firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 22:35:50 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AQW5uMvpHLLacODgB7qQ3wFO-oWLlO5gIKBt1kfJH93AWXHDclSu2Q==
Age: 1060
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9434
Expires: Sat, 03 Sep 2022 01:30:44 GMT
Date: Fri, 02 Sep 2022 22:53:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AigthJZ91kwVSvBK1NJFb3OWNQsBQiviXyas6nqsf50QGJoxb36iCw==
age: 77893
X-Firefox-Spdy: h2
www.realhopeoswego.org/
199.34.228.73301 Moved Permanently 370 B IP 199.34.228.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3168afd7f2e52d52c9b401688c845337
6f5bff725fa21cc9e90daa48dc7a54941a550bf9
155fb34847bde6401bc6eac53a03701be4ef19d2832fcbe9528053623fd47cf1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 22:53:30 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.realhopeoswego.org
Vary: X-W-SSL,User-Agent
Location: https://www.realhopeoswego.org/
X-Host: grn44.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 370
Keep-Alive: timeout=10, max=64
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 22:53:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 02 Sep 2022 22:38:16 GMT
Expires: Fri, 02 Sep 2022 23:31:24 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Q9tikulQ3OVpsxZNhW_Q6VYuYWnuK1wpjGFK-d6ZqU6T0G2tSuLL_Q==
Age: 914
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash df46957ed37c0304ee5da04c7c95575e
f9341fe5d3e1456e2997db8a9fb2fa1fad87eafe
db9fc10a2e2182e31854f0cf362631c53575597835bfc4fc2d5a1643982474a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB9FC10A2E2182E31854F0CF362631C53575597835BFC4FC2D5A1643982474A9"
Last-Modified: Fri, 02 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 03 Sep 2022 04:53:30 GMT
Date: Fri, 02 Sep 2022 22:53:30 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 21daf45cdda2eb462873226bb5c1f0fb
4d4621bbf1461f35f7e536c1dbd9de71978ffa23
8164c742d013bdc2836cac1167acfe482547347ab6a1daefa15475f694dae057
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5907
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:30 GMT
Last-Modified: Fri, 02 Sep 2022 21:15:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
www.realhopeoswego.org/
199.34.228.73200 OK 9.7 kB IP 199.34.228.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1350), with CRLF, LF line terminators
Hash b00391d68371d5acd08b457e6e3c603d
ab16547d1cbc2d223adb22133b1eaf29041ae724
b08b469db715920720e310ef2fc534922be854a2eee1d72abc00bfe473670d77
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 22:53:30 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.realhopeoswego.org
language=en; expires=Fri, 16-Sep-2022 22:53:30 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"ba56efa59ab02ed61327f267c2c2975e-gzip"
Content-Encoding: gzip
X-Host: blu120.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 9684
Keep-Alive: timeout=10, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/css/old/fancybox.css?1643323087
151.101.85.46200 OK 1.2 kB URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 22 Aug 2022 20:43:20 GMT
etag: "6303ea68-f47"
expires: Tue, 06 Sep 2022 10:28:50 GMT
cache-control: max-age=1209600
x-host: blu100.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Sep 2022 22:53:31 GMT
age: 908681
x-served-by: cache-sjc10056-SJC, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662159211.233196,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1218
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/social-icons.css?buildtime=1643323087
151.101.85.46200 OK 1.6 kB URL HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (13080)
Hash 771ec2cf038214c40ed54dc7d0ce7e4c
20b2a198541e596346f26f9e15d51488bb76608b
33269d6ddede29e1043070cb0ee0f3034f154ce264970994fe071c092fa8b675
GET /css/social-icons.css?buildtime=1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 22 Aug 2022 20:43:15 GMT
etag: W/"6303ea63-3319"
expires: Tue, 06 Sep 2022 07:43:41 GMT
cache-control: max-age=1209600
x-host: grn96.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Sep 2022 22:53:31 GMT
age: 918590
x-served-by: cache-sjc10030-SJC, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1662159211.234526,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1639
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1643323087
151.101.85.46200 OK 146 kB URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (32147)
Size 146 kB (146400 bytes)
Hash 81b8673c5d3aa3ab8c0574f2a8f0e3b4
2e0661bc7907d9e2703b3347c3fec579f0aef5d6
0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
GET /js/site/main.js?buildTime=1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 29 Aug 2022 23:14:16 GMT
etag: "630d4848-74804"
expires: Tue, 13 Sep 2022 11:02:56 GMT
cache-control: max-age=1209600
x-host: blu31.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Sep 2022 22:53:31 GMT
age: 301835
x-served-by: cache-sjc10058-SJC, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662159211.228988,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146400
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.242.22101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.242.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sYWKlIJXVa2ekQPbCOfq7Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BSS7lrxi9+C1QvrXTvf71Mvmso0=
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
216.58.207.202200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 216.58.207.202:0
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 07:47:50 GMT
expires: Thu, 31 Aug 2023 07:47:50 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 227141
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/sites.css?buildTime=1643323087
151.101.85.46200 OK 30 kB URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /css/sites.css?buildTime=1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 22 Aug 2022 20:43:15 GMT
etag: W/"6303ea63-347ac"
expires: Tue, 06 Sep 2022 12:51:12 GMT
cache-control: max-age=1209600
x-host: grn97.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Sep 2022 22:53:31 GMT
age: 900138
x-served-by: cache-sjc10021-SJC, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662159211.230049,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29746
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1643323087
151.101.85.46200 OK 159 kB URL HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (32007)
Size 159 kB (158930 bytes)
Hash f740fdfbcf394f270a9b176029fa6f37
5f20c49627104282744508eb0278d7185128532e
3021f0f944c9bd7c6e995601f25b3d970e0bd41f9a411f08b2871bb5415a8707
Analyzer Verdict Alert fortinet Malware
GET /js/site/main-customer-accounts-site.js?buildTime=1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 17:52:38 GMT
etag: "630513e6-8250f"
expires: Wed, 07 Sep 2022 12:37:44 GMT
cache-control: max-age=1209600
x-host: grn57.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Sep 2022 22:53:31 GMT
age: 814546
x-served-by: cache-sjc10046-SJC, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662159211.232933,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 158930
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/main_style.css?1643413329
199.34.228.73200 OK 7.4 kB URL HTTP/1.1 www.realhopeoswego.org/files/main_style.css?1643413329
IP 199.34.228.73:0
File type ASCII text, with very long lines (1061)
Hash e44c5649c47672f951bd55aff15d4a66
5b767699622dcd50179ffd13479af8f9a2c96d06
6e6f1be25300b8bbb200673d7c0ced256decbd61bce2718ba54a97756705c6aa
Analyzer Verdict Alert fortinet Malware
GET /files/main_style.css?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:31 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn46.sf2p.intern.weebly.net
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/files/templateArtifacts.js?1643413329
199.34.228.73200 OK 1.6 kB URL HTTP/1.1 www.realhopeoswego.org/files/templateArtifacts.js?1643413329
IP 199.34.228.73:0
File type exported SGML document, ASCII text, with very long lines (1630)
Hash e0836e8203c22b8e4086f27e91e86f5a
28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6
Analyzer Verdict Alert fortinet Malware
GET /files/templateArtifacts.js?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:31 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn127.sf2p.intern.weebly.net
Content-Encoding: gzip
cdn2.editmysite.com/images/editor/theme-background/stock/Beach-Biking.jpg
151.101.85.46200 OK 216 kB URL HTTP/2 cdn2.editmysite.com/images/editor/theme-background/stock/Beach-Biking.jpg
IP 151.101.85.46:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=Mario Habenbacher], baseline, precision 8, 2280x1667, components 3\012- data
Size 216 kB (216371 bytes)
Hash ab428b11898a6a9aed8f181b68b8dbea
449eca1b1c661b247913ba62986c35879bb7c7b4
50063716eb602d31174eb7e3a4a5b2e1074d171cace9716b4b4e14c2190b89dd
GET /images/editor/theme-background/stock/Beach-Biking.jpg HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtjpt116k89qGQaMUjGqkCwmanK8f0wb-vJXLtimZZBRg964DBphF6R4AM7rpeYky9plqIH303SzAtP2x4h8e2U
cache-control: public, max-age=86400, s-maxage=259200
expires: Fri, 19 Aug 2022 22:48:31 GMT
last-modified: Thu, 25 May 2017 17:30:31 GMT
etag: "ab428b11898a6a9aed8f181b68b8dbea"
x-goog-generation: 1495733431772764
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 216371
content-type: image/jpeg
x-goog-hash: crc32c=dUMLKA==, md5=q0KLEYmKaprtjxgbaLjb6g==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Fri, 02 Sep 2022 22:53:31 GMT
via: 1.1 varnish
age: 144006
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1662159212.629059,VS0,VE2
access-control-allow-origin: *
content-length: 216371
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/wSocial/wsocial.woff?ts=1661200995686
151.101.85.46200 OK 2.6 kB URL HTTP/2 cdn2.editmysite.com/fonts/wSocial/wsocial.woff?ts=1661200995686
IP 151.101.85.46:0
File type Web Open Font Format, TrueType, length 2636, version 1.0\012- data
Hash 0e88795b66eeac48b209209aa0179411
983e16566390f9167c6c4fbbdb052623fc01a631
e8106b06fab14948098cae97983eafbe1a60643ac725b2a029e4da57d43854df
GET /fonts/wSocial/wsocial.woff?ts=1661200995686 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff
last-modified: Mon, 22 Aug 2022 16:54:07 GMT
etag: "6303b4af-a4c"
expires: Mon, 05 Sep 2022 21:08:12 GMT
cache-control: max-age=1209600
x-host: blu85.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Sep 2022 22:53:31 GMT
age: 956718
x-served-by: cache-sjc10037-SJC, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 5
x-timer: S1662159212.647342,VS0,VE0
access-control-allow-origin: *
content-length: 2636
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 16:40:18 GMT
expires: Fri, 01 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 108793
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/files/theme/custom.js?1565969634
199.34.228.73200 OK 1.8 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/custom.js?1565969634
IP 199.34.228.73:0
Hash 1f7d51d1b0acc9268e8aa57af11ee258
df55901d31c5b1de0181820e1bf123d61b5ec6c6
44ecca81c81024cd199ad979fd0ca46a379978a73a1c9ce09b6dfc9393cceff0
GET /files/theme/custom.js?1565969634 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 19 Apr 2022 15:56:37 GMT
x-rgw-object-type: Normal
ETag: W/"48e887857aec23f184b0aa49c18d2445"
x-amz-request-id: tx000000000000001b96ed8-0062847f61-b9fbc64-sfo1
X-Storage-Bucket: z0567
X-Storage-Object: 0567021bc3973d113c6b0b6e68d0e9a8b53f38a7f60716c83214a133cc00139a
X-Host: blu71.sf2p.intern.weebly.net
Content-Encoding: gzip
www.realhopeoswego.org/files/theme/plugins.js?1565969634
199.34.228.73200 OK 16 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/plugins.js?1565969634
IP 199.34.228.73:0
Hash 43e6b0bb6eb6524188831a282f7656d7
44e73fe367fc1fb8efee7eefac557b7d76ef0f44
9001fcfe93ceab40de4bb3535fc61335318c56d4440b53070cac27a26fef42bb
Analyzer Verdict Alert fortinet Malware
GET /files/theme/plugins.js?1565969634 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 24 Apr 2022 01:56:38 GMT
x-rgw-object-type: Normal
ETag: W/"2b8d85f1ea01d2c3e8b962eac8d76a5c"
x-amz-request-id: tx000000000000001b40535-0062847a75-b9fbc64-sfo1
X-Storage-Bucket: zb635
X-Storage-Object: b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5
X-Host: blu13.sf2p.intern.weebly.net
Content-Encoding: gzip
www.realhopeoswego.org/files/theme/fonts/2cd55546-ec00-4af9-aeca-4a3cd186da53.woff2?1643413329
199.34.228.73200 OK 17 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/2cd55546-ec00-4af9-aeca-4a3cd186da53.woff2?1643413329
IP 199.34.228.73:0
File type Web Open Font Format (Version 2), TrueType, length 16560, version 2.6553\012- data
Hash 27958408325380d903e67d87768563b8
d728e699c79072f1c7b9602c771e241b8c04c8a4
83f8b8932766826c1dd3a228b48f4072586ca09f781d64e2950d9f0e235c00a0
GET /files/theme/fonts/2cd55546-ec00-4af9-aeca-4a3cd186da53.woff2?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:31 GMT
Content-Type: font/woff2
Content-Length: 16561
Connection: keep-alive
Last-Modified: Fri, 30 Aug 2019 08:25:03 GMT
ETag: "27958408325380d903e67d87768563b8"
x-amz-request-id: tx0000000000000004c8072-005eaa6c22-1100fc6-las
X-Storage-Bucket: z83f8
X-Storage-Object: 83f8b8932766826c1dd3a228b48f4072586ca09f781d64e2950d9f0e235c00a0
X-Host: grn29.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/29573050-10155679475053318-4597406936829406111-n.jpg?1552863936
199.34.228.73200 OK 46 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/29573050-10155679475053318-4597406936829406111-n.jpg?1552863936
IP 199.34.228.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 718x405, components 3\012- data
Hash eb53df0cfd9c2f20d63c92fcba3f8141
45526f4223b803162fb53ee265b8d4d0a28d0a60
4ae3478d139c40b24a3627f698e7c85ac4dda5fe9f40ecf8dba1834fda1d833e
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/2/4/0/124018328/published/29573050-10155679475053318-4597406936829406111-n.jpg?1552863936 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:31 GMT
Content-Type: image/jpeg
Content-Length: 46392
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 23:05:36 GMT
x-rgw-object-type: Normal
ETag: "eb53df0cfd9c2f20d63c92fcba3f8141"
x-amz-request-id: tx000000000000030016d42-00630c4762-bfe36ba-sfo1
X-Storage-Bucket: z4ae3
X-Storage-Object: 4ae3478d139c40b24a3627f698e7c85ac4dda5fe9f40ecf8dba1834fda1d833e
X-Host: grn32.sf2p.intern.weebly.net
Accept-Ranges: bytes
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.85.46200 OK 26 kB URL HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 19:50:08 GMT
etag: "630e69f0-124fe"
expires: Thu, 15 Sep 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: grn123.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Sep 2022 22:53:31 GMT
age: 137690
x-served-by: cache-sjc10034-SJC, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1588
x-timer: S1662159212.952258,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6b6b5ffecd53193507458fbe6e66d3f0
c96009132e435078cd79e19b19eeb0dbcf9abef3
229806893f073d6d725880c375c2f72ab09221a46095e1203d7379c1a29b8bef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?_=1662159210278
142.250.74.164200 OK 555 B URL HTTP/2 www.google.com/recaptcha/api.js?_=1662159210278
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 20ea0fc27ddf01e53ed8882484fc01de
0ab2af2f82275ff31c78701aeaad55f702ac8a40
f6bd5bccba08ad51ba7be815ff11f12155c7f507a37c690075b3e01dc25d6fcd
GET /recaptcha/api.js?_=1662159210278 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 02 Sep 2022 22:53:32 GMT
date: Fri, 02 Sep 2022 22:53:32 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9665d92cfb2f9db5f7032ed692dff0e0
2ca6220de116f04429a7ce3f3c8f95cae61db137
5cc77ac9117df4aa52cc268287bf82f9dde172f1bcd7f640d3f0ef04a5ed07c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/coins-912719-1920.jpg?1553259709
199.34.228.73200 OK 27 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/coins-912719-1920.jpg?1553259709
IP 199.34.228.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 384x256, components 3\012- data
Hash 8411fa9dbec3a40fd8f70bdd819d3102
5a2707cdf3b2d6a0017a22de13c8eebd0494e792
a8391ed95fc3358d1ff6263c2501dc396ec2b9451a7afefa9bb973b7a5c2e03c
GET /uploads/1/2/4/0/124018328/published/coins-912719-1920.jpg?1553259709 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:31 GMT
Content-Type: image/jpeg
Content-Length: 27421
Connection: keep-alive
Last-Modified: Fri, 22 Mar 2019 13:01:49 GMT
x-rgw-object-type: Normal
ETag: "8411fa9dbec3a40fd8f70bdd819d3102"
x-amz-request-id: tx00000000000002d78f844-0063086e0a-c03521c-sfo1
X-Storage-Bucket: za839
X-Storage-Object: a8391ed95fc3358d1ff6263c2501dc396ec2b9451a7afefa9bb973b7a5c2e03c
X-Host: grn84.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/7377dbe6-f11a-4a05-b33c-bc8ce1f60f84.woff2?1643413329
199.34.228.73200 OK 19 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/7377dbe6-f11a-4a05-b33c-bc8ce1f60f84.woff2?1643413329
IP 199.34.228.73:0
File type Web Open Font Format (Version 2), TrueType, length 18964, version 2.6553\012- data
Hash 03eed84923bfc319da88de04298fa495
9b4e82ce10dc1ae528d53e22045df8610e5f3dcc
0f7cae04d4ab4ba9c1bceb2a59ab9dcd925103f186c6c430cf5d9ab032c18128
GET /files/theme/fonts/7377dbe6-f11a-4a05-b33c-bc8ce1f60f84.woff2?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:31 GMT
Content-Type: font/woff2
Content-Length: 18965
Connection: keep-alive
Last-Modified: Fri, 30 Aug 2019 08:25:13 GMT
ETag: "03eed84923bfc319da88de04298fa495"
x-amz-request-id: tx000000000000009230d3a-005eaa5723-10e2649-las
X-Storage-Bucket: z0f7c
X-Storage-Object: 0f7cae04d4ab4ba9c1bceb2a59ab9dcd925103f186c6c430cf5d9ab032c18128
X-Host: blu49.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.powr.io/powr.js
104.22.50.245200 OK 26 kB IP 104.22.50.245:0
File type HTML document, ASCII text, with very long lines (15830), with no line terminators
Hash 13d8f8560a323bb7bb75b59ea357eb6d
12f1c8af1ba14ac499c32c323fc719ecac37a571
286c8fbea1f60aa84ac13bfa28809a3e19d96444cb72972033cbe3cf2335a646
GET /powr.js HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:31 GMT
content-type: application/javascript
cache-control: max-age=604800, public
cf-bgj: minify
expires: Sat, 02 Sep 2023 12:30:08 GMT
last-modified: Fri, 02 Sep 2022 12:30:00 GMT
vary: Accept-Encoding
via: 1.1 vegur
cf-cache-status: HIT
age: 35467
server: cloudflare
cf-ray: 7449d2821f360b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/25734117-10155425686983318-5089469130545338446-o.jpg?1552863824
199.34.228.73200 OK 83 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/25734117-10155425686983318-5089469130545338446-o.jpg?1552863824
IP 199.34.228.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1065x601, components 3\012- data
Hash 95b654c7fd06451c884e1a9eda521ae3
590155158783a917ccbd8520e627897200c12a65
321a9c42091a3f28cc99190be88d246f8acc38ae31d1fd9021ee2ffd639ec15e
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/2/4/0/124018328/published/25734117-10155425686983318-5089469130545338446-o.jpg?1552863824 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:31 GMT
Content-Type: image/jpeg
Content-Length: 82857
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 23:03:44 GMT
x-rgw-object-type: Normal
ETag: "95b654c7fd06451c884e1a9eda521ae3"
x-amz-request-id: tx000000000000019450dd1-0062e91e6c-c033918-sfo1
X-Storage-Bucket: z321a
X-Storage-Object: 321a9c42091a3f28cc99190be88d246f8acc38ae31d1fd9021ee2ffd639ec15e
X-Host: grn29.sf2p.intern.weebly.net
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4462
Expires: Sat, 03 Sep 2022 00:07:54 GMT
Date: Fri, 02 Sep 2022 22:53:32 GMT
Connection: keep-alive
www.realhopeoswego.org/files/theme/fonts/2e3f5cb9-101f-46cf-a7b3-dfaa58261e03.woff2?1643413329
199.34.228.73200 OK 19 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/2e3f5cb9-101f-46cf-a7b3-dfaa58261e03.woff2?1643413329
IP 199.34.228.73:0
File type Web Open Font Format (Version 2), TrueType, length 18636, version 2.6553\012- data
Hash b3aa7e2126c418e820b06924717c2ce9
35e12e34fb21fd08390027dbf0a9975c1444e863
cace42567eefa76edc8b069bb9cdf9fda7486243911fa88188efb2efca387a4a
GET /files/theme/fonts/2e3f5cb9-101f-46cf-a7b3-dfaa58261e03.woff2?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:32 GMT
Content-Type: font/woff2
Content-Length: 18637
Connection: keep-alive
Last-Modified: Fri, 30 Aug 2019 08:25:04 GMT
x-rgw-object-type: Normal
ETag: "b3aa7e2126c418e820b06924717c2ce9"
x-amz-request-id: tx000000000000000cad9ab-0061a70832-a9f1b25-sfo1
X-Storage-Bucket: zcace
X-Storage-Object: cace42567eefa76edc8b069bb9cdf9fda7486243911fa88188efb2efca387a4a
X-Host: grn79.sf2p.intern.weebly.net
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4462
Expires: Sat, 03 Sep 2022 00:07:54 GMT
Date: Fri, 02 Sep 2022 22:53:32 GMT
Connection: keep-alive
static.zbcdn.net/__kkafqfd/asset/bundle.js
104.26.13.36200 OK 96 kB URL HTTP/2 static.zbcdn.net/__kkafqfd/asset/bundle.js
IP 104.26.13.36:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4fa6f6f1117cb897942f158933c77656
2b731db8795e509e73fdf97f8d309d42d42faafe
72ca01d456955af355f5209398dee796b86f7f2c00f1c5f9873b3f43a4623f3f
GET /__kkafqfd/asset/bundle.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:31 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 Aug 2022 02:24:21 GMT
vary: Accept-Encoding
etag: W/"6306dd55-4214a"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 2194
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SZuz85QUhJ27uTiEhmQfbn9KNGPUZSwrjvmkkIWkxsdqGoX4%2BSF%2Fy0QYVj1hK55QsbAWmQjIn5VwlZ%2BgAF9fsX1XmsvC%2B%2BkbVkou9o5kfJPSe15%2FygEC2L7Ebtey7bmTKsM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7449d2822b8db506-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60769237af4f32c663d494d91a672d08
31305131f340191799484f212e15513bd1204e88
6df36e459f3a2d0271732b645009b116e6671363f6c3050d22bbfe2d911a77bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4994
x-amzn-requestid: de39357f-d378-4bb8-b4d9-7dd4f82fbb58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xgj-kEHvoAMFyBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309b390-119fa01e254e89cb39a1b794;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 06:02:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1yjBt3dqEztIRHo4yR3ZzI67J4lWUMS8R44-PpkeDJ4KNdCTPkmh-w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 04:45:35 GMT
age: 65277
etag: "31305131f340191799484f212e15513bd1204e88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4cb62c7c522b71c62a97630d8330ef5
950611314b81428b3d80ff8659272cc800cf48b6
3fd0bbf8a1fe8776136d611d6b99b909b71e6af3a13f8794338af2f0026b59ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7975
x-amzn-requestid: 5ed9a360-5a7f-427a-a750-bd8f25214909
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XwpOBEpjIAMFzXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63102259-4b9d2f6e61cc186f78718168;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 03:09:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: BU7CFrnTBhvyqoRVp1t-e_ZErBnJA9l4qGkmxOQd10W48IzyIFGFZw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 03:41:59 GMT
age: 69093
etag: "950611314b81428b3d80ff8659272cc800cf48b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7032eb34-1355-4f64-91db-2c4fd70139b1.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7032eb34-1355-4f64-91db-2c4fd70139b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85bb0a09818a7c5f9e92e5b0faa057a4
ceb9a1d4efc578ad2bbcd8f99e8bf69e7dbe7aa3
d7e1901bdae487d1c4f4d0c8fdfd090f8f0baff719f319666395f91dc147d250
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7032eb34-1355-4f64-91db-2c4fd70139b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12612
x-amzn-requestid: c89164ee-6194-4a96-9a7f-b8c03478ef15
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xihm-GiPIAMFglA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a7c92-7def0f7964f7f0d336810aae;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 20:20:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fEeJ_Zw9Egt6gQYinki1fMzvqdQgixv0iBio2G4KsMppWkYhEB_SCg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 04:06:17 GMT
age: 67635
etag: "ceb9a1d4efc578ad2bbcd8f99e8bf69e7dbe7aa3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F284d1308-98de-4954-a408-a2c074e0e7ea.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F284d1308-98de-4954-a408-a2c074e0e7ea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 945f8c7bc247f564fc18e434049b8eaa
a74869b1d9551896ba6f911d167e192b2d9fd45e
143e84c6bbba21b868d2a443a365129e625614caa8f6eb7247cf971ce24417af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F284d1308-98de-4954-a408-a2c074e0e7ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12853
x-amzn-requestid: 2faea4f9-2bc2-4f09-98ff-753202d8a4e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMHHfpIAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-00ba3cea36308cea4a092141;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9qJg8ABexAQhpVPxIuH1gRIE9m62F5jPWWnaiMcF0RD9N-Wt30JTEw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:00:18 GMT
age: 3194
etag: "a74869b1d9551896ba6f911d167e192b2d9fd45e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68896368-9321-46bd-8689-6fc6047037c0.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68896368-9321-46bd-8689-6fc6047037c0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31b0175d4161dd1d2eead5887e0b2f3b
441b9928a5a383e636ff1fb2a9ec72d52ee2996b
6d15e8d5a4e6a25971007741c689b705b35b437f39dfeebdf80bedcc9efa461e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68896368-9321-46bd-8689-6fc6047037c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6683
x-amzn-requestid: 0a8f3818-3172-4b9b-9a27-281d46486005
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XwpkjEuBIAMFnVQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631022e9-5c1835b07f5d49b449ea861c;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 03:11:37 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: brG7UdTN3QUPJ_LHuQl43KiLvLlB1dI3mPcXTD_0daj5u44xwkcX8g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 05:59:41 GMT
age: 60831
etag: "441b9928a5a383e636ff1fb2a9ec72d52ee2996b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/10858566-10205580632342086-5385752792553485738-n.jpg?1552863841
199.34.228.73200 OK 99 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/10858566-10205580632342086-5385752792553485738-n.jpg?1552863841
IP 199.34.228.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 956x539, components 3\012- data
Hash dbdffe3d579eb4701cf8689796f59e61
722cfa822fd11e002b2f8119ca43440831142e96
5fda61389dfb65cab1202471bfe4d2f846d1af26e23736afeb0d5fd0f714e965
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/2/4/0/124018328/published/10858566-10205580632342086-5385752792553485738-n.jpg?1552863841 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:32 GMT
Content-Type: image/jpeg
Content-Length: 99250
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 23:04:01 GMT
x-rgw-object-type: Normal
ETag: "dbdffe3d579eb4701cf8689796f59e61"
x-amz-request-id: tx0000000000000273a4e89-0062ff602f-c033918-sfo1
X-Storage-Bucket: z5fda
X-Storage-Object: 5fda61389dfb65cab1202471bfe4d2f846d1af26e23736afeb0d5fd0f714e965
X-Host: blu44.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/92b66dbd-4201-4ac2-a605-4d4ffc8705cc.woff?1643413329
199.34.228.73200 OK 25 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/92b66dbd-4201-4ac2-a605-4d4ffc8705cc.woff?1643413329
IP 199.34.228.73:0
File type Web Open Font Format, TrueType, length 25168, version 1.0\012- data
Hash 2f4c2c07910a4f4c70e95bbb7859f28e
1e95b73f1e87373b532928dd4a298a904ee440e9
f78c119c0807a2140e669a0e114ae2addcd782c948c91c25639e6eccfa6d08af
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/92b66dbd-4201-4ac2-a605-4d4ffc8705cc.woff?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=c5ec11d2-7ae5-4777-8b2a-dec909c38919.1662159210.1.1662159210.1662159210.5972d14a-eec0-446c-bfce-98b74f87c9a8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:32 GMT
Content-Type: font/woff
Content-Length: 25169
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:44 GMT
ETag: "2f4c2c07910a4f4c70e95bbb7859f28e"
x-amz-request-id: tx0000000000000000bf793-0061627ae1-1ff9432-las
X-Storage-Bucket: zf78c
X-Storage-Object: f78c119c0807a2140e669a0e114ae2addcd782c948c91c25639e6eccfa6d08af
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash bd24126f9ea9e2c8841351c06d3ff992
af4ee7a5a41b303afca8a4680256f2261718949a
1abbb218de343b452b38ffd4a5308864ee162fe775f66b293e0557b09441c989
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 22:53:32 GMT
Last-Modified: Fri, 02 Sep 2022 21:42:34 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TQh0-4J2NDFMLcbRI8NLIJqB57IWVJZJ2RN99c48T3tDuyyC9J40uw==
Age: 4258
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash bd24126f9ea9e2c8841351c06d3ff992
af4ee7a5a41b303afca8a4680256f2261718949a
1abbb218de343b452b38ffd4a5308864ee162fe775f66b293e0557b09441c989
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 22:53:32 GMT
Last-Modified: Fri, 02 Sep 2022 21:29:57 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RQdc9dB5qBpZFQri40MfArFzyRN4S2Lw-wvzuyaseVyn5BVCaegwXg==
Age: 5016
www.realhopeoswego.org/files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1643413329
199.34.228.73200 OK 39 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1643413329
IP 199.34.228.73:0
File type TrueType Font data, 16 tables, 1st "GPOS", 26 names, Macintosh, Copyright \251 2004 - 2007 Linotype GmbH, www.linotype.com. All rights reserved. This font softw\012- data
Hash 98f6dacde86ebbaac7cc62b34a6e54cf
d232a9249b6f39e7d35ce6a555e070987357acc9
65032d5699bf3d4deb4313aa4d1bb8375053ac7e93dfb4bf631ce9261da20c2b
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=c5ec11d2-7ae5-4777-8b2a-dec909c38919.1662159210.1.1662159210.1662159210.5972d14a-eec0-446c-bfce-98b74f87c9a8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:32 GMT
Content-Type: font/ttf
Content-Length: 39185
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:44 GMT
ETag: "98f6dacde86ebbaac7cc62b34a6e54cf"
x-amz-request-id: tx00000000000000923ac6d-005eaa5768-10e2649-las
X-Storage-Bucket: z6503
X-Storage-Object: 65032d5699bf3d4deb4313aa4d1bb8375053ac7e93dfb4bf631ce9261da20c2b
X-Host: blu14.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/fa19948e-5e38-4909-b31e-41acd170d6f2.woff?1643413329
199.34.228.73200 OK 25 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/fa19948e-5e38-4909-b31e-41acd170d6f2.woff?1643413329
IP 199.34.228.73:0
File type Web Open Font Format, TrueType, length 24663, version 1.0\012- data
Hash 921592aa07f703ed55036aed49590184
c8eb56bca4fcb3a715b408f15ecd71df0f415e39
304fdd345e780b7dbb6c6e6bc39d24e906e40ac2a618bc78ff81abc769f9b4ae
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/fa19948e-5e38-4909-b31e-41acd170d6f2.woff?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=c5ec11d2-7ae5-4777-8b2a-dec909c38919.1662159210.1.1662159210.1662159210.5972d14a-eec0-446c-bfce-98b74f87c9a8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:32 GMT
Content-Type: font/woff
Content-Length: 24664
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:43 GMT
x-rgw-object-type: Normal
ETag: "921592aa07f703ed55036aed49590184"
x-amz-request-id: tx000000000000001b835f7-0062848234-b9fbc20-sfo1
X-Storage-Bucket: z304f
X-Storage-Object: 304fdd345e780b7dbb6c6e6bc39d24e906e40ac2a618bc78ff81abc769f9b4ae
X-Host: grn127.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.238.88.40200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.238.88.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.realhopeoswego.org/
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:32 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.realhopeoswego.org
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/theme/fonts/18839597-afa8-4f0b-9abb-4a30262d0da8.ttf?1643413329
199.34.228.73200 OK 52 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/18839597-afa8-4f0b-9abb-4a30262d0da8.ttf?1643413329
IP 199.34.228.73:0
File type TrueType Font data, 16 tables, 1st "GPOS", 30 names, Macintosh, Copyright \251 2004 - 2007 Linotype GmbH, www.linotype.com. All rights reserved. This font softw\012- data
Hash 0e7e6446b2256e0cab1eda85655b253e
db15e8b7df5ee737e4960e0190af1ceaed74d5ac
a4e7a777a8d0e1a06feffaff42f025b9d8d890ca1df6f46d84f5da810109f5c0
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/18839597-afa8-4f0b-9abb-4a30262d0da8.ttf?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=c5ec11d2-7ae5-4777-8b2a-dec909c38919.1662159210.1.1662159210.1662159210.5972d14a-eec0-446c-bfce-98b74f87c9a8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:32 GMT
Content-Type: font/ttf
Content-Length: 52433
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:43 GMT
x-rgw-object-type: Normal
ETag: "0e7e6446b2256e0cab1eda85655b253e"
x-amz-request-id: tx000000000000000d1c28b-0061a70290-a9f3e81-sfo1
X-Storage-Bucket: za4e7
X-Storage-Object: a4e7a777a8d0e1a06feffaff42f025b9d8d890ca1df6f46d84f5da810109f5c0
X-Host: blu71.sf2p.intern.weebly.net
Accept-Ranges: bytes
static.zbcdn.net/__kkafqfd/asset/script/jquery.js
104.26.13.36200 OK 32 kB URL HTTP/2 static.zbcdn.net/__kkafqfd/asset/script/jquery.js
IP 104.26.13.36:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash f6dff63684c5024876cfeff6c5cb7e3b
cf38fabf31bc68bb328ec4cd53c53bd7ce896008
b6ab1d638f388c14b8b684b5281e0b77c32fb3580ca019d58cb607cef7b12e25
GET /__kkafqfd/asset/script/jquery.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:32 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 Aug 2022 02:24:21 GMT
vary: Accept-Encoding
etag: W/"6306dd55-15b48"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 2420
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B0ONuXIrmLw8sMeedSrJtqWKz6SZs8%2FGkjkKuDvtNTPWBOp4M6QVxbtqwS5Vg%2FZ%2BCQhZsBW%2BRK%2FR4nIa6JO8GY2F9cXeqLvO1GXKSHVnl4Q%2BYoE2EPA5WCwnkHJ0O9isUwU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7449d287a942b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/theme/fonts/6de0ce4d-9278-467b-b96f-c1f5f0a4c375.ttf?1643413329
199.34.228.73200 OK 52 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/6de0ce4d-9278-467b-b96f-c1f5f0a4c375.ttf?1643413329
IP 199.34.228.73:0
File type TrueType Font data, 16 tables, 1st "GPOS", 32 names, Macintosh, Copyright \251 2004 - 2007 Linotype GmbH, www.linotype.com. All rights reserved. This font softw\012- data
Hash 86cbf50e12da0b519ced148acd8ba2b4
f1d8b59433f059a54232b2db2cba4c17e455da1e
7118fcc9995d78a79c6a13eca290b043acd29399680aae376df5e95bc537fbd3
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/6de0ce4d-9278-467b-b96f-c1f5f0a4c375.ttf?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=c5ec11d2-7ae5-4777-8b2a-dec909c38919.1662159210.1.1662159210.1662159210.5972d14a-eec0-446c-bfce-98b74f87c9a8; _ZB_STATIC_1196806_TS=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:32 GMT
Content-Type: font/ttf
Content-Length: 52269
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:44 GMT
ETag: "86cbf50e12da0b519ced148acd8ba2b4"
x-amz-request-id: tx0000000000000000018d2-005ea35a17-10e20e2-las
X-Storage-Bucket: z7118
X-Storage-Object: 7118fcc9995d78a79c6a13eca290b043acd29399680aae376df5e95bc537fbd3
X-Host: blu27.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.gstatic.com/recaptcha/releases/mBwkfBPLFWI0ygbsp8eJNMkw/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/mBwkfBPLFWI0ygbsp8eJNMkw/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (613)
Size 158 kB (157730 bytes)
Hash d27f59fd0d124cb313fe64dd5ba8b26c
05da0ecd3970a5a568305a51f1e38945cca7ab39
09b3f5846ef9e14fd2fb99c280cee6a25fc4c7c96e050e70cc754a96625de485
GET /recaptcha/releases/mBwkfBPLFWI0ygbsp8eJNMkw/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157730
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 16:27:28 GMT
expires: Tue, 29 Aug 2023 16:27:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Aug 2022 04:01:21 GMT
content-type: text/javascript
age: 368765
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ssl.google-analytics.com/ga.js
216.58.207.200200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 216.58.207.200:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Fri, 02 Sep 2022 22:17:11 GMT
expires: Sat, 03 Sep 2022 00:17:11 GMT
cache-control: public, max-age=7200
age: 2182
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b69e4ee589f24deef7c8a3004daae9d1
e96ab184083a5084569b86b8846a6fa0c3b6af9a
7560417294eeb0f5c955d68bcc9b9eae40d69d1ff4b717a115ca1c614b1f4a17
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/favicon.ico
199.34.228.73200 OK 4.3 kB URL HTTP/1.1 www.realhopeoswego.org/favicon.ico
IP 199.34.228.73:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
GET /favicon.ico HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=c5ec11d2-7ae5-4777-8b2a-dec909c38919.1662159210.1.1662159210.1662159210.5972d14a-eec0-446c-bfce-98b74f87c9a8; _ZB_STATIC_1196806_TS=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 22:53:33 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000001b53b91-00628478b7-b9fbc29-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: grn127.sf2p.intern.weebly.net
Accept-Ranges: bytes
static.zbcdn.net/5/6/56f7a92aa06f86a27d18b57576df1d19/data.js?1661403139107
104.26.13.36200 OK 46 kB URL HTTP/2 static.zbcdn.net/5/6/56f7a92aa06f86a27d18b57576df1d19/data.js?1661403139107
IP 104.26.13.36:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash aaeed2074c2b2728a484e67332f82fd1
2c5bdadb51dfcfe60aba654c0416c3fed64ce569
444c1b5976474777d096433371d6ed2921ca771a360e9ca2b52da1a8afe5fabb
GET /5/6/56f7a92aa06f86a27d18b57576df1d19/data.js?1661403139107 HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:32 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 Aug 2022 05:52:16 GMT
vary: Accept-Encoding
etag: W/"63070e10-46376"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JozY2mpjqlP1uJHQadezvXyTxXqy0b6MFnWkerfwcyhBjFG%2BlvqGcYMI02O%2Fc%2BHW8909fSL%2Fy5Rec90n8ErPLFEVubOmfrhYvf5pLmOtu94pk6S2N6k4lwzNPsFpD8n5v7k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7449d2822b89b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zbcdn.net/__jzwdjq/asset/font/Zotabox3/ztb3.woff
104.26.13.36200 OK 43 kB URL HTTP/2 static.zbcdn.net/__jzwdjq/asset/font/Zotabox3/ztb3.woff
IP 104.26.13.36:0
File type Web Open Font Format, TrueType, length 42552, version 1.0\012- data
Hash 8fc96ab697fe06015e3e0ff21e17552f
8753f45c0152e4c72206a6b11e2c193539ec0091
a663045428dde255621d1cb17237dab68c89d45624bb0e6fa96a0b9a65921004
GET /__jzwdjq/asset/font/Zotabox3/ztb3.woff HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:33 GMT
content-type: application/font-woff
content-length: 42552
last-modified: Thu, 25 Aug 2022 02:24:21 GMT
etag: "6306dd55-a638"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Clq0hXqTux3WFX0SY0ALMaA7rR0Yc0wnBG29Hy1kkbmSdMgdjC%2Fesdu5GcUKzXCRiKA1AuJoBBkJSEcIBLOatGS16AW%2BRUQjXjXgnwRlUoOL25rLKOKJGzC59HC6BbOgvzQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7449d2893a8eb506-OSL
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/jquery@1.11.2/dist/jquery.min.js
151.101.85.229200 OK 33 kB URL HTTP/2 cdn.jsdelivr.net/npm/jquery@1.11.2/dist/jquery.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (32047)
Hash 63e182df0883a4702e8db066451bdba0
993f0816fd2c8286c0f59df00e2697d6f7ad25cb
b9c375a13d4fa1e14ba88460ddb93ac9d380e77965cceb203145127f6ea82961
GET /npm/jquery@1.11.2/dist/jquery.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.11.2
x-jsd-version-type: version
etag: W/"176de-sz7jtCuYju+dTWJJW25U4j3WQv0"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 02 Sep 2022 22:53:34 GMT
age: 5174869
x-served-by: cache-fra19169-FRA, cache-bma1633-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 33348
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 9fb9b899692083ee410c29dcc9b5b3a0
ea62247c662baecc18b1902568c7617cc5ef6cd1
56905e083e78b3a365aa552259fbab7378b5997787267f5b9110b5c3c2897461
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 22:53:34 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "3AFBBFC57E7789C922AF40DFBAA8FBEF8FA5C603"
Expires: Sat, 03 Sep 2022 10:00:00 GMT
Last-Modified: Fri, 02 Sep 2022 22:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 784
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7449d28fdf820b4d-OSL
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=14579ba48d
104.18.22.52200 OK 54 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=14579ba48d
IP 104.18.22.52:0
File type ASCII text, with very long lines (65397)
Hash dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
GET /releases/v5.15.4/css/pro.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:34 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 7603294
accept-ranges: bytes
server: cloudflare
cf-ray: 7449d2906b4a0b3d-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d
104.18.22.52200 OK 4.2 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d
IP 104.18.22.52:0
File type ASCII text, with very long lines (26366)
Hash 7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:34 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 7605900
accept-ranges: bytes
server: cloudflare
cf-ray: 7449d2906b4d0b3d-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
104.18.22.52200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
IP 104.18.22.52:0
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:34 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 29732259
accept-ranges: bytes
server: cloudflare
cf-ray: 7449d2907b530b3d-OSL
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-1184.min.js
151.101.86.137200 OK 11 kB URL HTTP/2 js-agent.newrelic.com/nr-1184.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (27995), with no line terminators
Hash 43e0aec0456ae54841a52fe989abb1ec
d9e080d86beada72e9e42092bede868db3d4aee4
9d7ecd792af230cea192e0786491921415d809686321da7414b3df85d875de07
GET /nr-1184.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vlrWWMMcD6PaK/7pcEzhUYxgoEeM4G4LZ2WMo+rqGou4ZJrl4nmrnnynZYC7VcboXQFypj4DwM4=
x-amz-request-id: NH2XE4MW0QPBT68H
last-modified: Mon, 28 Sep 2020 16:34:45 GMT
etag: "3d7f312be60d08a2568e311e4762f3af"
x-amz-version-id: null
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 02 Sep 2022 22:53:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1647-BMA
x-cache: HIT
x-cache-hits: 9
x-timer: S1662159215.717985,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 10624
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9665d92cfb2f9db5f7032ed692dff0e0
2ca6220de116f04429a7ce3f3c8f95cae61db137
5cc77ac9117df4aa52cc268287bf82f9dde172f1bcd7f640d3f0ef04a5ed07c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2
142.250.74.163200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7664, version 1.0\012- data
Hash ddb86a7e867f626554dab8539dcc5a3f
063a49f80334a98eed3aa66c60700f83feae7e4f
96bf4d70d0fcf69ce33ed735e720a716dab9a1232995a24882ec242323db467b
GET /s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 22:48:44 GMT
expires: Tue, 29 Aug 2023 22:48:44 GMT
cache-control: public, max-age=31536000
age: 345890
last-modified: Mon, 09 May 2022 18:44:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
142.250.74.163200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:39 GMT
expires: Tue, 29 Aug 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 359995
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
142.250.74.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11016, version 1.0\012- data
Hash 15fa3062f8929bd3b05fdca5259db412
6ff06a34f68ad0324ddec1bbe4d453c959178b36
5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479
GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://public.powrcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 16:44:00 GMT
expires: Fri, 01 Sep 2023 16:44:00 GMT
cache-control: public, max-age=31536000
age: 108574
last-modified: Wed, 24 Jul 2019 01:18:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 184766
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 3b1823dfa363e4571dd0dc243570b769
d9c821c489a95e1a1adbe0d01f96fb7751183394
61518ae6fce17c749d3e9502fabb93282e2d211cdadee0484b524d3bc0c30e04
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 22:53:35 GMT
Last-Modified: Fri, 02 Sep 2022 21:29:11 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mL2pBbaaBbJ6wPhEvD3f0DO8UgnzKe5gCDxYeHQN5sNvet4mPH0Oyg==
Age: 5064
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 3b1823dfa363e4571dd0dc243570b769
d9c821c489a95e1a1adbe0d01f96fb7751183394
61518ae6fce17c749d3e9502fabb93282e2d211cdadee0484b524d3bc0c30e04
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 22:53:35 GMT
Last-Modified: Fri, 02 Sep 2022 21:13:36 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BhPWmLnSuWJ8iSYzQ1kZPmrsrc9_CDVMi6gFk5yb3mQskwKf6qSiYA==
Age: 5999
bam.nr-data.net/1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1461&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=748&fe=1210&dc=1108&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1662159211662,%22n%22:0,%22f%22:1,%22dn%22:1,%22dne%22:1,%22c%22:1,%22s%22:1,%22ce%22:1,%22rq%22:11,%22rp%22:506,%22rpe%22:509,%22dl%22:531,%22di%22:1072,%22ds%22:1080,%22de%22:1109,%22dc%22:1209,%22l%22:1209,%22le%22:1212%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
162.247.241.14200 OK 73 B URL HTTP/1.1 bam.nr-data.net/1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1461&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=748&fe=1210&dc=1108&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1662159211662,%22n%22:0,%22f%22:1,%22dn%22:1,%22dne%22:1,%22c%22:1,%22s%22:1,%22ce%22:1,%22rq%22:11,%22rp%22:506,%22rpe%22:509,%22dl%22:531,%22di%22:1072,%22ds%22:1080,%22de%22:1109,%22dc%22:1209,%22l%22:1209,%22le%22:1212%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash 516a128bb6000ca8154792678f4333fb
41d0257bea96afd36c6f3e40fcfdc9ca247f8e01
9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10
GET /1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1461&ck=1&ref=https://www.powr.io/plugins/social-feed/cached_view&be=748&fe=1210&dc=1108&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1662159211662,%22n%22:0,%22f%22:1,%22dn%22:1,%22dne%22:1,%22c%22:1,%22s%22:1,%22ce%22:1,%22rq%22:11,%22rp%22:506,%22rpe%22:509,%22dl%22:531,%22di%22:1072,%22ds%22:1080,%22de%22:1109,%22dc%22:1209,%22l%22:1209,%22le%22:1212%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 22:53:35 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7449d2963c860b4d-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=79cf49c40267bb99; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
23.22.52.7204 No Content 2.3 kB URL HTTP/1.1 powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
IP 23.22.52.7:0
Hash dd382f429999a8ad2cb010372ad74a75
a9faa737f58fa0ff60b9b5a3f478fc15969f6325
1b1b52a069a0719260cb62f1eca0d4809fb6553371673f27d0a3ad0d54d08ebb
OPTIONS /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400 HTTP/1.1
Host: powr-outlet-v2.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-csrf-token
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: Cowboy
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin, Access-Control-Request-Headers
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Headers: x-csrf-token
Date: Fri, 02 Sep 2022 22:53:35 GMT
Via: 1.1 vegur
kit.fontawesome.com/14579ba48d.js
104.18.22.52200 OK 19 kB URL HTTP/2 kit.fontawesome.com/14579ba48d.js
IP 104.18.22.52:0
Hash cc48255e751ea2809279c12c910b1922
7c803234354bbd79dfa3afa42b6fe57b017b33a9
55f3b6d916e8db2e56cc55e846de125c909bb362ee1627e87d0fafab0ef0583e
GET /14579ba48d.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:34 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fuu_NKRKzsFcWtfaTAAi
cf-cache-status: HIT
age: 16
server: cloudflare
cf-ray: 7449d28f7a58b4f4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 19 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 6e265c3189fd2f27054e9ee0384a91da
be737faa88144db56a0ed4d67212942e8e9ae392
6ce076ef73e93db9368a1da084a396c2b35510ce9fc3c901dcf6232ee72ff7b4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 22:53:35 GMT
Last-Modified: Fri, 02 Sep 2022 21:23:55 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yP3b296z3wEu16eXOIDqycznHctzU-vDXCR0zUX32TKcDxWIeYGzeQ==
Age: 5380
powr-counter.herokuapp.com/18118676
54.224.34.30200 OK 0 B URL HTTP/1.1 powr-counter.herokuapp.com/18118676
IP 54.224.34.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /18118676 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Date: Fri, 02 Sep 2022 22:53:35 GMT
Connection: keep-alive
Content-Type: text/plain
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Transfer-Encoding: chunked
Via: 1.1 vegur
powr-counter.herokuapp.com/18118676
54.224.34.30200 OK 1 B URL HTTP/1.1 powr-counter.herokuapp.com/18118676
IP 54.224.34.30:0
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
POST /18118676 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 606
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Date: Fri, 02 Sep 2022 22:53:36 GMT
Connection: keep-alive
Content-Type: text/plain; charset=utf-8
Etag: W/"36a9e7f1c95b82ffb99743e0c5c4ce95"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: aa7733dd-1c58-4ea7-9d00-c90a2fb0d9ff
X-Runtime: 0.055914
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Vary: Origin
Transfer-Encoding: chunked
Via: 1.1 vegur
powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
23.22.52.7200 OK 117 kB URL HTTP/1.1 powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
IP 23.22.52.7:0
File type Unicode text, UTF-8 text, with very long lines (65399), with no line terminators
Size 117 kB (116580 bytes)
Hash e0bfdd692d07872f29b426f8c1aed1ff
ffdf652640675175d6bcd7f3bab5087002342357
e40db6f36bf50db8c6ddac3eb69143a5bfb13e0e8022f7a6c29060388720300b
GET /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400 HTTP/1.1
Host: powr-outlet-v2.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: b3O3iDxDcyOqI38vHFJNcUuCAOGtZ3wAjUEkJzzjQIJvoHD5uE0QaSuDoXkqwrD2rnTWo4DEJ_0mt80bcaw66A
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin
Content-Type: application/json; charset=utf-8
Cache-Control: public, max-age=3600
Date: Fri, 02 Sep 2022 22:53:36 GMT
Content-Length: 116580
Via: 1.1 vegur
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b1ad004f11b9c337660dfc7b6a5091de
5e017d69c3549cd9d9b33d11486989bec8500b5a
6dfad0eaa16c37e2c7c9264636adcf2b3eed1577d44df08c388a983b810121b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3647
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:37 GMT
Last-Modified: Fri, 02 Sep 2022 21:52:50 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b1ad004f11b9c337660dfc7b6a5091de
5e017d69c3549cd9d9b33d11486989bec8500b5a
6dfad0eaa16c37e2c7c9264636adcf2b3eed1577d44df08c388a983b810121b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3647
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 22:53:37 GMT
Last-Modified: Fri, 02 Sep 2022 21:52:50 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
scontent-iad3-1.xx.fbcdn.net/v/t15.5256-10/296332917_785189056247504_6263630028841647540_n.jpg?_nc_cat=111&ccb=1-7&_nc_sid=ad6a45&_nc_ohc=JZWNMtFef5AAX_bcb3p&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT_wxcwyTxJasEJHCaOM7KWJQT48TMb5iG9ZWWQmalI4bQ&oe=63173A6D
31.13.66.19200 OK 124 kB URL HTTP/2 scontent-iad3-1.xx.fbcdn.net/v/t15.5256-10/296332917_785189056247504_6263630028841647540_n.jpg?_nc_cat=111&ccb=1-7&_nc_sid=ad6a45&_nc_ohc=JZWNMtFef5AAX_bcb3p&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT_wxcwyTxJasEJHCaOM7KWJQT48TMb5iG9ZWWQmalI4bQ&oe=63173A6D
IP 31.13.66.19:0
File type JPEG image data, baseline, precision 8, 1280x720, components 3\012- data
Size 124 kB (124092 bytes)
Hash 1875d3a2618ffc0c43d2d72eba91ee03
fd0efe56bf7c6b6bb7b79bf9b3dd5e06f0af48b6
98624e9767ecf202856964a3f776cb84507deb8d5dbd6896945e502666ff91fb
GET /v/t15.5256-10/296332917_785189056247504_6263630028841647540_n.jpg?_nc_cat=111&ccb=1-7&_nc_sid=ad6a45&_nc_ohc=JZWNMtFef5AAX_bcb3p&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT_wxcwyTxJasEJHCaOM7KWJQT48TMb5iG9ZWWQmalI4bQ&oe=63173A6D HTTP/1.1
Host: scontent-iad3-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sun, 31 Jul 2022 15:23:19 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 264808349
x-needle-checksum: 2088968241
content-digest: adler32=2088968241
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 124092
x-fb-trip-id: 1814657579
date: Fri, 02 Sep 2022 22:53:37 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-iad3-1.xx.fbcdn.net/v/t39.30808-6/294401708_10159136840413318_7311807600674667256_n.jpg?stp=dst-jpg_p720x720&_nc_cat=106&ccb=1-7&_nc_sid=8024bb&_nc_ohc=L7P7RrQQfa8AX93MF8D&_nc_oc=AQnDdKDetvCJ5kDGOo5mO5VevNbXayntGUqOlckq4ko1VZu5ASKCBUL8OcrLyS7qAfQ&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT9I5g8vW-NovmZGX5W6K1MgOanedlmVZOapj5qkq4WpYA&oe=6316A03B
31.13.66.19200 OK 48 kB URL HTTP/2 scontent-iad3-1.xx.fbcdn.net/v/t39.30808-6/294401708_10159136840413318_7311807600674667256_n.jpg?stp=dst-jpg_p720x720&_nc_cat=106&ccb=1-7&_nc_sid=8024bb&_nc_ohc=L7P7RrQQfa8AX93MF8D&_nc_oc=AQnDdKDetvCJ5kDGOo5mO5VevNbXayntGUqOlckq4ko1VZu5ASKCBUL8OcrLyS7qAfQ&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT9I5g8vW-NovmZGX5W6K1MgOanedlmVZOapj5qkq4WpYA&oe=6316A03B
IP 31.13.66.19:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x720, components 3\012- data
Hash cbf539a447ce8e6758cd653d5173a07e
91ce2487f890b719dd7013acba90e45892470ed1
28b058d98ab853ff4db599ad36b549c8f47a2c4cce428090688f840313bad073
GET /v/t39.30808-6/294401708_10159136840413318_7311807600674667256_n.jpg?stp=dst-jpg_p720x720&_nc_cat=106&ccb=1-7&_nc_sid=8024bb&_nc_ohc=L7P7RrQQfa8AX93MF8D&_nc_oc=AQnDdKDetvCJ5kDGOo5mO5VevNbXayntGUqOlckq4ko1VZu5ASKCBUL8OcrLyS7qAfQ&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT9I5g8vW-NovmZGX5W6K1MgOanedlmVZOapj5qkq4WpYA&oe=6316A03B HTTP/1.1
Host: scontent-iad3-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Thu, 21 Jul 2022 18:58:59 GMT
x-haystack-needlechecksum: 253038651
x-needle-checksum: 3917649524
content-type: image/jpeg
content-digest: adler32=4284391850
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 48524
x-fb-trip-id: 1814657579
date: Fri, 02 Sep 2022 22:53:37 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:400,700&subset=latin,latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,700&subset=latin,latin-ext
IP 142.250.74.10:0
GET /css?family=Montserrat:400,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 22:53:31 GMT
date: Fri, 02 Sep 2022 22:53:31 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.zotabox.com/5/6/56f7a92aa06f86a27d18b57576df1d19/widgets.js
104.22.54.216200 OK 0 B URL HTTP/2 static.zotabox.com/5/6/56f7a92aa06f86a27d18b57576df1d19/widgets.js
IP 104.22.54.216:0
GET /5/6/56f7a92aa06f86a27d18b57576df1d19/widgets.js HTTP/1.1
Host: static.zotabox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:31 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 Aug 2022 04:52:19 GMT
vary: Accept-Encoding
etag: W/"63070003-13913"
expires: Fri, 02 Sep 2022 23:53:31 GMT
cache-control: max-age=3600, public, max-age=3600
access-control-allow-origin: *
access-control-allow-methods: GET, POST
content-encoding: gzip
z-server: mariadb
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7449d27e2986b4fa-OSL
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css
104.21.26.9200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css
IP 104.21.26.9:0
GET /latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:33 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=286497
etag: W/"adf889ed0314b585cb0181bf734134ba"
last-modified: Thu, 01 Sep 2022 03:58:42 GMT
x-amz-id-2: CQ44CkjCnIA9hVvcbwpKQKYcXZG+YV6uIHT47jHCVJyl5OTdug0iWX8uR16276E6zu0pfVDJwHM=
x-amz-request-id: 0BYA8J3JTD59CAPP
x-amz-version-id: a4OJq3ynV6FLrxmwkJwvDSBlcmXcuHJO
cache-control: max-age=2073600
cf-cache-status: HIT
age: 2503
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bzTlaG5P5nnYd4PVe6%2B2jSFLmiCTDgXMOltWl9Xs8be83b8F%2Fwp5w6Xk0XxlpL4kkLKE2Q%2BxvaY1p9L8CgnoOKIQyTC%2B8J7TfWPao7Zf7v8VggAY2l8BXnEJcCTkoYEfB4LZDxE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7449d28f69b30b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.powr.io/plugins/social-feed/view.json?powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&external_type=weebly-integrated
104.22.50.245200 OK 0 B URL HTTP/2 www.powr.io/plugins/social-feed/view.json?powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&external_type=weebly-integrated
IP 104.22.50.245:0
GET /plugins/social-feed/view.json?powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&external_type=weebly-integrated HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: b3O3iDxDcyOqI38vHFJNcUuCAOGtZ3wAjUEkJzzjQIJvoHD5uE0QaSuDoXkqwrD2rnTWo4DEJ_0mt80bcaw66A
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F
Cookie: POWR_PRODUCTION=7Cu5FTF6WkLy1qbPc7BuqK1DX7RcaIzYJClnMC6Ct0pmxr%2FQUzgBhGlAeS1qf3QCyoV4U3qm31a5jj4Dl31SyEJx4xaPHFCxCz7q0j7gM8DvndiiRyZRWOy8yQ64tZ1sgQCp4TbY0R25OeF94J7zlyZiQlRoL%2FvpxQ%2BPh9u1V0e8nuwDXYLJ%2Blhb%2Bkl8WUllTDgPGtaT1Eju5JcRSP8sU61r0iNAZI%2BTd80K3ZGdcokpfWrKQf96RNI88pd62nSbHpeBHXNSbcgk6RZ4krKFDXNA%2BcqkiBAXtQMcKUh438v%2BG4SCMEE8lMREFp6kPD0MnG%2BoSaRCmIVytfoepuOkBinTFwHXDNSI%2Fo0lVkoHYz2V0EA2mSIEXWTTn7plRUcHiiFFlTQoZo01Vo2KUIvy%2FsFP4JI83gRK600aa4hsrIS4sKnpBFkcA7YuG%2BFvl7zHW%2Fb8oHAJc5IjzvfnZqBdw3QGr61RpNRoDUnZpEHCPGwALMoMyAif0%2F7BinecejIrgQxm1Ea9PEeQUtzSDF9DZvGl4aTOWLe8CPdJe0qVIVAQdLm80JHfhFovuogbBuwWotPcDP5JaisWyTsc4RpFyqIBV%2BcJOnE2Jot7rJKJ6xgR1Zl%2FN2VhfEMDcFiN4PFPU0LO73QXdQhTtVFFkDaU52%2FXojaMORQCIv38z4VyLYkGEYZNZ143yDc1hGmTaplPIpQ%2B%2BrQ%2FE%2FO8chw7aXKK8LnyL%2FzM2q9gLe8jpZIDRhTxLf3x7KGQ7mdACX7y9Av0T2R%2FJfoSMtXyrtf%2FjlFjDIOyOntrDgCKZk%2BpDvl85%2BvK2Zf2d31re2C%2Byu4DAqhoAJZ7Q4TF9KzMEr%2FRApkZDw5cNIpzXrq8jejJW2DCoyuEXB%2BNQB4guioYmS%2FCBk07IhKf0UHi3BS6chHuxNR3z9HIt0aboBW5bk2gv8iz%2BGtGNVYtO9F1qP5SfhhKmA0M%2F6UVoCHSJwXsR4cZ079284WKAt3m2FZyJUbDYVQWfA%3D%3D--mVYZbm99%2Fvo3kj8W--Gp1TPrJSTRvM05ILJ1Kx%2FQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:34 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-credentials: true
vary: Accept-Encoding
etag: W/"6642acfd8c41db1434a1639f6b6f3664"
cache-control: max-age=0, private, must-revalidate
set-cookie: src=https%3A%2F%2Fwww.powr.io%2Fplugins%2Fsocial-feed%2Fcached_view%3Fload%3Dsync%26index%3D0%26unique_label%3D%26powr_token%3Dweebly_924604842104570874%26user_label%3Dweebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97%26demo_mode%3Dfalse%26isCookieAllowed%3Dundefined%26external_type%3Dweebly-integrated%26template_powr_token%3D%26request_url%3Dhttps%253A%252F%252Fwww.realhopeoswego.org%252F; path=/; expires=Sun, 02 Oct 2022 22:53:34 GMT; SameSite=None
unique_id=91c47377_1662159214; path=/; SameSite=None
editables=; path=/; secure; SameSite=None
POWR_PRODUCTION=CAr4jchzv2JXS%2BAh0nKWnAFGKAQ%2BSKziKnVgJaY0urOJZXtJAatX8olh9snFLfXPz55WpdehL9lV5DjwTql%2F0OuU23UDJK4IeBPaGT2N7tcRZiZs44s2VAqI9h3OjD35cicebZmh92fESg0OntaIURB3XBee6P8HBlWU5JOPq62byYFRQjg80JnrhtdgSfoni0WVyFFQl6Qw3z2eM9qSPbkt%2FHZIlpKq7JAS8JKP87PWz5ARijCLvkg2rc4jAErzFz2YsgikB%2BCkEmhKSF4ufiV5Y0NMqjnbU3yu926n4FdH5VVmODJClgZpTdk7Vr68OB9gfxtZwdpa0iYKqqT8zZpkMruHKf16ZkSp00tMSh4KeWlEyq%2FF5N483IEK4t8dKLPgNqLX4iZOWu8fQa8AgV%2Fi0poVCOcdMchf%2Ba2K7t0UmXzmLkSI15SZqLdul1IEY5rLH0qyjkpJilBkwiGnuBXxtINcXmrYRoJEVLvDpnlAyL5yx5N%2FJUngEHpnbgmKMG55o%2BkcitTLxq4erpAgoyf80vTT0x5hpz7xGzgsq44HmwND54yFiTL7%2ByRh2Vll6dXUScQBuZcksX6EZP1bd84K7lNb%2FQ9GIl49J66l7R9cg4g1I9k9gjRVFda0ym6GHTycX2Yuxm0shAc5GwzT10qZMZzUgGbCtyVAFpRbiLCeBrm25uyDqIAfJlbBCrftDO8TM8GOeWOuR4J8948YsnEtRWP%2FO7ya%2Fw8VmBXQfthCGvZR920p2%2BOJVgVPyNsw0YGdGs9HEALPMn5WBIm9EC66cWm8H6Zf6P9v%2FD99tb2nTLiHBd4jwMLxCX7%2BDOJVTN2i7aeq1B%2FmL%2FoR6dY%2FWHfGA6uN10zRVY8tWTKbJRsb3zNirEUoi1en%2FSEHssXNQMZAqv3FiLx90%2BsKKo6QUfWypEX%2Fonca9E4ls%2BuAhS5PogFGbMp878%2BcaJI911Pv4hH%2FeFfvct%2BUQGkC5FSP7mU4I0NtMW9UqaexxIzCFg%3D%3D--iRJGj23DsUL09EJ5--kXr0Mr5MzhM6Tl79Qp03Rw%3D%3D; path=/; secure; HttpOnly; SameSite=None
x-request-id: 818d608e-a07d-4f1c-b2c2-23555ee16739
x-runtime: 0.113097
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7449d2928bc40b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1643323087&
151.101.85.46200 OK 0 B URL HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1643323087&
IP 151.101.85.46:0
GET /js/lang/en/stl.js?buildTime=1643323087& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 16:12:50 GMT
etag: "62fe6502-2c44e"
expires: Mon, 05 Sep 2022 12:37:43 GMT
cache-control: max-age=1209600
x-host: blu122.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Sep 2022 22:53:31 GMT
age: 987348
x-served-by: cache-sjc10061-SJC, cache-bma1650-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 5
x-timer: S1662159211.230412,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32802
X-Firefox-Spdy: h2
static.zbcdn.net/__kkafqfd/asset/script/qrcode.js
104.26.13.36200 OK 0 B URL HTTP/2 static.zbcdn.net/__kkafqfd/asset/script/qrcode.js
IP 104.26.13.36:0
GET /__kkafqfd/asset/script/qrcode.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:32 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 07:43:37 GMT
vary: Accept-Encoding
etag: W/"62ff3f29-4cb8"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 1837
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EIv2JDE4TGm%2Fn6G3QGRoFoEaIvyBGHymqkU9SK8YE8hE2WaCOvef6Dh%2Ba29XrbYfB%2BJ6mEBpvu%2FJ92bXr9mtwCAEPdUQ7x2M98vHOlaL8tZpaYUD5lw5m22lYkYzv%2Bs44WE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7449d287b94cb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.0.0/css/bootstrap.min.css
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.0.0/css/bootstrap.min.css
IP 104.18.11.207:0
GET /bootstrap/3.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:34 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:03:55 GMT
cdn-cachedat: 11/04/2021 22:40:16
cdn-edgestorageid: 755
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.0
cdn-requestid: a0669b23f8a3a4d2d54e12d18ef5c3e0
cdn-cache: HIT
cf-cache-status: HIT
age: 14377125
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7449d28f7a0cb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
public.powrcdn.com/fonts/gordita/gordita-regular-webfont-woff.woff
104.21.26.9200 OK 0 B URL HTTP/2 public.powrcdn.com/fonts/gordita/gordita-regular-webfont-woff.woff
IP 104.21.26.9:0
GET /fonts/gordita/gordita-regular-webfont-woff.woff HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:34 GMT
content-type: application/font-woff
x-amz-id-2: 95MUxLnCbIkss2kA/sLeKT8+0bdlFMCPvmC7RPdOn7SvMYvPB6nvjEu+0c5e3j5tF3BW5GIvYN4=
x-amz-request-id: MCMBQYEM5T8KRTGT
access-control-allow-origin: *
access-control-allow-methods: GET, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 31 May 2021 12:44:51 GMT
x-amz-version-id: hx7AXNg7K1e1RTazyN_0DpBGtio5OElw
etag: W/"951cf61fb8b08593af1d6466359e32fe"
cache-control: max-age=2073600
cf-cache-status: HIT
age: 2811
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2FP8H8DeXNoaQiv%2B2wwuJDg7hawzu40cjKbbq%2FAYf89nJyl2IgqrS5sw2lP2txYHN4o1e5DCCLYW4ASHX3IjhRV%2FK5Ifs92fb975E8uYNCxW6%2Bw6mZw78j4OgzATSE1b8X4oGbQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7449d28f7ef5b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css
104.21.26.9200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css
IP 104.21.26.9:0
GET /latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:33 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=97779
etag: W/"8569d08b93b65be6f73bca7e48e87a62"
last-modified: Thu, 01 Sep 2022 03:58:45 GMT
x-amz-id-2: yDCQICvlfw4STe+c4Sag4iLPKh3kOygEEUUGblnTNA+lORCIMMdsOiV8G7dkISpVntFmUJESm/o=
x-amz-request-id: JEXB42GMV33KW9BZ
x-amz-version-id: _R6iCM.mJZnl7dJcxLE_Si6lPTW3nGop
cache-control: max-age=2073600
cf-cache-status: HIT
age: 2810
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wYRxsIHqPV3tDzQz41c%2BvBdpm%2Fbyt7D2DtN8PRAHUrjPXhd%2BibmydUN%2BycgvE51jbGTllIwMJbTiAfJGyserio3CpRBIB2U06E7jNjUW%2FBaBb6usx%2BISDBU71%2FtXyWrnFpzPlxQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7449d28f49a40b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.zbcdn.net/__kkafqfd/social_tab/temp2.js
104.26.13.36200 OK 0 B URL HTTP/2 static.zbcdn.net/__kkafqfd/social_tab/temp2.js
IP 104.26.13.36:0
GET /__kkafqfd/social_tab/temp2.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:31 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 07:43:37 GMT
vary: Accept-Encoding
etag: W/"62ff3f29-3a5e9"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 1837
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OcKh2Q5oIhOuRdwblVkGGebQBMTWbVe41%2FGXYW68b750g20sgndYAqW6EKysV8POIJMXzwqZ3w8ak2p3Xn03vM6nVKN%2BUjXDIGLYokIlI76v%2Fakb7jQ39SSs7b0%2BTAu0E0g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7449d2822b8bb506-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps/socialFeed-67c470227dbe61560cc9.js
104.21.26.9200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps/socialFeed-67c470227dbe61560cc9.js
IP 104.21.26.9:0
GET /latest/assets/packs/apps/socialFeed-67c470227dbe61560cc9.js HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:34 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2755265
etag: W/"1cf43ddc786984d12d0cdc7c0beb8dd9"
last-modified: Thu, 01 Sep 2022 03:58:42 GMT
x-amz-id-2: fV70cmMYnhQBYgaaXd+7k39N56Bv+h8o0UBCT2jswZ7byORCCd20td9IBi0zWe8XVLzRUYk3aCQ=
x-amz-request-id: 0BY3PMD5027CE95D
x-amz-version-id: xUDqJxULRgkqM.xRr1aab_x7lUngd15b
cache-control: max-age=2073600
cf-cache-status: HIT
age: 2503
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l3NRfxt51gu2xhM8RCCsW3lnnvD2MClS7%2Fd92mSXNMkKkLD0m%2FGfgmVjhTAwoYq7j%2FubENlLAEuHhcQ5BfSc0j35%2BlDmVDU0C0OcovemBDghWS130hcuLl9rlXmDXUd%2F0f5Yjjo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7449d28f79c50b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F
104.22.50.245200 OK 0 B URL HTTP/2 www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F
IP 104.22.50.245:0
GET /plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:33 GMT
content-type: text/html; charset=utf-8
cache-control: max-age=300, public
link: <https://public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps-view-2f72928b2e616c3dcc4b.js>; rel=preload; as=script; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/socialFeed-67c470227dbe61560cc9.js>; rel=preload; as=script; nopush
vary: Accept-Encoding
set-cookie: src=https%3A%2F%2Fwww.realhopeoswego.org%2F; path=/; expires=Sun, 02 Oct 2022 22:53:33 GMT; SameSite=None
unique_id=aaae358a_1662159213; path=/; SameSite=None
POWR_PRODUCTION=7Cu5FTF6WkLy1qbPc7BuqK1DX7RcaIzYJClnMC6Ct0pmxr%2FQUzgBhGlAeS1qf3QCyoV4U3qm31a5jj4Dl31SyEJx4xaPHFCxCz7q0j7gM8DvndiiRyZRWOy8yQ64tZ1sgQCp4TbY0R25OeF94J7zlyZiQlRoL%2FvpxQ%2BPh9u1V0e8nuwDXYLJ%2Blhb%2Bkl8WUllTDgPGtaT1Eju5JcRSP8sU61r0iNAZI%2BTd80K3ZGdcokpfWrKQf96RNI88pd62nSbHpeBHXNSbcgk6RZ4krKFDXNA%2BcqkiBAXtQMcKUh438v%2BG4SCMEE8lMREFp6kPD0MnG%2BoSaRCmIVytfoepuOkBinTFwHXDNSI%2Fo0lVkoHYz2V0EA2mSIEXWTTn7plRUcHiiFFlTQoZo01Vo2KUIvy%2FsFP4JI83gRK600aa4hsrIS4sKnpBFkcA7YuG%2BFvl7zHW%2Fb8oHAJc5IjzvfnZqBdw3QGr61RpNRoDUnZpEHCPGwALMoMyAif0%2F7BinecejIrgQxm1Ea9PEeQUtzSDF9DZvGl4aTOWLe8CPdJe0qVIVAQdLm80JHfhFovuogbBuwWotPcDP5JaisWyTsc4RpFyqIBV%2BcJOnE2Jot7rJKJ6xgR1Zl%2FN2VhfEMDcFiN4PFPU0LO73QXdQhTtVFFkDaU52%2FXojaMORQCIv38z4VyLYkGEYZNZ143yDc1hGmTaplPIpQ%2B%2BrQ%2FE%2FO8chw7aXKK8LnyL%2FzM2q9gLe8jpZIDRhTxLf3x7KGQ7mdACX7y9Av0T2R%2FJfoSMtXyrtf%2FjlFjDIOyOntrDgCKZk%2BpDvl85%2BvK2Zf2d31re2C%2Byu4DAqhoAJZ7Q4TF9KzMEr%2FRApkZDw5cNIpzXrq8jejJW2DCoyuEXB%2BNQB4guioYmS%2FCBk07IhKf0UHi3BS6chHuxNR3z9HIt0aboBW5bk2gv8iz%2BGtGNVYtO9F1qP5SfhhKmA0M%2F6UVoCHSJwXsR4cZ079284WKAt3m2FZyJUbDYVQWfA%3D%3D--mVYZbm99%2Fvo3kj8W--Gp1TPrJSTRvM05ILJ1Kx%2FQ%3D%3D; path=/; secure; HttpOnly; SameSite=None
x-request-id: 19f93816-e858-4045-9015-ba0d6c396911
x-runtime: 0.014910
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7449d28bae8c0b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps-view-2f72928b2e616c3dcc4b.js
104.21.26.9200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps-view-2f72928b2e616c3dcc4b.js
IP 104.21.26.9:0
GET /latest/assets/packs/apps-view-2f72928b2e616c3dcc4b.js HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:34 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1443415
etag: W/"e822d53e710d360db765376e1873e372"
last-modified: Thu, 01 Sep 2022 03:58:42 GMT
x-amz-id-2: FrjuXVwd1e+9GMZYRdksjgJsn2Et0uAGrKgKRbuNzwZ3DkbPkqSdE4XbJD0Bv334KB7ziN513fo=
x-amz-request-id: JEX3K38M52ZRN61H
x-amz-version-id: VfKcndbtSJ.nMTq7neTviROxPhDVKHZc
cache-control: max-age=2073600
cf-cache-status: HIT
age: 2811
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0FjfC1SeP56Lz6jOShjDu%2FU8oQCO5ZdgNmvrjvg8icQdN%2F%2F%2BntItZl0CgsWxyD764IxMhiYUw9D5M7O%2BctOdAi1JasdINhGI40Hfroy2LTWRxKCaizwRiC2IO0Y6fGDxczz77YM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7449d28f69bb0b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.zbcdn.net/__kkafqfd/asset/script/jquery.scrollbar.js
104.26.13.36200 OK 0 B URL HTTP/2 static.zbcdn.net/__kkafqfd/asset/script/jquery.scrollbar.js
IP 104.26.13.36:0
GET /__kkafqfd/asset/script/jquery.scrollbar.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 22:53:32 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 Aug 2022 02:24:21 GMT
vary: Accept-Encoding
etag: W/"6306dd55-2d3f"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 4781
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BssNYE1kKD94DaYnXlgps5M9z%2FzlrnQdjMwodOW%2BISuttTaD75oGNCUSbL4jsieWlVzDwGomrQv9Dl2UkWjmTsGgk%2FHUqm2eaTliQ4mKGMTvQIn92CCj%2FIufLGveCWG7xHY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7449d287b94ab506-OSL
content-encoding: br
X-Firefox-Spdy: h2