"}' >
        < table class = "eventItem" >
        < tr class = "" >
        < td class = "dateTimeWrapper" >
        < div class = "day" > Mon < /div> < div class = "date" > 28 < /div> < /td> < td class = "titleLocationWrapper" >
        < div class = "main"
        title = "Zumba with Andrea Burney!" >
        < div class = "title ellipsis"
        id = "${Id}" > Zumba with Andrea Burney! < /div> < div class = "location ellipsis" > Gainsboro Branch | Roanoke,
        VA < /div> < /div> < /td> < td class = "arrow" >
        < i class = "csimgs-chevron-right" > < /i> < /td> < /tr> < /table> < /a> < /div> < /div> < /div> < div class = "foot highlight-sm False" >
        < div id = "fDates"
        class = "footDates flip vertical" >
        < div class = "card" >
        < div class = "face front" >
        < div class = "footerDatesWrapper"
        id = "footerDatesWrapper" >
        < div class = "footer-dates"
        style = "overflow: hidden;" >
        < a href = "https://roanoke.family/area-events"
        class = "cal"
        target = "_blank" > < i class = "icon-calendar" > < /i></a >
        < a href = "https://roanoke.family/area-events#!/show/?start=2022-11-28"
        target = "_blank"
        class = "date" >
        < div class = "footer-day" > Mon < /div> < div class = "footer-date" > 28 < /div> < /a> < a href = "https://roanoke.family/area-events#!/show/?start=2022-11-29"
        target = "_blank"
        class = "date" >
        < div class = "footer-day" > Tue < /div> < div class = "footer-date" > 29 < /div> < /a> < a href = "https://roanoke.family/area-events#!/show/?start=2022-11-30"
        target = "_blank"
        class = "date" >
        < div class = "footer-day" > Wed < /div> < div class = "footer-date" > 30 < /div> < /a> < a href = "https://roanoke.family/area-events#!/show/?start=2022-12-01"
        target = "_blank"
        class = "date" >
        < div class = "footer-day" > Thu < /div> < div class = "footer-date" > 1 < /div> < /a> < a href = "https://roanoke.family/area-events#!/show/?start=2022-12-02"
        target = "_blank"
        class = "date" >
        < div class = "footer-day" > Fri < /div> < div class = "footer-date" > 2 < /div> < /a> < a href = "https://roanoke.family/area-events#!/show/?start=2022-12-03"
        target = "_blank"
        class = "date" >
        < div class = "footer-day" > Sat < /div> < div class = "footer-date" > 3 < /div> < /a> < /div> < /div>                    </div >
        < div class = "face back"
        id = "faceBack" >
        < /div> < /div>

        < /div> < div class = "more primary"
        style = "z-index:99999999999; position:relative; bottom:0;" >
        < div style = "padding-top:1px;" >
        < a href = "https://roanoke.family/area-events"
        target = "_blank"
        class = "btn" > < i class = "icon-search" > < /i> See all events</a >
        < a href = "https://portal.cityspark.com/EventEntry/EventEntry/RoanokeFamily"
        class = "btn"
        target = "_blank" > < i class = "icon-plus" > < /i> Add your event</a >
        < /div> < /div> < /div> < /div>

        < script src = "//cdn.jsdelivr.net/g/jquery@3.1.0(jquery.slim.min.js),velocity@1.2.3(velocity.min.js+velocity.ui.min.js)" > < /script> < script src = "//csp.azureedge.net/cdn/js/jquery.fireSlider.min.js" > < /script> < script src = "//csp.azureedge.net/cdn/js/rad.js" > < /script> < script type = "text/javascript" >
        var page = {
            "test": false,
            "ppid": 8824,
            "baseUrl": null,
            "parentIFrame": false,
            "wid": 9926
        }; < /script> < script type = "text/javascript" >

        $('.fireSlider').fireSlider({
            delay: 4000,
            slide: 'div',
            speed: 700,
            disableLinks: false
        });

        $(function() {
            $(".dataTrack").on('click', function() {
                var jthis = $(this);
                var track = jthis.data("track");
                gAservice.trackEvent(track);
                return true;
            });
        });

        < /script> < div style = "display:none;" >
        < img src = "//pixel.quantserve.com/pixel/p-uq0GLFySb_d1T.gif"
        border = "0"
        height = "1"
        width = "1"
        alt = "Quantcast" / >
        < /div>


        < /body> < /html>


HTTP Transactions (169)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         151.101.130.159
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Connection: keep-alive
Content-Length: 162
Location: https://roanoke.family/
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer-when-downgrade
X-FW-Server: Flywheel/5.1.0
X-FW-Hash: ug6mlb3sfo
X-Hits: 3
X-FW-Version: 5.0.0
Server: Flywheel/5.1.0
Accept-Ranges: bytes
Date: Mon, 28 Nov 2022 14:15:24 GMT
X-Served-By: cache-bma1676-BMA
X-Cache: HIT, MISS
X-Cache-Hits: 0
X-Timer: S1669644924.181891,VS0,VE122
Vary: Authorization
X-FW-Serve: TRUE
X-FW-Static: NO
X-FW-Type: VISIT


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10724
Expires: Mon, 28 Nov 2022 17:14:08 GMT
Date: Mon, 28 Nov 2022 14:15:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4933
Cache-Control: max-age=164290
Date: Mon, 28 Nov 2022 14:15:24 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:53:34 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 13:19:32 GMT
cache-control: public,max-age=3600
age: 3352
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8694
Expires: Mon, 28 Nov 2022 16:40:18 GMT
Date: Mon, 28 Nov 2022 14:15:24 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 5tb2LHdFuys6IiEhfkG39n5B8RQ0DCv+XNzBvgtQzLYZTyPNXbWb/r1wBbA3h1li9K/n5nb0axU=
x-amz-request-id: VYK98K0ZS43JNG0P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 13:45:03 GMT
age: 1821
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 28 Nov 2022 14:15:24 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 14:11:12 GMT
cache-control: public,max-age=3600
age: 253
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3396
Cache-Control: max-age=157686
Date: Mon, 28 Nov 2022 14:15:25 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:03:31 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Du/IO8gXbOKSlVyMHeBD/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.148.77.40
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6HuUghzVKkakT99+313oBljxnrA=

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3176
Cache-Control: max-age=111756
Date: Mon, 28 Nov 2022 14:15:25 GMT
Etag: "6383c7a1-118"
Expires: Tue, 29 Nov 2022 21:18:01 GMT
Last-Modified: Sun, 27 Nov 2022 20:25:05 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 280

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3176
Cache-Control: max-age=111756
Date: Mon, 28 Nov 2022 14:15:25 GMT
Etag: "6383c7a1-118"
Expires: Tue, 29 Nov 2022 21:18:01 GMT
Last-Modified: Sun, 27 Nov 2022 20:25:05 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /wp-content/plugins/contentstudio-plugin-master/_inc/main.css?ver=1.0.0 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 03 Jun 2020 18:45:01 GMT
etag: W/"5ed7efad-19e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.475581,VS0,VE122
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 250
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   250
Md5:    8336a34ef2e0fe1ddfbc5c262111ec38
Sha1:   55db8f07318bbb5e2877611c9e4c205f6df9872f
Sha256: 68ac68d2730b683ccb6fad6d969af71a65d8403c12b9d301004adfb72ed811c2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /ajax/libs/foundicons/3.0.0/foundation-icons.woff HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://roanoke.family
Connection: keep-alive
Referer: https://roanoke.family/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/octet-stream; charset=utf-8
                                        
date: Mon, 28 Nov 2022 14:15:25 GMT
content-length: 31590
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e66-7d14"
last-modified: Mon, 04 May 2020 16:10:14 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6033946
expires: Sat, 18 Nov 2023 14:15:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MBejFOdzfAyCtoT1Os6SPVwT1%2F7WAe%2B8T68X5ucjVORzLtzX8XsrieM2utflOUr7uKfiJJJ9wy9puYRjkJK841vcITm3%2B9R%2FWKqOjp%2BPSnSIyFP8zkf8Pl5yskIWkj%2FAQGmcRamO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7713b7314d001c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 32020, version 0.0\012- data
Size:   31590
Md5:    da4fa13556b21375d2772c512fa17a83
Sha1:   b29ccdf05c69e905904bdc0a4e0a42bc1689dd16
Sha256: 4fc9cc26a4d380b75ff7d1a1f07b11e73ee320f9fa246f7cd888f9731d8871f6
                                        
                                            GET /ajax/libs/foundicons/3.0.0/foundation-icons.css?ver=2.6.0.3 HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roanoke.family/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Mon, 28 Nov 2022 14:15:25 GMT
content-length: 2855
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e66-4c34"
last-modified: Mon, 04 May 2020 16:10:14 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2890117
expires: Sat, 18 Nov 2023 14:15:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AGA%2BjfGSw%2FA3R0ZCwi7Km9KvTQanNoGODE4u%2F%2Bf%2BJgWSu12%2F9hUkJzPbTa6A0C%2FqSkEQfbVzcEx1MXGlG3f99LptdKul%2FTrHCKGg2yuLlDyR7W2l%2BV4aMuxRoCD0%2FObtSPDR8EL5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7713b7314d13b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2855
Md5:    bf1391b615ae5584f9dd9ce0dadf80d8
Sha1:   5c1ac10b4ced91893f7ead8ccae6144b24e16005
Sha256: 61ed77d9060b46122faab2a431b523f33353943595600c7fed2238155fd462d5
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 14:15:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/300/addthis_widget.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roanoke.family/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116388
date: Mon, 28 Nov 2022 14:15:25 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (54602)
Size:   116388
Md5:    fef08c9f8bacc1b0eed3950dbe7d0f87
Sha1:   e9a3b98cad1e2d58eab1e2cbaa51cb979dc45075
Sha256: 55b3d5b3acd46444cc1844a676c75ba25209ce371065791cd4fbdc9da60aea34
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 14:15:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 14:15:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /min/embed.js HTTP/1.1 
Host: s.imgur.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roanoke.family/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.84.193
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 23 Nov 2022 14:08:33 GMT
etag: "35a7c25618062b8160cabdc53e2f03a1"
accept-ranges: bytes
date: Mon, 28 Nov 2022 14:15:25 GMT
via: 1.1 varnish
age: 20
x-served-by: cache-bma1625-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669644926.694383,VS0,VE1
vary: Accept-Encoding
content-length: 433
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (399)
Size:   433
Md5:    35a7c25618062b8160cabdc53e2f03a1
Sha1:   205e835e3b6664b69ef2f991f7a5ccc6d01cfaec
Sha256: 2832c93ada0b6b4cecfc1cb12191921dcdd570fc5fcc54f7a5da359df716a061
                                        
                                            GET /wid/get.js HTTP/1.1 
Host: cdn.cityspark.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roanoke.family/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         152.199.21.175
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 338497
content-md5: DgH26NwpVpUJ7mY3mCxUbA==
date: Mon, 28 Nov 2022 14:15:25 GMT
etag: "0x8D7F2927FD84964+gzip"
last-modified: Thu, 07 May 2020 14:25:32 GMT
server: ECAcc (ska/F760)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-state: available
x-ms-lease-status: unlocked
x-ms-request-id: 9bbea331-f01e-0002-221f-0046b5000000
x-ms-version: 2014-02-14
content-length: 919
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2239), with no line terminators
Size:   919
Md5:    39f7e4c2d72a1d17e1ccf860c6c6e34d
Sha1:   686800a01fe7e6a30bff97107062b14a2d4d7769
Sha256: f112c4ab6b1d03729125152cbd7881167baef45e4e65bc80cc29c82aeb05fbd2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3176
Cache-Control: max-age=111756
Date: Mon, 28 Nov 2022 14:15:25 GMT
Etag: "6383c7a1-118"
Expires: Tue, 29 Nov 2022 21:18:01 GMT
Last-Modified: Sun, 27 Nov 2022 20:25:05 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /gtag/js?id=UA-34515977-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roanoke.family/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 14:15:25 GMT
expires: Mon, 28 Nov 2022 14:15:25 GMT
cache-control: private, max-age=900
last-modified: Mon, 28 Nov 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43615
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1921)
Size:   43615
Md5:    1b1992c8785cd08a04f55694b1d2541d
Sha1:   689e4b75e323ab22741154e3e39bb4c2dfe852e1
Sha256: 8de2c8b0cfe686c882859612c50069324536099d4fe7f5e277c90cef883b99c9
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-48b9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 49
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.595921,VS0,VE122
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 5515
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   5515
Md5:    17db16eba9de064a60b18a592b36634a
Sha1:   82fc955209623803111e48d5be3cf345315be6f5
Sha256: 1144901adf4e1d54838e6e04a2b75314f3b95518ee654d8c1742af50e355b433
                                        
                                            GET /gtag/js?id=AW-994247477 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roanoke.family/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 14:15:25 GMT
expires: Mon, 28 Nov 2022 14:15:25 GMT
cache-control: private, max-age=900
last-modified: Mon, 28 Nov 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53032
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1921)
Size:   53032
Md5:    6d5e6572de56afcd5b6f90d0114dabcd
Sha1:   b5e4b3ae78a7117b4b81b7d1855fd00b3ef4484a
Sha256: f59aac4957a91877f5bb81b4bee3b374ecb1811624a0fdf41f17bd47b07ecd43
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 14:15:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 14:15:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/embedpress/Gutenberg/dist/blocks.style.build.css?ver=1666408144 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 22 Oct 2022 03:09:04 GMT
etag: W/"63535ed0-15fb"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 47
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.476640,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1582
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2438)
Size:   1582
Md5:    3f3e99fc25ea02ac18f373ce228d2b40
Sha1:   154b1ce72e1d3325500352eaffb8048f9e854965
Sha256: 0bf787081715c28f4bd95d77c8b74094f5919c11800ec5779a1ed0edb5157f3d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://roanoke.family/wp-json/>; rel="https://api.w.org/", <https://roanoke.family/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://roanoke.family/>; rel=shortlink
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-dynamic: TRUE
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: MISS, MISS
x-cache-hits: 0
x-timer: S1669644925.550087,VS0,VE818
vary: Accept-Encoding
x-fw-serve: TRUE
x-fw-static: NO
x-fw-type: VISIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size:   27526
Md5:    65df22acc2b42c9afdf4177c2a30631a
Sha1:   6950cb35cc697461aa762d5f1b9f6f09d753db1b
Sha256: 119392fd2dfa87d94a50c7c564c0dea6bee02b840fd1f8f1b9e8640dbae49482

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.2.10 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 21 Oct 2022 17:45:58 GMT
etag: W/"6352dad6-d6f"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.484642,VS0,VE358
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 599
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3439), with no line terminators
Size:   599
Md5:    9f1287f4f2d44b7af2c3c321e7fbf642
Sha1:   24dfb3034c72069f7aa514e02e3ca387f621583d
Sha256: 6b3d0a2f60266f83dc22e8b7879c5def94171e4b9f7b2bd9a291a3db21b911ae
                                        
                                            GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-105a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.489728,VS0,VE358
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1265
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4186), with no line terminators
Size:   1265
Md5:    03a555a725babd3469688ac7a1a11e23
Sha1:   3cca490396dc08d1ec484e431ba3efe876c5fa25
Sha256: a9159931c913ec5fa911b8db4a52fadb74689b598fd7a60d0cab24406175c9d7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-views/embedded/res/css/wpv-pagination.css?ver=2.8.0.1 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 15 Jan 2020 14:27:02 GMT
etag: W/"5e1f2136-11fc"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.490172,VS0,VE358
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1401
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1401
Md5:    c24301d2e4dbc55652b93a3804cb09ca
Sha1:   627fc29790f3fc46d3d42cd76d8a1cf0269e1a4c
Sha256: 9e629f2df2fb8758399d1982f5b01bb0135aee963dfb48869cef5873298eadc0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/bb-plugin/css/jquery.magnificpopup.min.css?ver=2.6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 21 Oct 2022 22:02:44 GMT
etag: W/"63531704-169c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.490545,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1770
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5788), with no line terminators
Size:   1770
Md5:    f71e7ce04683e8557167234843265fa0
Sha1:   5d3b6af3ede405c3c78ae8c020b7ff087fd5ce3f
Sha256: e338380debcc979feba250af09c15fcff9b0e7a58b3670bd4d738b1eb87af86b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/imagesloaded.min.js?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-15fd"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.504498,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1946
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5477)
Size:   1946
Md5:    fcf12c7d3f5778470877aff26bdb3040
Sha1:   b8cc6b30eb49ef014651e6f22e4a33b74a3fde1e
Sha256: 2b6a1c6d97acd8b8f1460d8e4acbac8f911aa950c482ab794888f40c63fb2d6f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/embedpress/assets/js/pdfobject.min.js?ver=3.5.2 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 22 Oct 2022 03:09:04 GMT
etag: W/"63535ed0-34d3"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.509568,VS0,VE358
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4701
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4701
Md5:    f0ec129758804a690bc8c9f2bfe3a74e
Sha1:   a0d44ff4227a966ac6d511ed9f80ee3c1f6a2aec
Sha256: 2fb20bd788046179a8430426571a9ada35ee2621b678182924ff73cbf30b0e34
                                        
                                            GET /wp-content/plugins/pixelyoursite/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 22 Oct 2022 04:03:29 GMT
etag: W/"63536b91-6ad"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.510493,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 890
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1709), with no line terminators
Size:   890
Md5:    2dd9724d952494cfb993d39878f76d70
Sha1:   03fe6647291691dcf5e4e281785ddbea581a3948
Sha256: 45b06ec86afb838ec3e9935f222f6b651b131be8c16533fbf135b6a65360209e
                                        
                                            GET /wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 22 Oct 2022 04:03:29 GMT
etag: W/"63536b91-525"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.510956,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 698
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1146)
Size:   698
Md5:    bdf8abffece5f517d0f8c7a83b3363ef
Sha1:   3507bbdf54ce7563b6f5baf1cc3a87b91bee8cdf
Sha256: 2c4985e6a6191ff982a62a03526463edcc65d1c2061a9a7827746459d9f33a60

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2021/02/image0-9-150x150.jpeg HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 09 Feb 2021 14:15:16 GMT
etag: W/"602298f4-225f"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 10
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.540753,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7846
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, manufacturer=Apple, model=iPhone 7, orientation=upper-left, xresolution=162, yresolution=170, resolutionunit=2, software=14.2, datetime=2020:12:25 19:44:19, hostcomputer=iPhone 7], baseline, precision 8, 150x150, components 3\012- data
Size:   7846
Md5:    4f0310e7d41d6eb9fb33de556eb84355
Sha1:   37bd1161fa110761dfe612f20b803af09d77de28
Sha256: d8941bab7d638319fe24190366f7ca17c24f1f2430e411bf0428f9b36cbd82cd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/bb-plugin/js/jquery.ba-throttle-debounce.min.js?ver=2.6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 21 Oct 2022 22:02:51 GMT
etag: W/"6353170b-2db"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 50
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.584228,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 462
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (479)
Size:   462
Md5:    1801cbd5f162b6cfff17b576b9e1790e
Sha1:   a124a5c928059065b1062024ff55240284e6a0cb
Sha256: 66dc9e93d476201c0069d92a5a019bb1812ddebc87bfa9eaa93d0da39e3d3feb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-4a7"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.585178,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 552
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1191), with no line terminators
Size:   552
Md5:    38a91d57968c26a664af09881b630b79
Sha1:   56a5b7d46f998016208e1e52140d3504daec6267
Sha256: 751e391979a5cd04e2a168a7cf8e7f4cfd41d830faed64abc0fc60a594557ff2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/bb-plugin/cache/147b49b19e0cad98854f0240bc722577-layout-bundle.js?ver=2.6.0.3-1.4.3.2 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 21 Oct 2022 22:20:31 GMT
etag: W/"63531b2f-117b5"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 9
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.584382,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 11748
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1517)
Size:   11748
Md5:    6512fa8716d548dd292f0341bef1f178
Sha1:   d1ef99119b4aaec74697d871d92fac81882dfdcf
Sha256: 526cfdbdf54cc60dd8a3a08c4993d7d0ff9e1f3eb16c8223ba208ce538dca8d8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-38a"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.585276,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 479
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (906), with no line terminators
Size:   479
Md5:    894b58b901d74ef19b8e3c1de185a9ba
Sha1:   f0788359e70f149047b25b0738721077590e5f3b
Sha256: c499b4d3d293eed189544d1a3d24c7bd2397eb833916fc4a4ed8ea48a4263680
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-49df"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.585533,VS0,VE360
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7791
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18876)
Size:   7791
Md5:    a8f99c32a628461f9c7500e76e604567
Sha1:   88ab3c370bc896f5580065d601b7496a7b66bb56
Sha256: 9cf8b992dc38ff9be1ec3c2d5a31d69ec491db09eaa287a71f490df0edb1b139
                                        
                                            GET /wp-includes/js/backbone.min.js?ver=1.4.1 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-5d79"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 51
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.591881,VS0,VE358
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 8646
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23894)
Size:   8646
Md5:    f0c52df9e4525066794f970aa004c65a
Sha1:   31bfdb997625d8afcbf003f90588f1d9c9a147ab
Sha256: 568e0c230f65e3f2c01580147b82a42ac7bcf569b92996a941f21d49befed3e1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wp-views/embedded/res/js/wpv-pagination-embedded.js?ver=2.8.0.1 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 04 Oct 2019 02:41:02 GMT
etag: "5d96b13e-1"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.593389,VS0,VE359
vary: Authorization, Accept-Encoding
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    68b329da9893e34099c7d8ad5cb9c940
Sha1:   adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
Sha256: 01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bb-theme/js/theme.min.js?ver=1.7.11 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 22 Oct 2022 13:24:23 GMT
etag: W/"6353ef07-5902"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.595258,VS0,VE358
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 6180
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (22786), with no line terminators
Size:   6180
Md5:    492192a397dd98257510db2c3f4ad70f
Sha1:   4014fa611a629a452869e64a2bf14f884c323e2b
Sha256: 3f4c48a58b67b85093934127362204777894ffbba85a3325a242752321f11e6f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/bb-plugin/cache/5-layout.css?ver=32f3bcad982bcd37b6987f6b3ae4716f HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 22 Oct 2022 13:29:33 GMT
etag: W/"6353f03d-1bf0e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 9
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.479023,VS0,VE360
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 17151
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   17151
Md5:    425c497bdacc54bd70bdad6b1f5d1038
Sha1:   d766ba3f9a71a3f52f61617bf4903f243aabba48
Sha256: 38081837e6d3d41be0bfa9567677bd90978c91bdfd31de5bbf08cc109f45c649
                                        
                                            GET /wp-content/plugins/wp-views/vendor/toolset/toolset-common/res/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 15 Jan 2020 14:28:38 GMT
etag: W/"5e1f2196-7918"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.484032,VS0,VE475
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7781
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   7781
Md5:    d2e8f813d9cb5468ffe853ba079e2b47
Sha1:   e21887874be3bb19bdbdc09684390834dd066fd9
Sha256: bd257751a9617f85486149e064c6b57ff10f0b098fd16d4b27179bf4a8aee43e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/bb-plugin/cache/24c8b22b6af93d5c878a9719fb11ac81-layout-bundle.css?ver=2.6.0.3-1.4.3.2 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 21 Oct 2022 22:30:22 GMT
etag: W/"63531d7e-3c986"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 9
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.484334,VS0,VE358
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 27819
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   27819
Md5:    4cec85367fd17898b590d733ec8a304c
Sha1:   30cfa98d69261802355eb2754b7ef19aed2f2ba9
Sha256: e80ac60092c59d18b5ec51648363469511c5823562f678c667ba71ac681bc31b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-2bf8"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.489464,VS0,VE477
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2865
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11256), with no line terminators
Size:   2865
Md5:    fb368bbe71fa1b870e4faaa08e0e480d
Sha1:   fb1d98a028de9afb2356c9e9543e0ec83cc9db3c
Sha256: f28edbf24ba549420a79c49b421902928c8521d2b3bcb4070975e40e36e9a84d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/simple-social-buttons/assets/css/front.css?ver=4.0.2 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 04 Aug 2022 14:15:20 GMT
etag: W/"62ebd478-17f90"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.483677,VS0,VE484
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 12447
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   12447
Md5:    43a564ce2ccedbd52d2500583e7cd128
Sha1:   5128cfb8c416016eeb64fc32cc088af77ff5f550
Sha256: 50d20293a97a3f5756734cb1d982e14120f8220d4a19868df2d7c501d0924d1b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/bb-theme/skin-6353ef1280dfb.css?ver=1.7.11 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 22 Oct 2022 13:24:34 GMT
etag: W/"6353ef12-e178"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.496579,VS0,VE477
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 10053
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57720), with no line terminators
Size:   10053
Md5:    a8dc72d3983b2f0ab3dd4ed2641771e8
Sha1:   bae3a1fe8e01fef801ab20646670e2cdea54c725
Sha256: 81b9b472431624b82bec22ea303c18e545c58ebb1bb4d5cbc8289a18a54860af
                                        
                                            GET /wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.2.10 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 21 Oct 2022 17:46:02 GMT
etag: W/"6352dada-406"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.502615,VS0,VE476
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 390
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   390
Md5:    9728008883af8a3b064e53fcd51ee1ad
Sha1:   b8b229465e0163413446dd4d852e6e8d944e70c6
Sha256: c8355a7b0e05a8b9510e87546836fd51aa27c72febc90aaaa79162cf931263cf
                                        
                                            GET /wp-content/themes/bb-theme-child/style.css?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 15 Jan 2020 14:21:36 GMT
etag: W/"5e1f1ff0-147"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.502938,VS0,VE475
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 228
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   228
Md5:    6f47efebebdd6fc5d7a064d97e96e9e2
Sha1:   d138f9d1ac443806514626ccbf0a3e99a94c1db6
Sha256: 776791082ce219f5e28b192f498735a482e493e307b65d7be1a8935c67b68956

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/simple-social-buttons/assets/js/frontend-blocks.js?ver=4.0.2 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 04 Aug 2022 14:15:20 GMT
etag: "62ebd478-0"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.503943,VS0,VE477
vary: Authorization, Accept-Encoding
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-2bd8"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.504400,VS0,VE477
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 4405
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4405
Md5:    24957bc8161f979c6e661f46fdc3974f
Sha1:   fa1237ffe8b3745baa78ac481239038e133fcc17
Sha256: 46acf87c90961d413ac24eace25b77a8d5236daf38799fec2daf0bc350cc6ebe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-15db1"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.504160,VS0,VE360
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 34060
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   34060
Md5:    22b0253c0ecce70e41e296d176b0d972
Sha1:   a161c363d2092739db21bfeb2cf23c980ec71580
Sha256: 181967b7928e133789c8edbb8bdcb73d44a0328d884b613f8ebfb182b4c3c52e
                                        
                                            GET /wp-content/plugins/simple-social-buttons/assets/js/front.js?ver=4.0.2 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 04 Aug 2022 14:15:20 GMT
etag: W/"62ebd478-1d3b"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.509992,VS0,VE477
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2216
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (360)
Size:   2216
Md5:    de6c85cebd28d64658f75db5c85dfb94
Sha1:   4f65b6e4897d0fb6b52c7da4902b8d6bd1f28583
Sha256: b229f95689d246b904fb353fbdd0d048db3b25207ea53fb8c5e222efb9bfccaf
                                        
                                            GET /wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=9.2.0 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 22 Oct 2022 04:03:29 GMT
etag: W/"63536b91-16e06"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.514658,VS0,VE358
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 17670
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  C source, Unicode text, UTF-8 text
Size:   17670
Md5:    741ffbc47eb099f881c239952c712c91
Sha1:   c45a505a0c036a8393f753c44d5de56404a86d41
Sha256: 20932c86c822fd4ef867cc62369966730964789cd1cba566651801f6a9b125cb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2021/01/e0eb110636aab332fab6593947793b1e5a4f62ed-150x150.jpg HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Sun, 31 Jan 2021 18:30:07 GMT
etag: W/"6016f72f-1dbe"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 9
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.540791,VS0,VE476
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7612
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   7612
Md5:    2511edfb4d96589062d4b601ec703637
Sha1:   21bb29800ccab4a4731d43f9740efe801e82c71b
Sha256: 9cdbd5e566ae1c3160b32b3be0ee5fdd0b9ece96348429c7e5378f9a9cbbb640
                                        
                                            GET /wp-content/uploads/bb-plugin/cache/5-layout.js?ver=f6895918ae1f9946b42f470e20892523 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 22 Oct 2022 13:29:33 GMT
etag: W/"6353f03d-eb34"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 9
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.583824,VS0,VE359
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13615
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (2443)
Size:   13615
Md5:    2917d0f99f81657c9726cb134aa54e79
Sha1:   366ffa05f9c4b6dbc2fef3595a41530e9712702a
Sha256: 1b0d4306965853e968ecfb4c6b6ddd02ba560d0abdbdaf57a96cb6597be73938

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/bb-plugin/js/jquery.mosaicflow.min.js?ver=2.6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 21 Oct 2022 22:02:51 GMT
etag: W/"6353170b-1512"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 9
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.583297,VS0,VE478
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1898
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5394), with no line terminators
Size:   1898
Md5:    bc691500bb26b19335fdd8db92ae3f15
Sha1:   ff3162c05e152fdd600a9c74078c1a87c47fbcfb
Sha256: 7c1631a1c11a6e85295ce598d7c61e9c21df59cf1379a7697393d6b5496ba0a0
                                        
                                            GET /wp-content/plugins/embedpress/assets/js/front.js?ver=3.5.2 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 22 Oct 2022 03:09:04 GMT
etag: W/"63535ed0-2540"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 50
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.584208,VS0,VE477
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 2966
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2966
Md5:    ddd403174f1ccfcac2ab904c90ab4a6f
Sha1:   fee159a587c42efafb35198e5287a29d21d2945e
Sha256: 99afc4f85fec7361dccf68f15cd3c5450b0c96ded372dfba37565ee07541bd12

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-8f87"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 51
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.584655,VS0,VE476
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 12055
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (36560)
Size:   12055
Md5:    451bc5baa70fdfb648138a320fa3c1cd
Sha1:   8c3f9655750cf7334e4d8b2ed2c219fc32a2c40a
Sha256: ac5a2b0ef9b2443a4aa4aa8584a3d2e17a95c871b69334b5e0c6e220d9bd28ba

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/bb-ultimate-addon/assets/js/global-scripts/jquery-masonary.js?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 21 Oct 2022 22:04:20 GMT
etag: W/"63531764-89fc"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 9
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.583441,VS0,VE478
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 10938
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32014), with CRLF line terminators
Size:   10938
Md5:    96a8748e86f9172f16490e1312014d82
Sha1:   1910d7b4f460b452ccf063e7fd0e96fba62ee051
Sha256: 21fbc39bc425e559edd6a025a7f6c548d271c7db4161fb75e5f1186fd00d9c36
                                        
                                            GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-53c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.585748,VS0,VE477
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 718
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   718
Md5:    31e7f275636fe6733bafba2b77ce9ec0
Sha1:   9e2f9b8bfc9bf8910f6cc7068ea83ef379c6696f
Sha256: 08685fe4df303f97dd8f256b468000568635d59480e36784a8908a2d18c641e7
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-50eb"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 50
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.584511,VS0,VE479
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7442
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   7442
Md5:    7070cf6c839a09af2a84f926dd2f95e1
Sha1:   2ac5f6312b4cc85f39804d4a61eeb00c2cced58e
Sha256: ed584ebba9826c2d9fb5078ca275ce47d05b2a9a1f075e7493526fe7fe458c4c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/bb-plugin/js/jquery.magnificpopup.min.js?ver=2.6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 21 Oct 2022 22:02:51 GMT
etag: W/"6353170b-4da3"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.594797,VS0,VE475
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 7740
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19875), with no line terminators
Size:   7740
Md5:    66b22edbd74025f18a6925a7f0d21f8f
Sha1:   132886b083e78eb4057bb8c35f5ab72411455f1d
Sha256: 8662072c37ebdfaa846eb41b96158e882e71e1849ffa53014b9a3cd0c1769c95
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-15b64"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.476186,VS0,VE477
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 13906
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   13906
Md5:    1047dd6779111ec73736abd71a40fef9
Sha1:   e08643922ce9a1a488f2a72c0341807f59f7528e
Sha256: d85287eacda4e97356cf1b53ec765e34c8913558d6fb485b334debf78c89a3bf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/mediaelement/wp-playlist.min.js?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-d67"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.591989,VS0,VE479
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 1228
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3431), with no line terminators
Size:   1228
Md5:    5f530107a62cb814591c70780aafddce
Sha1:   257bd8854ffd38028703729a796ab792f9ede0c9
Sha256: a72c115a859b6cdd6a4755598fb4ed70122e28f9e31f6e851a51dd6c70509b9a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/all.min.css?ver=2.6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 21 Oct 2022 22:02:48 GMT
etag: W/"63531708-e7a9"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.477477,VS0,VE476
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 14273
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59119)
Size:   14273
Md5:    0a194885188e9a881b32f2ec5fc89862
Sha1:   de618328e6cd1b899f8d9fcb87ac1ea0079690f3
Sha256: acd1a177d91bcea2dc4d71764e5771d12532d24d6211a9d91897cb44776f9c47

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bb-theme/js/bootstrap.min.js?ver=1.7.11 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 22 Oct 2022 13:24:23 GMT
etag: W/"6353ef07-9b01"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.594959,VS0,VE476
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 12327
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (39553)
Size:   12327
Md5:    3ca06003790c90f0694264b3e249811b
Sha1:   baf6f28dfd42dbebd6308a0ff6e4593cb0245c65
Sha256: d2151ef4b1e1b4c10b1a567e56ff242a6cb1ce3b57383f8d30940db939bfc5a3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/woobox/woobox_requiresdk.js?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 04 Aug 2022 14:21:51 GMT
etag: W/"62ebd5ff-2b7"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 9
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.595539,VS0,VE478
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 409
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   409
Md5:    ef58998ef95a7cb2d416a3903660da4d
Sha1:   347513d2a5c8729c59a8a0e0188b3b2ba309ac93
Sha256: dd8b22d131ef3389e45ba1788ad7ff4cf52f98ae997b808a78ac53e45d909bda

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/css/dashicons.min.css?ver=6.0.3 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-e688"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 49
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.490375,VS0,VE477
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 36596
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (58981)
Size:   36596
Md5:    004101af9c3befba2e10d525146a727f
Sha1:   077953fb6eed94ca90e8b301ec23fa9d0308587f
Sha256: 1fcba3a13205f4a577119cfebcb57d9c5519956f8e972c7fb8d9ce4fca557206

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bb-theme/css/bootstrap.min.css?ver=1.7.11 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 22 Oct 2022 13:24:22 GMT
etag: W/"6353ef06-1da44"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644925.496418,VS0,VE478
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 23191
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65369)
Size:   23191
Md5:    51845f410fb1b0eeef58da80c2d44470
Sha1:   9183b6ec9fe49b1f2645940687c557c36448c379
Sha256: 5748dff062f32a83685d0ffde90ab383b77f9ca0f17c0234876c866b6b938371

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2021/01/snowman-150x150.jpg HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Sun, 31 Jan 2021 18:30:07 GMT
etag: W/"6016f72f-5993"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 9
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.540908,VS0,VE475
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 18762
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Macintosh), datetime=2021:01:30 19:52:51], baseline, precision 8, 150x150, components 3\012- data
Size:   18762
Md5:    f081ff9296558b708b6011cd8fcdc8a6
Sha1:   bca0164a5e0bd17c3295e33b57d1a4e55adf7ba7
Sha256: 2c25d80d44ba7a90c7867ca3255dbf09e3e46040cd04cbf11e04cd89b8a4d557
                                        
                                            GET /wp-content/uploads/2021/08/LittleGreenHive1-225x300.jpg HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Thu, 19 Aug 2021 22:06:54 GMT
etag: W/"611ed5fe-88fe"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 10
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.535998,VS0,VE479
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 32453
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, manufacturer=Apple, model=iPhone 6s, orientation=upper-left, xresolution=174, yresolution=182, resolutionunit=2, software=14.6, datetime=2021:07:05 16:08:22, hostcomputer=iPhone 6s, GPS-Data], baseline, precision 8, 225x300, components 3\012- data
Size:   32453
Md5:    63cd3ed9d1d3e82f0b3a342ca5d34b37
Sha1:   b1c50e5a1edb5a12104fdc552baa307679cb5395
Sha256: 88c5c9319f5f18095f63c4dabb23ac90b4a49a806f582a1723eaa1d6ca4cab39
                                        
                                            GET /wp-content/uploads/2021/02/disney-150x150.jpg HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Fri, 26 Feb 2021 14:45:06 GMT
etag: W/"60390972-6d17"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 9
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.540767,VS0,VE477
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 23992
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Macintosh), datetime=2021:02:17 15:23:35], baseline, precision 8, 150x150, components 3\012- data
Size:   23992
Md5:    d733066ac77b6ae5514f94ebbc7d143a
Sha1:   09d1e1ffedd8f08d41cf4bd2bc4e7e00d1aeb7b8
Sha256: 454c6f4b77277b9b67c983996c45b67cedf5849e4850c504b049071d24b5cc98
                                        
                                            GET /wp-content/uploads/2021/10/Screen-Shot-2021-10-27-at-9.27.25-AM-300x219.png HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Wed, 27 Oct 2021 13:27:19 GMT
etag: W/"617953b7-27418"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 10
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.536522,VS0,VE358
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 160860
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 219, 8-bit/color RGBA, non-interlaced\012- data
Size:   160860
Md5:    6e64b50850ef9ef082be8b2ef263c892
Sha1:   273d96b84bb3d257faf4cef1c6ac9118f0ae0c82
Sha256: 1dcc88af431ca013ffd750cf43736e389338b9708463f1665b168fa51ac8e971
                                        
                                            GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Oct 2022 08:13:20 GMT
etag: W/"634e6020-267aa"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
cache-control: public, max-age=31536000
x-fw-hash: ug6mlb3sfo
content-encoding: gzip
x-hits: 52
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.584892,VS0,VE481
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 43772
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65266)
Size:   43772
Md5:    32fe4d57a2e813b3e959e34209158ede
Sha1:   c812df020c7759be5923be493827d859c11c845d
Sha256: 80c68ef081d6e29f7e4aca7f1ef2320da0d45ba3f56a542bb5cb2f6677bb5e9e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2021/10/Screen-Shot-2021-10-27-at-9.43.22-AM-300x195.png HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Wed, 27 Oct 2021 13:42:42 GMT
etag: W/"61795752-17f0c"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 10
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.533096,VS0,VE482
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 98108
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 195, 8-bit/color RGBA, non-interlaced\012- data
Size:   98108
Md5:    56d59b2bd905ad7141f884d2c766dd9e
Sha1:   bee931b89294d9db97cb20f5b2775cc4cba6a8b7
Sha256: 3a4adb44a7529ebf3b8a501409c1cda1565077fd6560a91d5a56daffc7d8263a
                                        
                                            GET /wp-content/uploads/2018/05/water-fight-children-water-play-51349.jpeg HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Fri, 04 Oct 2019 02:13:34 GMT
etag: W/"5d96aace-68c12"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 16
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:25 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.581621,VS0,VE358
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 428778
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1778x1500, components 3\012- data
Size:   428778
Md5:    08999aabd2aa73e095998fcd40ca036e
Sha1:   2b0adeacead3e0675c8930c34b0caaa4bf3ecf09
Sha256: e6b25f832bb2b309540f27d3f89cda7f0ef020cb9960fa5ce828e2c45a6296f2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 14:15:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 14:15:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 14:15:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /min/embed-controller.js HTTP/1.1 
Host: s.imgur.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://roanoke.family/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.84.193
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 09 Nov 2022 15:54:16 GMT
etag: "9ed8fe2752ce22d6cdf0488bd3ad0802"
accept-ranges: bytes
date: Mon, 28 Nov 2022 14:15:26 GMT
via: 1.1 varnish
age: 59
x-served-by: cache-bma1625-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669644927.515359,VS0,VE1
vary: Accept-Encoding
content-length: 2809
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2809), with no line terminators
Size:   2809
Md5:    9ed8fe2752ce22d6cdf0488bd3ad0802
Sha1:   25ac19a88d23f2b17b9cee3a5532b92cf64eae87
Sha256: 4d5630e6cb7cdcca363cf81a7eb4a09202835166a613c002a27fac54fa87ba50
                                        
                                            GET /wp-content/uploads/2019/04/Cover-apr-19BG.jpg HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/wp-content/uploads/bb-plugin/cache/5-layout.css?ver=32f3bcad982bcd37b6987f6b3ae4716f
Connection: keep-alive
Cookie: pys_session_limit=true; pys_start_session=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Fri, 04 Oct 2019 02:27:17 GMT
etag: W/"5d96ae05-fa2e"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
cache-control: public, max-age=31536000
content-encoding: gzip
x-hits: 9
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.399208,VS0,VE120
vary: Accept-Encoding, Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 47859
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x944, components 3\012- data
Size:   47859
Md5:    3e3256e165ca8a5f925b61b0870333d2
Sha1:   dc2c37450a35ae8e3017f8c17cbd3f554f6e7641
Sha256: 18501c399f6cb552e2efb2feff805769040b198852787e206fb0ac63e8b1a8e5
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://roanoke.family
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 376355
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://roanoke.family
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 21:14:39 GMT
expires: Tue, 21 Nov 2023 21:14:39 GMT
cache-control: public, max-age=31536000
age: 579647
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Size:   25372
Md5:    fe424f96cb627d8b835cb001af17f56e
Sha1:   c5b4368fed99812a99036fba86d01367b5549505
Sha256: 35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
                                        
                                            GET /s/aleo/v11/c4mg1nF8G8_syLbsxDJJnw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://roanoke.family
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25184
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 01:42:57 GMT
expires: Wed, 22 Nov 2023 01:42:57 GMT
cache-control: public, max-age=31536000
age: 563549
last-modified: Tue, 19 Apr 2022 18:52:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 25184, version 1.0\012- data
Size:   25184
Md5:    2b11d37c52a63b34b94a9f41d7e44569
Sha1:   8ce6d0ac53a5dcd6a8f88f63d145fc6a1f4a47d3
Sha256: b8d66ac9fd1ff6e3a9e3bd50dec6c269697787363cdc1e42d1fbb470f1f61ad9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 28 Nov 2022 14:15:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/wp-views/vendor/toolset/toolset-common/res/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://roanoke.family/wp-content/plugins/wp-views/vendor/toolset/toolset-common/res/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Connection: keep-alive
Cookie: pys_session_limit=true; pys_start_session=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         151.101.130.159
HTTP/2 200 OK
content-type: application/octet-stream
                                        
last-modified: Fri, 04 Oct 2019 02:43:04 GMT
etag: "5d96b1b8-12d68"
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
x-fw-server: Flywheel/5.1.0
x-fw-hash: ug6mlb3sfo
access-control-allow-origin: *
cache-control: public, max-age=31536000
x-hits: 48
accept-ranges: bytes
x-fw-version: 5.0.0
server: Flywheel/5.1.0
x-cacheable: YES
fastly-restarts: 1
date: Mon, 28 Nov 2022 14:15:26 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT, MISS
x-cache-hits: 0
x-timer: S1669644926.430733,VS0,VE121
vary: Authorization
x-fw-serve: TRUE
x-fw-static: YES
x-fw-type: VISIT
content-length: 77160
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
                                        
                                            GET /wp-content/uploads/2020/10/firsthomecare-web.jpg HTTP/1.1 
Host: roanoke.family
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://roanoke.family/
Connection: keep-alive
Cookie: pys_session_limit=true; pys_start_session=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers