Report - cuofco.org

Report Overview

Submitted URL
cuofco.org
IP
23.185.0.2
ASN
#54113 FASTLY
Submitted
2022-11-15 18:34:59
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
sc-static.net	1183	2017-09-05T20:35:04Z	2023-03-09T18:13:08Z	328 B	13 kB	54.230.82.240
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-10T12:41:09Z	569 B	709 B	142.251.1.154
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-10T07:09:08Z	479 B	694 B	142.250.74.35
alpixtrack.com	12040	2020-07-30T23:01:22Z	2023-03-10T17:07:48Z	573 B	269 B	130.211.141.45
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	34.214.17.205
tr.snapchat.com	978	2017-04-26T08:25:03Z	2023-03-10T12:37:30Z	1.4 kB	1.8 kB	35.190.43.134
alb.reddit.com	1521	2017-06-15T07:33:56Z	2023-03-10T11:40:01Z	747 B	276 B	151.101.85.140
js.alpixtrack.com	16529	2020-09-25T21:24:23Z	2023-03-10T17:07:47Z	352 B	5.3 kB	130.211.141.45
platform.fonolo.com	661201	2019-09-03T19:31:49Z	2022-11-28T20:58:35Z	809 B	808 B	3.137.31.241
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	395 B	746 B	142.250.74.10
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	700 B	2.0 kB	54.230.245.118
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	1.4 kB	63 kB	216.58.207.195
status.geotrust.com	3662	2017-12-01T09:55:31Z	2023-03-10T05:15:32Z	343 B	763 B	93.184.220.29
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-10T05:15:22Z	338 B	29 kB	31.13.72.12
pubsub.salemove.com	15427	2018-06-15T13:12:49Z	2023-03-06T22:50:37Z	1.2 kB	231 B	44.193.189.104
cuofco.org	78350			342 B	574 B	23.185.0.2
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.4 kB	6.2 kB	23.36.76.226
www.cuofco.org	unknown	2013-09-27T23:59:50Z	2023-02-09T20:30:32Z	13 kB	1.0 MB	23.185.0.2
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.8 kB	71 kB	34.120.237.76
www.google.com	7	2015-05-10T13:11:19Z	2023-03-10T12:19:40Z	480 B	694 B	142.250.74.164
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	3.1 kB	7.1 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
libs.salemove.com	22528	2018-08-28T20:19:24Z	2023-03-10T06:40:24Z	1.5 kB	3.8 kB	54.230.111.12
js.poshdevelopment.com	130435	2019-05-13T22:42:01Z	2023-03-07T20:58:52Z	337 B	98 kB	54.230.111.78
www.redditstatic.com	1440	2012-06-30T14:33:28Z	2023-03-10T11:40:01Z	333 B	8.5 kB	151.101.85.140
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-10T13:35:34Z	1.1 kB	21 kB	142.250.74.174
bam.nr-data.net	630	2015-02-10T01:06:27Z	2023-03-10T09:26:43Z	883 B	603 B	162.247.241.14
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	3.8 kB	7.7 kB	142.250.74.35
api.glia.com	30061	2020-06-03T03:36:19Z	2023-03-06T22:50:36Z	816 B	27 kB	54.230.111.10
static.addtoany.com	4091	2012-05-21T14:58:18Z	2023-03-10T09:37:19Z	332 B	587 B	104.22.71.197
js-agent.newrelic.com	378	2018-06-22T06:15:37Z	2023-03-10T05:27:57Z	336 B	15 kB	151.101.86.137
client-logger.salemove.com	15340	2017-05-15T14:35:18Z	2023-03-06T22:50:40Z	418 B	301 B	54.167.188.17
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	346 B	68 kB	142.250.74.168
api.salemove.com	18122	2014-11-30T05:43:38Z	2023-03-06T22:50:38Z	449 B	11 kB	54.230.111.22

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (33)

	URL	Size	First Seen	Last Seen
	www.cuofco.org/sites/default/files/google_tag/primary/google_tag.script.js?rle9o8	348 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/sites/default/files/google_tag/primary/google_tag.script.js?rle9o8 IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 24089d13e568dff997e0119d6f88185e 3f24e8b568ffe872aaad945c547a9d8313d8677a 559423c599dc281f074626811ef26de88962951b41024f129d2da4d216da72ef Loading...

	www.googletagmanager.com/gtm.js?id=GTM-M4MHC6S	195 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-M4MHC6S IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:29:56 Last Seen2023-03-11 12:29:56 Times Seen1 Hash afb780946f9b4022f241fa82e0cca8a4 1b219ee156ba918cbfec7974510dc3156e8e6952 a054d882d4080eb633448cd2dfcde21ddf338f1a14fff24e01cfcf314bc73310 Loading...

	platform.fonolo.com/v2/callback/CP0009fdcb5f4e548df585e7396ceb12b1/?c=fonolo_widget&u=https://www.cuofco.org/&s=&tz=0&input[name]=Test%20User&input[account]=12345&t=embedded	228 B	2023-03-11	2023-03-11
Pretty URL platform.fonolo.com/v2/callback/CP0009fdcb5f4e548df585e7396ceb12b1/?c=fonolo_widget&u=https://www.cuofco.org/&s=&tz=0&input[name]=Test%20User&input[account]=12345&t=embedded IP 3.137.31.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:29:56 Last Seen2023-03-11 12:29:56 Times Seen1 Hash afc199d279fcfa5a19f38e29560eef92 8fa4ca6a95415092c6ddfd99dbcc9ac8ae1de91c f16c95ee4d6d0711e1c1d52f37e83889e332810f11babf83b0648425bb6e8a6b Loading...

	www.cuofco.org/	10 kB	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 578b614364cd92dd401012456a89bc85 865293e10fb441adc26f25722b96a0e81e329a58 640972ca877b21926ea31b65bf4e764153df1be086118c076cbc39fcbc8cb849 Loading...

	www.cuofco.org/	498 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 0a2a9e26819344da8a29264228798c2d 87454d98be0e5156317948d41669d9421ae199b3 27d782fa7003841a09eb345c050ef50a12efd32a6a8f316610d1f248f9dcb9a3 Loading...

	api.glia.com/salemove_integration.js	9.0 kB	2023-03-08	2023-03-12
Pretty URL api.glia.com/salemove_integration.js IP 54.230.111.10 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:31:33 Last Seen2023-03-12 08:06:07 Times Seen1 Hash 71c1ae5ac8e04674a87cf3d08ead4abd 0d3f97d1668716ddff0ff10fa3357da0b7cef72a 190f5962271d2bd05a8ea691cbb66ff76b8b9519e6ef422c4bd0ed7c879b233f Loading...

	www.cuofco.org/	346 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:29:56 Last Seen2023-03-11 12:29:56 Times Seen1 Hash 5579913404a9a43ca0aa9fcc66f26abb 003a1e58cb0a4d8dc91f57fba51a41852678f4f4 8c25878e6f317757bbd2711c20509e88af7168081345fc1d6ab2a07d29869632 Loading...

	www.cuofco.org/	435 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 1abe672091afd539e15c715c436c40a4 4e325b9f37168b117d6ee6b38167a17cd14dde8c 7a26f85f5599538b8f84e21c5ebf95a01a1162667aaa411ce54d2a3cce512d5d Loading...

	www.cuofco.org/sites/default/files/js/js_fbQgiEDJsofKksuF7gxcK-LmzEWSDGgpQnzdg_6a5nc.js	2.1 kB	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/sites/default/files/js/js_fbQgiEDJsofKksuF7gxcK-LmzEWSDGgpQnzdg_6a5nc.js IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 84a80177aac8ce1ea0d6c221615605ef 775fafe423dd2fd91f880bc285e59f6d7c8012b3 7db4208840c9b287ca92cb85ee0c5c2be2e6cc45920c6829427cdd83fe9ae677 Loading...

	www.cuofco.org/sites/default/files/js/js_lOFzYsPtmBZVoJAzjXIULAG9phd5ZvD5_s0u7TkTN1w.js	106 kB	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/sites/default/files/js/js_lOFzYsPtmBZVoJAzjXIULAG9phd5ZvD5_s0u7TkTN1w.js IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 12:29:56 Times Seen1 Hash b019fbfa3547a77ddf084fd21ff474b9 3940c5fbd8149d4368f38cbb6863fe1a36f5f49a 94e17362c3ed981655a090338d72142c01bda6177966f0f9fecd2eed3913375c Loading...

	www.cuofco.org/sites/default/files/js/js_tTsM-zMos8XIhtwc3X4zmiV8v-08KB6uxB0ZSMWmBSg.js	126 kB	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/sites/default/files/js/js_tTsM-zMos8XIhtwc3X4zmiV8v-08KB6uxB0ZSMWmBSg.js IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:29:56 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 942978c5fc19a288464722f68e0e3550 06cd8b360fd63b1c0b12f1ac00f4ba1b735bec10 b53b0cfb3328b3c5c886dc1cdd7e339a257cbfed3c281eaec41d1948c5a60528 Loading...

	www.cuofco.org/	111 B	2023-03-07	2024-04-25
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:02 Last Seen2024-04-25 10:11:23 Times Seen473 Hash 4231b05de229152526005f65e4a09598 03cbe1a3cd9acbd1c9d05d75b84d17eeb8d65918 7b73ac4c7d0a21474adef7963b6089f500f114d819e1f4cfb91b0de66923ef25 Loading...

	connect.facebook.net/signals/config/1310725552451853?v=2.9.89&r=stable	300 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/signals/config/1310725552451853?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 531e8d77ead7224aed36900136652b71 b8c7e5cce10bb676e0b92dfa32fc24dc308676f1 68be17bbcb24f1f448440d72f73dfc02da96e01f8f59f6f8d4ce1bd314286c03 Loading...

	js-agent.newrelic.com/nr-1216.min.js	39 kB	2023-03-07	2023-12-02
Pretty URL js-agent.newrelic.com/nr-1216.min.js IP 151.101.86.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:59 Last Seen2023-12-02 09:02:29 Times Seen204 Hash 9f533d8cd24b2c5e3b4dc886ecbd43e8 4aaad79f222fbcf885679bb30ac0cb6c14ec06eb 6f973e7d75a7e6f6e59708f19631c8890034db5debb4d04f189deb53c114e708 Loading...

	platform.fonolo.com/v2	11 kB	2023-03-11	2023-03-11
Pretty URL platform.fonolo.com/v2 IP 3.137.31.241 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash afb2e4fb872f43363131a47198f52b60 4fabf4f868cbdb45976eca253c1a1ba3c54912c3 353741cc2c29f68c1df6291a75f2a20a55a16f35f75c299cfbd7d8330374a91d Loading...

	www.cuofco.org/	520 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 6f30337a035f6399c0016121d3f2bd9c 09a460c564e8ec85ab59e8721919ae4cdec44fe0 bcb1619a707f2e5fe4007544d1691119c96ba7f39357d83858fd404489148421 Loading...

	sc-static.net/scevent.min.js	28 kB	2023-03-10	2023-07-27
Pretty URL sc-static.net/scevent.min.js IP 54.230.82.240 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 19:48:57 Last Seen2023-07-27 21:36:27 Times Seen34 Hash 280c4812510c03fdfb8b97c63410979c ba12b78f3a4e2cc55ea8c954db329cb9c609e319 1076991f3e548c844051c4aaf033a77668e636282ca8b7aef054f01667866e32 Loading...

	libs.salemove.com/visitor-app.3a6885d2.min.js	808 kB	2023-03-11	2023-03-11
Pretty URL libs.salemove.com/visitor-app.3a6885d2.min.js IP 54.230.111.12 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:29:56 Last Seen2023-03-11 12:29:56 Times Seen1 Hash f4acd9f7222a6202ffdf4df2ef00ae8e b94f1997519089302ddb9a31cd72cfb42f811997 ed51dd94b7d63900ef3fe18d756228060ebafc440799a5e47fa7806c1bdcc73c Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-25
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-25 17:52:53 Times Seen1528 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	www.cuofco.org/sites/default/files/js/js_7HLXQ8i36ht8YRil25oWniakG9KJcpZ-pv1fh8sfrLk.js	7.5 kB	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/sites/default/files/js/js_7HLXQ8i36ht8YRil25oWniakG9KJcpZ-pv1fh8sfrLk.js IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 8758b2e6b6fa3461b6d5f2e36d8c70a0 cfd92d2d6bf0aa01de5689c0a3796dff905f518d ec72d743c8b7ea1b7c6118a5db9a169e26a41bd28972967ea6fd5f87cb1facb9 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 23:02:28 Times Seen37075483 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	static.addtoany.com/menu/page.js	3.0 kB	2023-03-10	2023-09-30
Pretty URL static.addtoany.com/menu/page.js IP 104.22.71.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:47:42 Last Seen2023-09-30 00:56:47 Times Seen5 Hash 55ebdd15c058123020e659e0fd68ee33 8b1f24c6c9e86fd4175e5a65d9c2e53aed396618 f73b286de67c4d1b452d1e95b2070c8d987d910332b1d830439b6952a781e70d Loading...

	bam.nr-data.net/1/NRJS-3105bae7edcf5b778ec?a=311710469&v=1216.487a282&to=ZF1RMEUADxAEBkNRVl0XcgdDCA4NSiFFTUlSVG8KWAUEPyYKWUxLXFRfAUU9LwwBAGFRXER7XApDEw4PCQBFFQdFUVYT&rst=2882&ck=1&ref=https://www.cuofco.org/&ap=925&be=520&fe=2772&dc=1194&perf=%7B%22timing%22:%7B%22of%22:1668537287000,%22n%22:0,%22f%22:302,%22dn%22:311,%22dne%22:436,%22c%22:436,%22s%22:447,%22ce%22:465,%22rq%22:465,%22rp%22:479,%22rpe%22:482,%22dl%22:503,%22di%22:1179,%22ds%22:1193,%22de%22:1297,%22dc%22:2771,%22l%22:2771,%22le%22:2774%7D,%22navigation%22:%7B%7D%7D&fcp=998&at=SBpSRg0aHB4%3D&jsonp=NREUM.setToken	49 B	2023-03-07	2023-07-30
Pretty URL bam.nr-data.net/1/NRJS-3105bae7edcf5b778ec?a=311710469&v=1216.487a282&to=ZF1RMEUADxAEBkNRVl0XcgdDCA4NSiFFTUlSVG8KWAUEPyYKWUxLXFRfAUU9LwwBAGFRXER7XApDEw4PCQBFFQdFUVYT&rst=2882&ck=1&ref=https://www.cuofco.org/&ap=925&be=520&fe=2772&dc=1194&perf=%7B%22timing%22:%7B%22of%22:1668537287000,%22n%22:0,%22f%22:302,%22dn%22:311,%22dne%22:436,%22c%22:436,%22s%22:447,%22ce%22:465,%22rq%22:465,%22rp%22:479,%22rpe%22:482,%22dl%22:503,%22di%22:1179,%22ds%22:1193,%22de%22:1297,%22dc%22:2771,%22l%22:2771,%22le%22:2774%7D,%22navigation%22:%7B%7D%7D&fcp=998&at=SBpSRg0aHB4%3D&jsonp=NREUM.setToken IP 162.247.241.14 ASN #23467 NEWRELIC-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:56 Last Seen2023-07-30 22:07:50 Times Seen563 Hash b8b9dc20ec73bc71d24c07ed557c27bf f27a0c9366eaafcf17b81cc50d32660637d0ee57 b91234b576455d66e12dd661a2539eb2418a831078ecef9ebc7f4bbd4e580d9c Loading...

	www.cuofco.org/	423 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash 289a8bc5c81d30b8552a806e9e5720d5 8a8aef9a05615ea85e911267b78019de87dc04dd 8e024ef89c1f07c0feadaeef8b21158a5579c01cdf0ce255ac3360d6acc65b08 Loading...

	libs.salemove.com/visitor/bootstrapper-073cb7c21.js	674 kB	2023-03-11	2023-03-11
Pretty URL libs.salemove.com/visitor/bootstrapper-073cb7c21.js IP 54.230.111.12 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:29:56 Last Seen2023-03-11 12:29:56 Times Seen1 Hash b1ebe1ffddfb1a0398489e9f7e94e553 c3035bc7d4665444aa9f72a151fb7620fc3a5496 a74098970e984e749d7706ebb27a12244110515469a9e4aff766fa24b3ecbeaf Loading...

	www.redditstatic.com/ads/pixel.js	25 kB	2023-03-08	2023-12-01
Pretty URL www.redditstatic.com/ads/pixel.js IP 151.101.85.140 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-12-01 19:12:11 Times Seen28 Hash c1c34430d39fb43c9612aebe7ab8a9db 4d7f5cb7b29685a3a5a51c140288465e9553a0a7 4b4e80032e1c164685d3ff6eb4c606785ebaebaa648d3984478b0cc8d114190b Loading...

	libs.salemove.com/visitor/webcomponents_es5-073cb7c21.js	936 B	2023-03-07	2024-04-24
Pretty URL libs.salemove.com/visitor/webcomponents_es5-073cb7c21.js IP 54.230.111.12 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12:12 Last Seen2024-04-24 00:18:14 Times Seen162 Hash f86098c5208655efb405300993461936 a0a5b6aea7bbb6a51940f8c874aee109477c7b56 832dbd199f70ade357e88a3f5d32920c8c63e69258dc173d3b261686320895db Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	www.cuofco.org/sites/default/files/js/js_k-O2P03ZL-0kx0yxpxTIZujVYSK_yHW93ugh6xzfbd4.js	74 kB	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/sites/default/files/js/js_k-O2P03ZL-0kx0yxpxTIZujVYSK_yHW93ugh6xzfbd4.js IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 12:29:56 Times Seen1 Hash e195395f0015de4807c1caebce0757c2 9812e6899cdb1b61693aa4b32c146e6a5d5a096e 93e3b63f4dd92fed24c74cb1a714c866e8d56122bfc875bddee821eb1cdf6dde Loading...

	static.addtoany.com/menu/modules/core.c4ad588e.js	72 kB	2023-03-10	2023-09-30
Pretty URL static.addtoany.com/menu/modules/core.c4ad588e.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:47:42 Last Seen2023-09-30 00:56:47 Times Seen6 Hash e3633b6a2cb3c50cfecb58ea642c847d 68cf90483e0cbd3e892e68ecd69dab556ca25cf8 a90d2b9a8ef6ca85a8d21190509cb54bade6eff7f48379eaa77980b9428fd5bb Loading...

	www.cuofco.org/	307 B	2023-03-11	2023-03-11
Pretty URL www.cuofco.org/ IP 23.185.0.2 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:08:51 Last Seen2023-03-11 22:02:36 Times Seen1 Hash b8f319ebfaac488058f2d60ef1947bd2 9609b0bcf90d1e4ae2f382ebfb20fe0c732913b8 20ffc86256469e3490c80e77cc5a0a3d41bdbf8f942093afed92cda5bbfc56f5 Loading...

	js.alpixtrack.com/alphpixel.js?cust=1453609-751-KUSA	4.9 kB	2023-03-07	2024-04-16
Pretty URL js.alpixtrack.com/alphpixel.js?cust=1453609-751-KUSA IP 130.211.141.45 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12:12 Last Seen2024-04-16 09:57:33 Times Seen76 Hash c8b925eed53ccf4d111fc3f73c73c1a2 b426b9d0ace2b45daee6c24ddc2599eaafa03ed3 26b1fa79351edf039f381c8d30f0d0861746042f076c8de57179d822b8d7eacd Loading...

	static.addtoany.com/menu/sm.23.html#type=core&event=load	615 B	2023-03-07	2023-03-26
Pretty URL static.addtoany.com/menu/sm.23.html#type=core&event=load IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:19 Last Seen2023-03-26 01:07:12 Times Seen2 Hash b78383014e25cac539cb1e9b0abd98b9 0ebdaa7673003db9c63de5b46fcb02dd8943a3e0 3f18e7672858e9f6c7ce394f9d26d558efcb8f2dd505881599933d37a87ff692 Loading...

HTTP Transactions (107)

	URL	IP	Response	Size
	cuofco.org/	23.185.0.2	301 Moved Permanently	0 B
URL HTTP/1.1 cuofco.org/ IP 23.185.0.2:0 ASN #54113 FASTLY File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Connection: keep-alive Content-Length: 0 Content-Type: text/html; charset=UTF-8 Location: https://www.cuofco.org/ Server: nginx X-Pantheon-Styx-Hostname: styx-fe2-b-7c467dd958-tdp22 X-Styx-Req-Id: 1420e173-64f7-11ed-9b6e-d6aa300066ad Cache-Control: public, max-age=86400 Date: Tue, 15 Nov 2022 18:34:47 GMT X-Served-By: cache-chi-kigq8000140-CHI, cache-bma1650-BMA X-Cache: HIT, MISS X-Cache-Hits: 16, 0 X-Timer: S1668537287.454006,VS0,VE104 Vary: Cookie, Cookie Age: 12500 Accept-Ranges: bytes Via: 1.1 varnish, 1.1 varnish

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7786cd9bd97e024b3a1d16215defaad2 786ddbb74b0b6bd9270622dbe0258d6caee407c1 9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0" Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7980 Expires: Tue, 15 Nov 2022 20:47:47 GMT Date: Tue, 15 Nov 2022 18:34:47 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 4fe5a11c3ca8a150aad830b739f24b58 898b730b1a66dd49c6f018333ba828410f63f347 2c3a2a8a3dfa29808bd550718025fdf355e4a88235cb50ae978abc00ee5fd23b HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5704 Cache-Control: max-age=149484 Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:47 GMT Etag: "63736a6b-1d7" Expires: Thu, 17 Nov 2022 12:06:11 GMT Last-Modified: Tue, 15 Nov 2022 10:31:07 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 471`

	firefox.settings.services.mozilla.com/v1/	34.102.187.140	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash d130218d0e2841f39c99610fe1a2ab90 29fbe1e177ee55c7a61ae0a206afff271cf5f945 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 15 Nov 2022 17:44:26 GMT cache-control: public,max-age=3600 content-type: application/json age: 3021 alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c88bc06741ab9fb81c2544acfcc34aa2 362cab19cff5aba27f472cc00071d5dfa38192e4 314ba27975f458e13917b2be91c9d5989a3e57c9e94b5a84dd52d0e21d27ae7f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F" Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7967 Expires: Tue, 15 Nov 2022 20:47:34 GMT Date: Tue, 15 Nov 2022 18:34:47 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: oYtezhZq25HrFcb2z6r/5y9R5rtMTY/xETPdq7dmVm7WpUXK1SUsQPJhdC10NNePSQ4BlbGQDu8= x-amz-request-id: CY949Q12HZN9ZTQF content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 15 Nov 2022 17:51:40 GMT age: 2587 last-modified: Fri, 30 Sep 2022 18:50:55 GMT etag: "67d5a988edcda47bc3b3b3f65d32b4b6" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 15 Nov 2022 18:34:47 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	www.cuofco.org/	23.185.0.2	200 OK	41 kB
URL HTTP/2 www.cuofco.org/ IP 23.185.0.2:0 ASN #54113 FASTLY File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10251) Size 41 kB (40923 bytes) Hash 2710190adf1c72562910effd7cc7817b 0824183d923a56e5d6182d9b45c64f76d085ae73 047c58d2b8f3ffc829145459e8f92ee2019df0374db90146e06938d0b8340e70 HTTP Headers `GET / HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK cache-control: max-age=2764800, public content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 etag: W/"1668529043" expires: Sun, 19 Nov 1978 05:00:00 GMT last-modified: Tue, 15 Nov 2022 16:17:23 GMT link: <https://www.cuofco.org/>; rel="canonical", <https://www.cuofco.org/>; rel="shortlink" permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-drupal-cache: MISS x-drupal-dynamic-cache: UNCACHEABLE x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-6rzjg x-styx-req-id: fcf7440e-6500-11ed-914d-963005217c21 x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Tue, 15 Nov 2022 18:34:47 GMT x-served-by: cache-chi-kigq8000025-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 98, 1 x-timer: S1668537288.865473,VS0,VE4 vary: Accept-Encoding, Cookie, Cookie, Cookie age: 8244 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 40923 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 2316d2d43aee9525cdb65b3eb2ff53a0 cad4229071cf919cb3471632ac4924cfd1a97431 99d5cce0549dbb29351735d3e15f9cde16b2ca18c57581c8110b2c54998fa28d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:48 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.cuofco.org/sites/default/files/css/css_2tDrDwuGOCSh0gBJSK7RAn-_BY6w1Wt2ihzpIL8G4Xk.css	23.185.0.2	200 OK	2.7 kB
URL HTTP/2 www.cuofco.org/sites/default/files/css/css_2tDrDwuGOCSh0gBJSK7RAn-_BY6w1Wt2ihzpIL8G4Xk.css IP 23.185.0.2:0 ASN #54113 FASTLY File type assembler source, ASCII text, with very long lines (1297) Size 2.7 kB (2686 bytes) Hash dd6fd196cfc187f6cae16e7f3cc1f885 4a1c9e50a20de60d2aafd9bef7607337e657df8e 9316943cfd3b761ab434c40134381a4bb3f2c2cfb51d38e8540b798793e856a9 HTTP Headers `GET /sites/default/files/css/css_2tDrDwuGOCSh0gBJSK7RAn-_BY6w1Wt2ihzpIL8G4Xk.css HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: text/css etag: W/"63644439-232e" expires: Wed, 08 Nov 2023 14:35:17 GMT last-modified: Thu, 03 Nov 2022 22:44:09 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-5f4bdb78d6-nhfvb x-styx-req-id: 661a892d-5ea9-11ed-8df2-0e683d78ebf6 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000145-CHI, cache-bma1621-BMA x-cache: HIT, MISS x-cache-hits: 2, 0 x-timer: S1668537288.018213,VS0,VE103 vary: Accept-Encoding age: 12858 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 2686 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/css/css_VJc0d_OV2KemVWVvixG1xi4wAX7AFM7NDURqyDkH640.css	23.185.0.2	200 OK	6.7 kB
URL HTTP/2 www.cuofco.org/sites/default/files/css/css_VJc0d_OV2KemVWVvixG1xi4wAX7AFM7NDURqyDkH640.css IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (14047) Size 6.7 kB (6725 bytes) Hash acf7d348e1a93cc13b03450c68ac4715 2ff708e3c442dbee840cfa500968c542ef2a1f66 665a4946cdbd7d0014f6d5c306a1cfcc65b1742fd218f65bbb6a67e8e4e88873 HTTP Headers `GET /sites/default/files/css/css_VJc0d_OV2KemVWVvixG1xi4wAX7AFM7NDURqyDkH640.css HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: text/css etag: W/"63644439-74c4" expires: Fri, 10 Nov 2023 10:52:35 GMT last-modified: Thu, 03 Nov 2022 22:44:09 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-58c69d767c-p68hd x-styx-req-id: 9e5939b4-601c-11ed-91a5-ded1d350bb20 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000174-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668537288.018217,VS0,VE103 vary: Accept-Encoding age: 12858 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 6725 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/google_tag/primary/google_tag.script.js?rle9o8	23.185.0.2	200 OK	283 B
URL HTTP/2 www.cuofco.org/sites/default/files/google_tag/primary/google_tag.script.js?rle9o8 IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (348), with no line terminators Size 283 B (283 bytes) Hash b1901a7d80d8a6609db0b941d7fe1bf6 ddd95cbf55f2d71fbe3b30d9a2e7e1e2f1bc7833 ad468d36570d6e8b1aba4d1eadccf60317864575c94dc66b9e055d4dadd10ae6 HTTP Headers `GET /sites/default/files/google_tag/primary/google_tag.script.js?rle9o8 HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"6373a97b-15c" expires: Thu, 16 Nov 2023 15:00:25 GMT last-modified: Tue, 15 Nov 2022 15:00:11 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-r6cxj x-styx-req-id: 3c58f64a-64f6-11ed-b9f4-0e42057539be date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000179-CHI, cache-bma1621-BMA x-cache: HIT, MISS x-cache-hits: 1, 0 x-timer: S1668537288.018252,VS0,VE106 vary: Accept-Encoding age: 12862 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 283 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/css/css_hyjKx2w1_4AYDLtpyFC2VtpBnlx8YkMuetIyMlURAO4.css	23.185.0.2	200 OK	11 kB
URL HTTP/2 www.cuofco.org/sites/default/files/css/css_hyjKx2w1_4AYDLtpyFC2VtpBnlx8YkMuetIyMlURAO4.css IP 23.185.0.2:0 ASN #54113 FASTLY File type assembler source, Unicode text, UTF-8 text, with very long lines (25350) Size 11 kB (10881 bytes) Hash 7522335f28de7a727f98de423b966158 9c26b032120f596dfccf0891f823f3708935fe6e da5a57103e0803c0958ff60696a9f68ae391aeda805e365ea4e2888479763c3a HTTP Headers `GET /sites/default/files/css/css_hyjKx2w1_4AYDLtpyFC2VtpBnlx8YkMuetIyMlURAO4.css HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: text/css etag: W/"6364443b-12d0a" expires: Sat, 04 Nov 2023 22:44:17 GMT last-modified: Thu, 03 Nov 2022 22:44:11 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-777f5c79d9-9gtmx x-styx-req-id: 0c4c108d-5bc9-11ed-a409-9a653ad35aa2 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000027-CHI, cache-bma1621-BMA x-cache: HIT, MISS x-cache-hits: 2, 0 x-timer: S1668537288.022092,VS0,VE103 vary: Accept-Encoding age: 12858 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 10881 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/css/css_nJh1pGM46_OTmBTmfxgMiYFXJWVYm0IMBuAh4uJjAlo.css	23.185.0.2	200 OK	23 kB
URL HTTP/2 www.cuofco.org/sites/default/files/css/css_nJh1pGM46_OTmBTmfxgMiYFXJWVYm0IMBuAh4uJjAlo.css IP 23.185.0.2:0 ASN #54113 FASTLY File type assembler source, Unicode text, UTF-8 text, with very long lines (51561) Size 23 kB (23366 bytes) Hash fb6945671ca2e485528d1cb538cff938 78e74d75423e77068d4be6c8b1964854c26a2969 5de59edad5ed5332f718a295200f93523076a9eb05aa162e4d32bf300ab8b8d6 HTTP Headers `GET /sites/default/files/css/css_nJh1pGM46_OTmBTmfxgMiYFXJWVYm0IMBuAh4uJjAlo.css HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: text/css etag: W/"6364443a-2313b" expires: Sat, 04 Nov 2023 22:44:17 GMT last-modified: Thu, 03 Nov 2022 22:44:10 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-64f84fb45c-8n887 x-styx-req-id: 0c4d0d86-5bc9-11ed-9360-0a1201bbc1bc date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-klot8100124-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668537288.021665,VS0,VE104 vary: Accept-Encoding age: 12863 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 23366 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/css/css_U2i0raCgV46jcvXxoGRlzeHsCjUH1wrJWQg-wyctksU.css	23.185.0.2	200 OK	2.9 kB
URL HTTP/2 www.cuofco.org/sites/default/files/css/css_U2i0raCgV46jcvXxoGRlzeHsCjUH1wrJWQg-wyctksU.css IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (1856) Size 2.9 kB (2866 bytes) Hash 61b8e4c26aff8d285ec404df381d5803 a2449b6e7acf588c394259dec6bbd153a9ede279 d7139d0e18927f736598e36d870e89cd934305d7ec90d1d370d1cbf23517c905 HTTP Headers `GET /sites/default/files/css/css_U2i0raCgV46jcvXxoGRlzeHsCjUH1wrJWQg-wyctksU.css HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: text/css etag: W/"6364443a-234d" expires: Thu, 09 Nov 2023 16:27:27 GMT last-modified: Thu, 03 Nov 2022 22:44:10 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-57469859c9-cjrfg x-styx-req-id: 3c27fa79-5f82-11ed-a4ae-2a842bba4b66 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000130-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668537288.018124,VS0,VE111 vary: Accept-Encoding age: 12858 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 2866 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/js/js_fbQgiEDJsofKksuF7gxcK-LmzEWSDGgpQnzdg_6a5nc.js	23.185.0.2	200 OK	932 B
URL HTTP/2 www.cuofco.org/sites/default/files/js/js_fbQgiEDJsofKksuF7gxcK-LmzEWSDGgpQnzdg_6a5nc.js IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (608) Size 932 B (932 bytes) Hash 963000222a1b2c690c2602ec31ca238c 086bdbc79d6abc0ee28718c5621692ce2c3359b3 deba41a7c76afcbdb0a73effd2632d0b2c461b5d7f584ba60ca6f3e7ff54cacc HTTP Headers `GET /sites/default/files/js/js_fbQgiEDJsofKksuF7gxcK-LmzEWSDGgpQnzdg_6a5nc.js HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"6364443e-84b" expires: Sat, 04 Nov 2023 22:44:17 GMT last-modified: Thu, 03 Nov 2022 22:44:14 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-64f84fb45c-kzxdq x-styx-req-id: 0c4bf5da-5bc9-11ed-9c25-5287c35236c2 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000055-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668537288.025776,VS0,VE104 vary: Accept-Encoding age: 2938 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 932 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/styles/icon/public/image/2020-07/footer-foundation.png?itok=X6z8qia2	23.185.0.2	200 OK	3.9 kB
URL HTTP/2 www.cuofco.org/sites/default/files/styles/icon/public/image/2020-07/footer-foundation.png?itok=X6z8qia2 IP 23.185.0.2:0 ASN #54113 FASTLY File type PNG image data, 41 x 56, 8-bit/color RGBA, non-interlaced\012- data Size 3.9 kB (3891 bytes) Hash 1656411d2862d9ba4308ded057b8b992 53921c87a72f276c8e5dc2a03d2e9a5eab8d61de b7b5ddb2db485919ae33058ba2b2858af0dd14e815491308933b0575c25999c6 HTTP Headers `GET /sites/default/files/styles/icon/public/image/2020-07/footer-foundation.png?itok=X6z8qia2 HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/png etag: "5fa2a6e1-f33" expires: Thu, 16 Nov 2023 10:39:08 GMT last-modified: Wed, 04 Nov 2020 13:04:33 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-6rzjg x-styx-req-id: bc407796-64d1-11ed-914d-963005217c21 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000120-CHI, cache-bma1621-BMA x-cache: HIT, MISS x-cache-hits: 5, 0 x-timer: S1668537288.028955,VS0,VE103 age: 12855 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 3891 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/styles/small_hq/public/image/2021-12/CUofCO-01.png?itok=OYRyswjZ	23.185.0.2	200 OK	74 kB
URL HTTP/2 www.cuofco.org/sites/default/files/styles/small_hq/public/image/2021-12/CUofCO-01.png?itok=OYRyswjZ IP 23.185.0.2:0 ASN #54113 FASTLY File type PNG image data, 640 x 445, 8-bit/color RGBA, non-interlaced\012- data Size 74 kB (74283 bytes) Hash a8ec3641536da30d0ddad9474aaf2b46 bf78fbb88a4af3d5793d3e205b90d2682e43333a d31e355c54aa8ecd80d1ad1a2b400c329e13872b4bdff3ee6e8691fb524573c7 HTTP Headers `GET /sites/default/files/styles/small_hq/public/image/2021-12/CUofCO-01.png?itok=OYRyswjZ HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/png etag: "61a8ed98-1222b" expires: Thu, 09 Nov 2023 14:25:36 GMT last-modified: Thu, 02 Dec 2021 16:00:24 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-57469859c9-82wsv x-styx-req-id: 367098b8-5f71-11ed-adf5-eaf6e84fad32 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000063-CHI, cache-bma1621-BMA x-cache: HIT, MISS x-cache-hits: 2, 0 x-timer: S1668537288.028089,VS0,VE104 age: 12855 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 74283 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/CUofCO_Horz_wht.png	23.185.0.2	200 OK	6.0 kB
URL HTTP/2 www.cuofco.org/sites/default/files/CUofCO_Horz_wht.png IP 23.185.0.2:0 ASN #54113 FASTLY File type PNG image data, 289 x 84, 8-bit/color RGBA, interlaced\012- data Size 6.0 kB (5994 bytes) Hash 7095289d4b2f687915f35b112c50159e e9050c16402505df3efd3974e646d7f031e44d48 91efcf6048955344e63ed925d73e7761ace8aa129ae2faa196ccec933b44688d HTTP Headers `GET /sites/default/files/CUofCO_Horz_wht.png HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/png etag: "62e195ab-176a" expires: Thu, 19 Oct 2023 16:09:06 GMT last-modified: Wed, 27 Jul 2022 19:44:43 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-cfb5d9d8b-nwlqn x-styx-req-id: 31256fd6-4eff-11ed-ad22-6a7404969741 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-klot8100079-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 34, 1 x-timer: S1668537288.025997,VS0,VE109 age: 12855 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 5994 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/js/js_k-O2P03ZL-0kx0yxpxTIZujVYSK_yHW93ugh6xzfbd4.js	23.185.0.2	200 OK	22 kB
URL HTTP/2 www.cuofco.org/sites/default/files/js/js_k-O2P03ZL-0kx0yxpxTIZujVYSK_yHW93ugh6xzfbd4.js IP 23.185.0.2:0 ASN #54113 FASTLY File type Unicode text, UTF-8 text, with very long lines (18314) Size 22 kB (22421 bytes) Hash f63650d748cc1cbac26a0567216a1154 eee262bbf0d65c6eb14ffed2a2b65038b8b9e284 962e49a4a03411087143b843f504a5fe5db20fb04b3876b0f766266f4e30e0f2 HTTP Headers `GET /sites/default/files/js/js_k-O2P03ZL-0kx0yxpxTIZujVYSK_yHW93ugh6xzfbd4.js HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"6364443f-11ef1" expires: Sat, 04 Nov 2023 22:44:17 GMT last-modified: Thu, 03 Nov 2022 22:44:15 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-777f5c79d9-9gtmx x-styx-req-id: 0c541713-5bc9-11ed-a409-9a653ad35aa2 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-klot8100148-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668537288.032222,VS0,VE104 vary: Accept-Encoding age: 12863 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 22421 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/js/js_7HLXQ8i36ht8YRil25oWniakG9KJcpZ-pv1fh8sfrLk.js	23.185.0.2	200 OK	3.4 kB
URL HTTP/2 www.cuofco.org/sites/default/files/js/js_7HLXQ8i36ht8YRil25oWniakG9KJcpZ-pv1fh8sfrLk.js IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (7080) Size 3.4 kB (3351 bytes) Hash 7af8089047d1124a8e123bcaf6cb2a47 b47f8953d5e8d4ae713b67218f311577a073646d bc2e3fabd77c1f6277dacdd7db133962439529a4406028a8e2b26fc24f4b5116 HTTP Headers `GET /sites/default/files/js/js_7HLXQ8i36ht8YRil25oWniakG9KJcpZ-pv1fh8sfrLk.js HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"6364443d-1d6a" expires: Sat, 04 Nov 2023 22:44:17 GMT last-modified: Thu, 03 Nov 2022 22:44:13 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-64f84fb45c-8n887 x-styx-req-id: 0c4c02c5-5bc9-11ed-9360-0a1201bbc1bc date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000154-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 33, 1 x-timer: S1668537288.025588,VS0,VE115 vary: Accept-Encoding age: 12858 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 3351 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/js/js_lOFzYsPtmBZVoJAzjXIULAG9phd5ZvD5_s0u7TkTN1w.js	23.185.0.2	200 OK	41 kB
URL HTTP/2 www.cuofco.org/sites/default/files/js/js_lOFzYsPtmBZVoJAzjXIULAG9phd5ZvD5_s0u7TkTN1w.js IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (65306) Size 41 kB (40707 bytes) Hash 3e4f22e34f26fa4030a7491efc859e4e dce60274ff20463ba6421359d9abc6a263040d6b 81bcdf2be422ecd0b63fdea580944f9d795ee0887cb8af5ece32c487966db136 HTTP Headers `GET /sites/default/files/js/js_lOFzYsPtmBZVoJAzjXIULAG9phd5ZvD5_s0u7TkTN1w.js HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"6364443f-19da2" expires: Sat, 04 Nov 2023 22:44:17 GMT last-modified: Thu, 03 Nov 2022 22:44:15 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-64f84fb45c-v2rkr x-styx-req-id: 0c54036d-5bc9-11ed-9ff7-a64a8b0537c8 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000151-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 2, 1 x-timer: S1668537288.031615,VS0,VE110 vary: Accept-Encoding age: 12862 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 40707 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/styles/x_large_hq/public/2022-09/Autumn%20Homepage%20Image%20%282%29.jpg?itok=8bqPIoCT	23.185.0.2	200 OK	228 kB
URL HTTP/2 www.cuofco.org/sites/default/files/styles/x_large_hq/public/2022-09/Autumn%20Homepage%20Image%20%282%29.jpg?itok=8bqPIoCT IP 23.185.0.2:0 ASN #54113 FASTLY File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 1920x1080, components 3\012- data Size 228 kB (227834 bytes) Hash f326ac2c07f23fa768a10ece2ed6968e 438af1fb2a53ce8287b6ebe88d39f9726a5eee37 cc21580af145c6031a936dc9ffc63d9410272da8165dbd8625034aab800cfea0 HTTP Headers `GET /sites/default/files/styles/x_large_hq/public/2022-09/Autumn%20Homepage%20Image%20%282%29.jpg?itok=8bqPIoCT HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/jpeg etag: "6334b502-379fa" expires: Sat, 28 Oct 2023 18:52:09 GMT last-modified: Wed, 28 Sep 2022 20:56:34 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-9b5b677f8-r6f9z x-styx-req-id: 75ec7471-5628-11ed-9852-26cd2e83c6f4 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-klot8100074-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668537288.026913,VS0,VE110 age: 12862 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 227834 X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash bef73a741d628ea72f9e589357d9814b 1c262f42fb006785a89ff643adb1546f2e0adf71 1b45ff517133dcdbb9c774a035b6fc9ac88e861fbbd867ae9ea89fc0b871b74f HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=109072 Date: Tue, 15 Nov 2022 18:34:48 GMT Etag: "6372d296-1d7" Expires: Thu, 17 Nov 2022 00:52:40 GMT Last-Modified: Mon, 14 Nov 2022 23:43:18 GMT Server: ECS (dcb/7ECB) X-Cache: Miss from cloudfront Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: U2HLAr3KEiEVb37n8PtVKloh7pssVVnGuSFVbe0bhMUU9_Swz24Axg== Age: 4162

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 890d40d05f1b66b63d2eab4414a72c9b a5e1315844f7baa3de57077793b24a0a5761ecab 733777e98e28049230f718232c3e9c0f41c7caf52e142062afa7bd8662c8f4e5 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=128726 Date: Tue, 15 Nov 2022 18:34:48 GMT Etag: "63732862-1d7" Expires: Thu, 17 Nov 2022 06:20:14 GMT Last-Modified: Tue, 15 Nov 2022 05:49:22 GMT Server: ECS (bsa/EB18) X-Cache: Miss from cloudfront Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: FHZ__tOhLexaTV1dJLxjRql7wTyvwRI4wtokeqJR4xl4rtVTS9Q3JQ== Age: 1852

	www.cuofco.org/sites/default/files/js/js__2jJZDKda2j5vGac7VYYRFZAYG4fgo9a6je9RItlFO8.js	23.185.0.2	200 OK	72 kB
URL HTTP/2 www.cuofco.org/sites/default/files/js/js__2jJZDKda2j5vGac7VYYRFZAYG4fgo9a6je9RItlFO8.js IP 23.185.0.2:0 ASN #54113 FASTLY File type Unicode text, UTF-8 text, with very long lines (17692), with LF, NEL line terminators Size 72 kB (72529 bytes) Hash ebb934a8e5029085ae2fb37dbafdbbd9 dc6ab73778fc475ebd0c2724ad4f57a0de298d1e 5a9bd2c8e39c8f96262d06d934c0e18148d52f55d4a72ed306a849149296f43d HTTP Headers `GET /sites/default/files/js/js__2jJZDKda2j5vGac7VYYRFZAYG4fgo9a6je9RItlFO8.js HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"63644440-2f659" expires: Sun, 05 Nov 2023 10:03:26 GMT last-modified: Thu, 03 Nov 2022 22:44:16 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-68bb57c467-x5bxx x-styx-req-id: ecd1538b-5c27-11ed-93ea-2aab0a8f587a date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-klot8100024-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 2, 1 x-timer: S1668537288.032972,VS0,VE112 vary: Accept-Encoding age: 12862 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 72529 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/styles/small_hq/public/image/2021-09/DB_Desktop-Screeen-and-Phone.png?itok=fLkBDU5N	23.185.0.2	200 OK	217 kB
URL HTTP/2 www.cuofco.org/sites/default/files/styles/small_hq/public/image/2021-09/DB_Desktop-Screeen-and-Phone.png?itok=fLkBDU5N IP 23.185.0.2:0 ASN #54113 FASTLY File type PNG image data, 640 x 580, 8-bit/color RGBA, non-interlaced\012- data Size 217 kB (217317 bytes) Hash e8319f6013c64802f400525daac8caa8 cfafcab263f81bd80b090249617437f5d5ccde2a 807118b0988381e8f62a61f952684c0c9c4224eaefb475fa8df9feb940de908f HTTP Headers `GET /sites/default/files/styles/small_hq/public/image/2021-09/DB_Desktop-Screeen-and-Phone.png?itok=fLkBDU5N HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/png etag: "61421ee5-350e5" expires: Thu, 26 Oct 2023 13:25:26 GMT last-modified: Wed, 15 Sep 2021 16:27:17 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-68b654c78d-dx8k6 x-styx-req-id: 7cffcf3a-5468-11ed-a00a-2e476fb6d4a3 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000138-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668537288.028497,VS0,VE108 age: 12855 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 217317 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/js/js_tTsM-zMos8XIhtwc3X4zmiV8v-08KB6uxB0ZSMWmBSg.js	23.185.0.2	200 OK	37 kB
URL HTTP/2 www.cuofco.org/sites/default/files/js/js_tTsM-zMos8XIhtwc3X4zmiV8v-08KB6uxB0ZSMWmBSg.js IP 23.185.0.2:0 ASN #54113 FASTLY File type ASCII text, with very long lines (28999) Size 37 kB (36969 bytes) Hash 1c73831961260422140115ff73654c23 67a83518bac95499fe3c104299c6348c80bb6e07 eb9de5106281ed4c6a5c406a4e80b3069b1be33680f329b5d4ad1cab4df5cba0 HTTP Headers `GET /sites/default/files/js/js_tTsM-zMos8XIhtwc3X4zmiV8v-08KB6uxB0ZSMWmBSg.js HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-encoding: gzip content-type: application/x-javascript etag: W/"63644440-1ed29" expires: Sat, 11 Nov 2023 15:15:18 GMT last-modified: Thu, 03 Nov 2022 22:44:16 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-fffb9c8f-hq85b x-styx-req-id: 7c486ca9-610a-11ed-9d3f-d22764532de6 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-klot8100137-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668537288.047440,VS0,VE104 vary: Accept-Encoding age: 12863 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 36969 X-Firefox-Spdy: h2

	www.cuofco.org/sites/default/files/styles/small_hq/public/image/2022-10/highland%20ranch%20mural%20rev_0.jpg?itok=ZK6bPO7z	23.185.0.2	200 OK	112 kB
URL HTTP/2 www.cuofco.org/sites/default/files/styles/small_hq/public/image/2022-10/highland%20ranch%20mural%20rev_0.jpg?itok=ZK6bPO7z IP 23.185.0.2:0 ASN #54113 FASTLY File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 640x640, components 3\012- data Size 112 kB (111558 bytes) Hash 0882c888f47f6551245373bd88e1dadf 44e3c081cee163b314c2a67676b6fef93107c54a cb3d591511f9c33217586f4f14f37f00f9f93a0742949c6cbfa26e7ffa01ad9c HTTP Headers `GET /sites/default/files/styles/small_hq/public/image/2022-10/highland%20ranch%20mural%20rev_0.jpg?itok=ZK6bPO7z HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/jpeg etag: "634f4e7a-1b3c6" expires: Fri, 20 Oct 2023 01:10:19 GMT last-modified: Wed, 19 Oct 2022 01:10:18 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-cfb5d9d8b-mk4cq x-styx-req-id: cc355d1b-4f4a-11ed-b873-3a7a170c8516 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-klot8100020-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 1, 1 x-timer: S1668537288.027238,VS0,VE117 age: 12855 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 111558 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 2316d2d43aee9525cdb65b3eb2ff53a0 cad4229071cf919cb3471632ac4924cfd1a97431 99d5cce0549dbb29351735d3e15f9cde16b2ca18c57581c8110b2c54998fa28d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:48 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	api.glia.com/salemove_integration.js	54.230.111.10	200 OK	9.0 kB
URL HTTP/2 api.glia.com/salemove_integration.js IP 54.230.111.10:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (8951), with no line terminators Size 9.0 kB (8951 bytes) Hash 71c1ae5ac8e04674a87cf3d08ead4abd 0d3f97d1668716ddff0ff10fa3357da0b7cef72a 190f5962271d2bd05a8ea691cbb66ff76b8b9519e6ef422c4bd0ed7c879b233f HTTP Headers `GET /salemove_integration.js HTTP/1.1 Host: api.glia.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript content-length: 8951 last-modified: Tue, 15 Nov 2022 09:56:42 GMT accept-ranges: bytes server: AmazonS3 strict-transport-security: max-age=63072000; includeSubdomains; preload date: Tue, 15 Nov 2022 18:27:02 GMT etag: "71c1ae5ac8e04674a87cf3d08ead4abd" vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin x-cache: Hit from cloudfront via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: nBIuxUOEiAMF2AOtLaoe-mdMMFhHwe78bXK_-bAYAxkNdMu87LgSZQ== age: 545 X-Firefox-Spdy: h2

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	34.102.187.140	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 15 Nov 2022 17:44:48 GMT cache-control: public,max-age=3600 age: 3000 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json alt-svc: clear X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 6ea606a3c83b6b14b9375c84e37870d8 d73a898c2f3eba8e71d6d4f675c47107df0a5795 0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:48 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/sanchez/v13/Ycm2sZJORluHnXbIfmlR_Q.woff2	216.58.207.195	200 OK	13 kB
URL HTTP/2 fonts.gstatic.com/s/sanchez/v13/Ycm2sZJORluHnXbIfmlR_Q.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 12820, version 1.0\012- data Size 13 kB (12820 bytes) Hash a7cd4a7063b4e69d369db4108e91c76d ca27b92eb2727d77709b5a11ff9fded87c9fa4ec 2d941417893befb28cadc12d09da90e8f4974f0f3cf08340c88fbc718162c414 HTTP Headers `GET /s/sanchez/v13/Ycm2sZJORluHnXbIfmlR_Q.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.cuofco.org Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 12820 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 09 Nov 2022 18:55:02 GMT expires: Thu, 09 Nov 2023 18:55:02 GMT cache-control: public, max-age=31536000 last-modified: Wed, 27 Apr 2022 15:38:24 GMT content-type: font/woff2 age: 517186 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.cuofco.org/themes/custom/themekit/dist/f6cdf4bc4a1370cdb82fb2eeeb4349fb.png	23.185.0.2	200 OK	62 kB
URL HTTP/2 www.cuofco.org/themes/custom/themekit/dist/f6cdf4bc4a1370cdb82fb2eeeb4349fb.png IP 23.185.0.2:0 ASN #54113 FASTLY File type PNG image data, 1342 x 657, 8-bit colormap, non-interlaced\012- data Size 62 kB (62285 bytes) Hash f6cdf4bc4a1370cdb82fb2eeeb4349fb 0b6e69a896b271d91840c98265980bf238e47540 87ee34f3aa7f4648b9b214ef8db11b12114e7b146ed14d59ca8fd4a1cc1f8e97 HTTP Headers GET /themes/custom/themekit/dist/f6cdf4bc4a1370cdb82fb2eeeb4349fb.png HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.cuofco.org/sites/default/files/css/css_nJh1pGM46_OTmBTmfxgMiYFXJWVYm0IMBuAh4uJjAlo.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/png etag: "63727a86-f34d" expires: Thu, 16 Nov 2023 15:00:25 GMT last-modified: Mon, 14 Nov 2022 17:27:34 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-7c467dd958-7qc9q x-styx-req-id: 3c9b2e01-64f6-11ed-8c98-c2c0657397c8 date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000061-CHI, cache-bma1621-BMA x-cache: HIT, MISS x-cache-hits: 2, 0 x-timer: S1668537288.277273,VS0,VE104 age: 12863 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 62285 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2	216.58.207.195	200 OK	47 kB
URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data Size 47 kB (47048 bytes) Hash 87a1556b696ae2cb1a726bd8c4584a2f 1be0f6f39e0cf316f9827f945eeeaef8294cc37b 141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1 HTTP Headers `GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.cuofco.org Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 47048 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 11 Nov 2022 22:54:23 GMT expires: Sat, 11 Nov 2023 22:54:23 GMT cache-control: public, max-age=31536000 age: 330025 last-modified: Wed, 27 Apr 2022 16:55:54 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.cuofco.org/themes/custom/themekit/dist/724efb8000977c9a81483c022cb31227.png	23.185.0.2	200 OK	16 kB
URL HTTP/2 www.cuofco.org/themes/custom/themekit/dist/724efb8000977c9a81483c022cb31227.png IP 23.185.0.2:0 ASN #54113 FASTLY File type PNG image data, 1076 x 723, 8-bit/color RGBA, non-interlaced\012- data Size 16 kB (15909 bytes) Hash 724efb8000977c9a81483c022cb31227 d8f216c187acc82a44e3de93ecfc1ce22807b07c cefa8778a78b3d36b5ada2fa121902929ba09e3162f9d0d43df0bfbd66daa30c HTTP Headers GET /themes/custom/themekit/dist/724efb8000977c9a81483c022cb31227.png HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.cuofco.org/sites/default/files/css/css_nJh1pGM46_OTmBTmfxgMiYFXJWVYm0IMBuAh4uJjAlo.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/png etag: "63727a86-3e25" expires: Thu, 16 Nov 2023 15:00:25 GMT last-modified: Mon, 14 Nov 2022 17:27:34 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-2f4qc x-styx-req-id: 3c9c0bd6-64f6-11ed-86c2-1665678de48e date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000176-CHI, cache-bma1621-BMA x-cache: HIT, MISS x-cache-hits: 2, 0 x-timer: S1668537288.282781,VS0,VE105 age: 12862 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 15909 X-Firefox-Spdy: h2

	js.poshdevelopment.com/glia/render.js	54.230.111.78	200 OK	97 kB
URL HTTP/2 js.poshdevelopment.com/glia/render.js IP 54.230.111.78:0 ASN #16509 AMAZON-02 File type data Size 97 kB (96990 bytes) Hash f43883a21e44e6df8fd51f063f537efa 7a96d51d2573ee5270f5890cc53bb835aca9bdf4 8edd882283099c404cd01b2498b4bbad27be9339c1a1e0a8487bff1a6e62a7e5 HTTP Headers `GET /glia/render.js HTTP/1.1 Host: js.poshdevelopment.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript last-modified: Tue, 25 Oct 2022 22:09:48 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: null server: AmazonS3 strict-transport-security: max-age=63072000; includeSubdomains; preload content-encoding: gzip date: Tue, 15 Nov 2022 18:34:14 GMT cache-control: max-age=28800, stale-while-revalidate=14400 etag: W/"a13a937b45cb12d8097d2db6dc461250" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: Q7men1yYoGov4gu7wIL6zqQZVj6peEyy80HLiR0Onj-csF1bz7PRNQ== age: 6884 X-Firefox-Spdy: h2

	www.cuofco.org/themes/custom/themekit/dist/fonts/icomoon/fonts/icomoon.woff2	23.185.0.2	200 OK	4.7 kB
URL HTTP/2 www.cuofco.org/themes/custom/themekit/dist/fonts/icomoon/fonts/icomoon.woff2 IP 23.185.0.2:0 ASN #54113 FASTLY File type Web Open Font Format (Version 2), TrueType, length 4708, version 1.0\012- data Size 4.7 kB (4708 bytes) Hash 8c0a8891969fa6e6a923101a08099a1d 61abaa8af1e1b4c40f5fcaf15e3029f3173eb44a 0d1b585d16ae272e418920b11f975f71e6f6dbab157302d9fbcf8b3ccdf0d8e6 HTTP Headers GET /themes/custom/themekit/dist/fonts/icomoon/fonts/icomoon.woff2 HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://www.cuofco.org/sites/default/files/css/css_nJh1pGM46_OTmBTmfxgMiYFXJWVYm0IMBuAh4uJjAlo.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK access-control-allow-origin: * cache-control: max-age=31622400 content-type: font/woff2 etag: "63727a86-1264" expires: Thu, 16 Nov 2023 15:00:25 GMT last-modified: Mon, 14 Nov 2022 17:27:34 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-b-7c467dd958-tdp22 x-styx-req-id: 3c6c094c-64f6-11ed-9b6e-d6aa300066ad date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-kigq8000136-CHI, cache-bma1621-BMA x-cache: HIT, MISS x-cache-hits: 4, 0 x-timer: S1668537288.351617,VS0,VE109 age: 12863 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 4708 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash de57a2d376db743a3987c454889f1f21 0defab699bdb1b158026f93c2dd105bcd65f6764 b1c47a81ac45af6f756a8eca8ef14a82f0113ea8f09dae7a285a4491963ae2ff HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5454 Cache-Control: max-age=144181 Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:48 GMT Etag: "637356af-1d7" Expires: Thu, 17 Nov 2022 10:37:49 GMT Last-Modified: Tue, 15 Nov 2022 09:06:55 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 471`

	status.geotrust.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 status.geotrust.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 48580909d4bfd2f47b33c9f7c907b9b5 05cfd2580ec3d5bae5e16dd1c180dde0d8616abe 9141efe67cd58fb8eab6e1bb8465e84ab5cd7a8c3b45b993b25a1f087c1497e6 HTTP Headers `POST / HTTP/1.1 Host: status.geotrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=103478 Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:48 GMT Etag: "6372ccfe-1d7" Expires: Wed, 16 Nov 2022 23:19:26 GMT Last-Modified: Mon, 14 Nov 2022 23:19:26 GMT Server: nginx Content-Length: 471`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 3dc58f0dcba4ac9021f62c5c1c862e91 d67cf5a8968b75d0d6893054f5201e015be19ecc 75d4e57dc6c25d2456a7513572a97de5f1c1caead2822c8a985da9b8dfa55f89 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:48 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtm.js?id=GTM-M4MHC6S	142.250.74.168	200 OK	67 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M4MHC6S IP 142.250.74.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (21377) Size 67 kB (67161 bytes) Hash d68b0e9baf55d8d494e3d40a8a739109 c4c43ec2522858c60585b0d68e89e2149b58ac03 bf76f339a87eb76e0dba0b9dfbec0c445b3ae5d5a674065afcb1b709823628bd HTTP Headers `GET /gtm.js?id=GTM-M4MHC6S HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 15 Nov 2022 18:34:48 GMT expires: Tue, 15 Nov 2022 18:34:48 GMT cache-control: private, max-age=900 last-modified: Tue, 15 Nov 2022 18:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 67161 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	api.glia.com/visitor_config?referrer=https%3A%2F%2Fwww.cuofco.org%2F&	54.230.111.10	200 OK	17 kB
URL HTTP/2 api.glia.com/visitor_config?referrer=https%3A%2F%2Fwww.cuofco.org%2F& IP 54.230.111.10:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (16699), with no line terminators Size 17 kB (16699 bytes) Hash 59ff3c7bd7787098ba740f3786f50549 c3a03060d543eeb4a50b7a972b3a52792eb1fbac 61d7575bca45ee013c40d4a1c8744f36e4d9bf878e3c7dbbbab1118375b1f180 HTTP Headers `POST /visitor_config?referrer=https%3A%2F%2Fwww.cuofco.org%2F& HTTP/1.1 Host: api.glia.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 0 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: application/json content-length: 16699 date: Tue, 15 Nov 2022 18:34:48 GMT access-control-allow-origin: https://www.cuofco.org access-control-allow-methods: ["GET, POST, PUT, PATCH, OPTIONS, HEAD, DELETE"] access-control-expose-headers: access-control-max-age: 7200 access-control-allow-headers: Content-Type, Accept, Authorization strict-transport-security: max-age=15724800; includeSubDomains x-content-type-options: nosniff x-site-visitor-config: true access-control-allow-credentials: true cache-control: no-cache, no-store, must-revalidate, max-age=0 set-cookie: session_id=2485cbee-259a-455d-aa7f-250e74dfb078; path=/; expires=Wed, 15 Nov 2023 18:34:48 -0000; secure; HttpOnly; SameSite=None incompat_session_id=2485cbee-259a-455d-aa7f-250e74dfb078; path=/; expires=Wed, 15 Nov 2023 18:34:48 -0000; secure; HttpOnly vary: Origin x-cache: Miss from cloudfront via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: cJRUPgqNXP3G1k1jrm31zivS5jdgYPt079XNgRTB3JYsBA8FFS7_NA== X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 3dc58f0dcba4ac9021f62c5c1c862e91 d67cf5a8968b75d0d6893054f5201e015be19ecc 75d4e57dc6c25d2456a7513572a97de5f1c1caead2822c8a985da9b8dfa55f89 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:48 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.cuofco.org/sites/default/files/faviconmountain_0.ico	23.185.0.2	200 OK	3.2 kB
URL HTTP/2 www.cuofco.org/sites/default/files/faviconmountain_0.ico IP 23.185.0.2:0 ASN #54113 FASTLY File type MS Windows icon resource - 3 icons, 48x48, 8 bits/pixel, 32x32, 8 bits/pixel\012- data Size 3.2 kB (3161 bytes) Hash 3d723fdd606e84fecafbca0a0b950e99 80d8f4779420fffc5dc1ed5d14f86bc9afc64e75 40cc7ed29311eac31994f24bdaa7eb7fceb83e19fba6a92fe7e686198f4a73eb HTTP Headers `GET /sites/default/files/faviconmountain_0.ico HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: max-age=31622400 content-type: image/x-icon etag: "62e2b4b8-1cee" expires: Sat, 28 Oct 2023 16:53:03 GMT last-modified: Thu, 28 Jul 2022 16:09:28 GMT server: nginx x-pantheon-styx-hostname: styx-fe2-a-5b97d994c5-ws889 x-styx-req-id: d280fccd-5617-11ed-acc5-ce6a8181dff3 content-encoding: gzip date: Tue, 15 Nov 2022 18:34:48 GMT x-served-by: cache-chi-klot8100117-CHI, cache-bma1621-BMA x-cache: HIT, HIT x-cache-hits: 4, 1 x-timer: S1668537289.764737,VS0,VE103 vary: Accept-Encoding age: 12861 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 3161 X-Firefox-Spdy: h2

	www.redditstatic.com/ads/pixel.js	151.101.85.140	200 OK	7.7 kB
URL HTTP/2 www.redditstatic.com/ads/pixel.js IP 151.101.85.140:0 ASN #54113 FASTLY File type ASCII text, with very long lines (25224) Size 7.7 kB (7722 bytes) Hash 3528fd00b652f61a266eb584d96f4fcc d89e16aa1323c6c4f1ed3941122020684a599361 77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332 HTTP Headers `GET /ads/pixel.js HTTP/1.1 Host: www.redditstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK last-modified: Mon, 07 Nov 2022 16:45:46 GMT etag: "3528fd00b652f61a266eb584d96f4fcc" cache-control: public, max-age=60 content-encoding: gzip content-type: application/javascript via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Tue, 15 Nov 2022 18:34:48 GMT vary: Accept-Encoding,Origin server: snooserv report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]} nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02} content-length: 7722 X-Firefox-Spdy: h2

	push.services.mozilla.com/	34.214.17.205	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 34.214.17.205:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 4i56LoDOQ0QtWo4g+izoOQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: RFtuUogTHHmitvTRWHgjr3VLaA8=`

	sc-static.net/scevent.min.js	54.230.82.240	200 OK	12 kB
URL HTTP/2 sc-static.net/scevent.min.js IP 54.230.82.240:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (27626), with no line terminators Size 12 kB (11952 bytes) Hash 035ae7d8997231fd2bf263fda3301a2e 5bb59971bb5b00c731b1b6d63ff62d3d15ed3e01 3d692a6509f8e07ecd55a04baeb315df58e4fd15fc92182889d3de5c25e58e60 HTTP Headers `GET /scevent.min.js HTTP/1.1 Host: sc-static.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript;charset=utf-8 content-length: 11952 server: CloudFront date: Tue, 15 Nov 2022 18:34:48 GMT content-encoding: gzip access-control-allow-origin: * access-control-allow-headers: Content-Type cache-control: private, s-maxage=0, max-age=600 set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Wed, 16 Nov 2022 17:50:38 GMT;Path=/scevent.min.js; Secure; SameSite=None x-cache: LambdaGeneratedResponse from cloudfront via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: WqAP2Kcl98WK4G3rE93ZvT74iA7SGJrrXGvxHYiuYSpD9HdVvtHCdA== X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash bd75403f3828b28e6a814b184ead226a 2faec258a6ad0ebba7178b7a1019040c538617c5 8898173d6f0f4f56dd196f5a5f5d339d92688f30a7bd285d1432c0e5f1b3e9d0 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1276 Cache-Control: max-age=131742 Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:48 GMT Etag: "6373366a-1d7" Expires: Thu, 17 Nov 2022 07:10:30 GMT Last-Modified: Tue, 15 Nov 2022 06:49:14 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash bd75403f3828b28e6a814b184ead226a 2faec258a6ad0ebba7178b7a1019040c538617c5 8898173d6f0f4f56dd196f5a5f5d339d92688f30a7bd285d1432c0e5f1b3e9d0 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1277 Cache-Control: max-age=131742 Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:49 GMT Etag: "6373366a-1d7" Expires: Thu, 17 Nov 2022 07:10:31 GMT Last-Modified: Tue, 15 Nov 2022 06:49:14 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 471`

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2394 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-r6cxj x-styx-req-id: 2f826379-6514-11ed-b9f4-0e42057539be x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Tue, 15 Nov 2022 18:34:49 GMT x-served-by: cache-chi-kigq8000083-CHI, cache-bma1621-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668537289.860004,VS0,VE160 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2389 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-b-7c467dd958-phgmm x-styx-req-id: 2f82781f-6514-11ed-b8c7-9ad26433f2a3 x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Tue, 15 Nov 2022 18:34:49 GMT x-served-by: cache-chi-klot8100164-CHI, cache-bma1621-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668537289.860311,VS0,VE162 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	tr.snapchat.com/cm/i?pid=3e513984-0c3d-4f3e-866e-64c50d47f06b&u_scsid=6db673e5-8d73-433d-926d-fcf38c8a3cb8&u_sclid=7195cd05-3f76-4e8a-8f30-263ba6579228	35.190.43.134	200 OK	0 B
URL HTTP/2 tr.snapchat.com/cm/i?pid=3e513984-0c3d-4f3e-866e-64c50d47f06b&u_scsid=6db673e5-8d73-433d-926d-fcf38c8a3cb8&u_sclid=7195cd05-3f76-4e8a-8f30-263ba6579228 IP 35.190.43.134:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /cm/i?pid=3e513984-0c3d-4f3e-866e-64c50d47f06b&u_scsid=6db673e5-8d73-433d-926d-fcf38c8a3cb8&u_sclid=7195cd05-3f76-4e8a-8f30-263ba6579228 HTTP/1.1 Host: tr.snapchat.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 200 OK date: Tue, 15 Nov 2022 18:34:49 GMT content-type: text/html strict-transport-security: max-age=31536000; includeSubDomains; preload content-length: 0 x-envoy-upstream-service-time: 0 server: API Gateway via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2`

	libs.salemove.com/visitor/webcomponents_es5-073cb7c21.js	54.230.111.12	200 OK	936 B
URL HTTP/2 libs.salemove.com/visitor/webcomponents_es5-073cb7c21.js IP 54.230.111.12:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (390) Size 936 B (936 bytes) Hash f86098c5208655efb405300993461936 a0a5b6aea7bbb6a51940f8c874aee109477c7b56 832dbd199f70ade357e88a3f5d32920c8c63e69258dc173d3b261686320895db HTTP Headers `GET /visitor/webcomponents_es5-073cb7c21.js HTTP/1.1 Host: libs.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: application/javascript content-length: 936 date: Mon, 14 Nov 2022 13:38:04 GMT last-modified: Mon, 14 Nov 2022 06:42:21 GMT etag: "f86098c5208655efb405300993461936" x-amz-meta-s3cmd-attrs: md5:f86098c5208655efb405300993461936 cache-control: max-age=31536000 accept-ranges: bytes server: AmazonS3 strict-transport-security: max-age=63072000; includeSubdomains; preload vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin x-cache: Hit from cloudfront via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 2iJrFOFVoestTS9ArbZ64H8xVqXLDSE_ULHrN25aLcd6opADTYSEQQ== age: 104205 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash bd75403f3828b28e6a814b184ead226a 2faec258a6ad0ebba7178b7a1019040c538617c5 8898173d6f0f4f56dd196f5a5f5d339d92688f30a7bd285d1432c0e5f1b3e9d0 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1277 Cache-Control: max-age=131742 Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:49 GMT Etag: "6373366a-1d7" Expires: Thu, 17 Nov 2022 07:10:31 GMT Last-Modified: Tue, 15 Nov 2022 06:49:14 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 471`

	tr.snapchat.com/p	35.190.43.134	200 OK	68 B
URL HTTP/2 tr.snapchat.com/p IP 35.190.43.134:0 ASN #15169 GOOGLE File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data Size 68 B (68 bytes) Hash c4a2b870062c2bb98c500bc1526c0498 528666ccdb12997358077bc8fcdbfb6b825c7788 2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11 HTTP Headers `POST /p HTTP/1.1 Host: tr.snapchat.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 456 Origin: null Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Tue, 15 Nov 2022 18:34:49 GMT access-control-allow-origin: * cache-control: no-cache, no-transform set-cookie: sc_at=v2\|H4sIAAAAAAAAAAXBiQ0AIAgEsIlIlOc4x8GoUzC8bUyeyqT4yhIPD6lSCNQI7nHt7e4JMCyVq8cHDQhWJTIAAAA=;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure content-type: text/html strict-transport-security: max-age=31536000; includeSubDomains; preload content-length: 68 x-envoy-upstream-service-time: 5 server: API Gateway via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	api.salemove.com/visitor_app/3a6885d2/sites/0e1d06dc-39ca-478f-8a62-c6db0387c309/custom_locales/en-US-Chat/cee7882a0babed	54.230.111.22	200 OK	10 kB
URL HTTP/2 api.salemove.com/visitor_app/3a6885d2/sites/0e1d06dc-39ca-478f-8a62-c6db0387c309/custom_locales/en-US-Chat/cee7882a0babed IP 54.230.111.22:0 ASN #16509 AMAZON-02 File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (10144), with no line terminators Size 10 kB (10146 bytes) Hash 29a3c877c369424e0f97d928179c7ae5 3c46c5b79e0c1890df6b02bc20bad2db6c72b6a8 8364dc6dc75bf59db071fa0a282436d85ebaf3dac4ce374682852754db94133e HTTP Headers `GET /visitor_app/3a6885d2/sites/0e1d06dc-39ca-478f-8a62-c6db0387c309/custom_locales/en-US-Chat/cee7882a0babed HTTP/1.1 Host: api.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/json content-length: 10146 date: Tue, 15 Nov 2022 11:03:20 GMT access-control-allow-origin: https://www.cuofco.org access-control-allow-methods: GET, POST, PUT, PATCH, OPTIONS, HEAD, DELETE access-control-expose-headers: access-control-max-age: 7200 access-control-allow-headers: Content-Type, Accept, Authorization cache-control: public, max-age=31536000 x-content-type-options: nosniff strict-transport-security: max-age=15724800; includeSubDomains vary: Origin x-cache: Hit from cloudfront via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: zp2ugbdeWtG22pA8Nnblfw5t9QPGcp9j-gci6gJbamLBJ7ZJ0dSPQg== age: 27089 X-Firefox-Spdy: h2

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2768 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-wdz7q x-styx-req-id: 2f8efb9b-6514-11ed-84ba-621337defab1 x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Tue, 15 Nov 2022 18:34:49 GMT x-served-by: cache-chi-kigq8000072-CHI, cache-bma1621-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668537289.942145,VS0,VE171 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2427 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-b-7c467dd958-phgmm x-styx-req-id: 2f939ff5-6514-11ed-b8c7-9ad26433f2a3 x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Tue, 15 Nov 2022 18:34:49 GMT x-served-by: cache-chi-kigq8000038-CHI, cache-bma1621-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668537289.973056,VS0,VE164 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2357 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-wdz7q x-styx-req-id: 2fa06ccb-6514-11ed-84ba-621337defab1 x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Tue, 15 Nov 2022 18:34:49 GMT x-served-by: cache-chi-klot8100090-CHI, cache-bma1621-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668537289.055928,VS0,VE152 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 1fa19aff1e1cd1bcb23807998ef85c43 a4c43d274ab7c17894153b771d5fe096e2142e96 e254f31055336f837930d3dbe663ff8b96129f069d67d4d8511f13f5620b5641 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1671 Cache-Control: max-age=152992 Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:49 GMT Etag: "637387e2-1d7" Expires: Thu, 17 Nov 2022 13:04:41 GMT Last-Modified: Tue, 15 Nov 2022 12:36:50 GMT Server: ECS (ska/F70B) X-Cache: HIT Content-Length: 471`

	www.google-analytics.com/analytics.js	142.250.74.174	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.174:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1325) Size 20 kB (20039 bytes) Hash 47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20039 date: Tue, 15 Nov 2022 16:41:09 GMT expires: Tue, 15 Nov 2022 18:41:09 GMT cache-control: public, max-age=7200 age: 6820 last-modified: Tue, 27 Sep 2022 22:01:05 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	connect.facebook.net/en_US/fbevents.js	31.13.72.12	200 OK	27 kB
URL HTTP/2 connect.facebook.net/en_US/fbevents.js IP 31.13.72.12:0 ASN #32934 FACEBOOK File type ASCII text, with very long lines (64348) Size 27 kB (27340 bytes) Hash 44ecaa3c2a4929a40141edc4540aaf84 f29a573182333b2500d41bfc389d6c5232dfb348 6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396 HTTP Headers `GET /en_US/fbevents.js HTTP/1.1 Host: connect.facebook.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK vary: Accept-Encoding content-encoding: gzip content-type: application/x-javascript; charset=utf-8 content-security-policy: default-src facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: 'self';script-src .fbcdn.net .facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com;connect-src .fbcdn.net .facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups pragma: public cache-control: public, max-age=1200 expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 x-frame-options: DENY strict-transport-security: max-age=31536000; preload; includeSubDomains x-fb-debug: swfs7xjw/nDDs5cdXECa7o+wE4kWpB7y1LVFPZ3IFe+KVu5QKGMA8mB4uh6mbeUVvqML9fukVQd4nQawuaWQrw== priority: u=3,i content-length: 27340 x-fb-trip-id: 1904183273 date: Tue, 15 Nov 2022 18:34:49 GMT alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 1fa19aff1e1cd1bcb23807998ef85c43 a4c43d274ab7c17894153b771d5fe096e2142e96 e254f31055336f837930d3dbe663ff8b96129f069d67d4d8511f13f5620b5641 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1671 Cache-Control: max-age=152992 Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:49 GMT Etag: "637387e2-1d7" Expires: Thu, 17 Nov 2022 13:04:41 GMT Last-Modified: Tue, 15 Nov 2022 12:36:50 GMT Server: ECS (ska/F70B) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash c5d146250055027cec31fdb8775a0869 0627fbc23013a7e64e3e1e7f3dc734ea9a1afd01 b453b426147ab05a13eb37bba771fa5fa53592021ebb0c6d182cb729c3727215 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=114259 Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:49 GMT Etag: "6372f71c-1d7" Expires: Thu, 17 Nov 2022 02:19:08 GMT Last-Modified: Tue, 15 Nov 2022 02:19:08 GMT Server: nginx Content-Length: 471`

	www.google-analytics.com/j/collect?v=1&_v=j98&a=42515883&t=pageview&_s=1&dl=https%3A%2F%2Fwww.cuofco.org%2F&ul=en-us&de=UTF-8&dt=Homepage%20%7C%20Credit%20Union%20of%20Colorado&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=2038769984&gjid=1318713836&cid=392461123.1668537289&tid=UA-55836619-1&_gid=969904299.1668537289&_r=1&gtm=2wgb90M4MHC6S&z=1705523933	142.250.74.174	200 OK	2 B
URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=42515883&t=pageview&_s=1&dl=https%3A%2F%2Fwww.cuofco.org%2F&ul=en-us&de=UTF-8&dt=Homepage%20%7C%20Credit%20Union%20of%20Colorado&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=2038769984&gjid=1318713836&cid=392461123.1668537289&tid=UA-55836619-1&_gid=969904299.1668537289&_r=1&gtm=2wgb90M4MHC6S&z=1705523933 IP 142.250.74.174:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash cc7a1e792bca8ccb1946b7a07f6dbc03 11a2757082428311f587b7664fa9840376137f80 de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af HTTP Headers POST /j/collect?v=1&_v=j98&a=42515883&t=pageview&_s=1&dl=https%3A%2F%2Fwww.cuofco.org%2F&ul=en-us&de=UTF-8&dt=Homepage%20%7C%20Credit%20Union%20of%20Colorado&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=2038769984&gjid=1318713836&cid=392461123.1668537289&tid=UA-55836619-1&_gid=969904299.1668537289&_r=1&gtm=2wgb90M4MHC6S&z=1705523933 HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK access-control-allow-origin: https://www.cuofco.org date: Tue, 15 Nov 2022 18:34:49 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	pubsub.salemove.com/notifications/websocket?access_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImVkMThkM2UxLTRlMGUtNDI5Mi05OTgwLTVkMzNkYzhkMjM4NyJ9.eyJpYXQiOjE2Njg1MzcyODgsImV4cCI6MTY2OTc0Njg4OCwiaXNzIjoiR2xpYSBTaXRlIFZpc2l0b3IgQ29uZmlnIiwic3ViIjoidmlzaXRvcjo0YjBmNTAzMi1jMDQ5LTQwMWEtYmM2OS01OWQ0YjhlZDA3MDEiLCJyb2xlcyI6W3sidHlwZSI6InZpc2l0b3IiLCJ2aXNpdG9yX2lkIjoiNGIwZjUwMzItYzA0OS00MDFhLWJjNjktNTlkNGI4ZWQwNzAxIn0seyJ0eXBlIjoic2l0ZV92aXNpdG9yIiwic2l0ZV9pZCI6IjBlMWQwNmRjLTM5Y2EtNDc4Zi04YTYyLWM2ZGIwMzg3YzMwOSIsImVuZ2FnZW1lbnRfc2l0ZV9pZHMiOlsiMGUxZDA2ZGMtMzljYS00NzhmLThhNjItYzZkYjAzODdjMzA5Il19XX0.qi-174pNCwEKx0L9rv-_wRwTybXm8rAv8RmavgEfK12huLCE4YiHdZwN467DlIlLjp4p5NFGzFj4SZjMMGPCfg&priority=low&vsn=2.0.0	44.193.189.104	101 Switching Protocols	0 B
URL HTTP/1.1 pubsub.salemove.com/notifications/websocket?access_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImVkMThkM2UxLTRlMGUtNDI5Mi05OTgwLTVkMzNkYzhkMjM4NyJ9.eyJpYXQiOjE2Njg1MzcyODgsImV4cCI6MTY2OTc0Njg4OCwiaXNzIjoiR2xpYSBTaXRlIFZpc2l0b3IgQ29uZmlnIiwic3ViIjoidmlzaXRvcjo0YjBmNTAzMi1jMDQ5LTQwMWEtYmM2OS01OWQ0YjhlZDA3MDEiLCJyb2xlcyI6W3sidHlwZSI6InZpc2l0b3IiLCJ2aXNpdG9yX2lkIjoiNGIwZjUwMzItYzA0OS00MDFhLWJjNjktNTlkNGI4ZWQwNzAxIn0seyJ0eXBlIjoic2l0ZV92aXNpdG9yIiwic2l0ZV9pZCI6IjBlMWQwNmRjLTM5Y2EtNDc4Zi04YTYyLWM2ZGIwMzg3YzMwOSIsImVuZ2FnZW1lbnRfc2l0ZV9pZHMiOlsiMGUxZDA2ZGMtMzljYS00NzhmLThhNjItYzZkYjAzODdjMzA5Il19XX0.qi-174pNCwEKx0L9rv-_wRwTybXm8rAv8RmavgEfK12huLCE4YiHdZwN467DlIlLjp4p5NFGzFj4SZjMMGPCfg&priority=low&vsn=2.0.0 IP 44.193.189.104:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /notifications/websocket?access_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImVkMThkM2UxLTRlMGUtNDI5Mi05OTgwLTVkMzNkYzhkMjM4NyJ9.eyJpYXQiOjE2Njg1MzcyODgsImV4cCI6MTY2OTc0Njg4OCwiaXNzIjoiR2xpYSBTaXRlIFZpc2l0b3IgQ29uZmlnIiwic3ViIjoidmlzaXRvcjo0YjBmNTAzMi1jMDQ5LTQwMWEtYmM2OS01OWQ0YjhlZDA3MDEiLCJyb2xlcyI6W3sidHlwZSI6InZpc2l0b3IiLCJ2aXNpdG9yX2lkIjoiNGIwZjUwMzItYzA0OS00MDFhLWJjNjktNTlkNGI4ZWQwNzAxIn0seyJ0eXBlIjoic2l0ZV92aXNpdG9yIiwic2l0ZV9pZCI6IjBlMWQwNmRjLTM5Y2EtNDc4Zi04YTYyLWM2ZGIwMzg3YzMwOSIsImVuZ2FnZW1lbnRfc2l0ZV9pZHMiOlsiMGUxZDA2ZGMtMzljYS00NzhmLThhNjItYzZkYjAzODdjMzA5Il19XX0.qi-174pNCwEKx0L9rv-_wRwTybXm8rAv8RmavgEfK12huLCE4YiHdZwN467DlIlLjp4p5NFGzFj4SZjMMGPCfg&priority=low&vsn=2.0.0 HTTP/1.1 Host: pubsub.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://www.cuofco.org Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: eHDuPDB9XYk22co5vIoH0w== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols cache-control: max-age=0, private, must-revalidate connection: Upgrade date: Tue, 15 Nov 2022 18:34:48 GMT sec-websocket-accept: DOZ758idLmu6CZKSToBBCq8gFWM= server: envoy upgrade: websocket`

	alb.reddit.com/rp.gif?ts=1668537288536&id=t2_aeb8zd93&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=cf98c051-a72f-4015-a6a2-e8c9aac652e4&aaid=&em=0000000000000000000000000000000000000000000000000000000000000000&external_id=6871144572570a76b42cd0909194f75b69c2dc968d5edc4bcfe96fb94dc65121&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8	151.101.85.140	200 OK	42 B
URL HTTP/2 alb.reddit.com/rp.gif?ts=1668537288536&id=t2_aeb8zd93&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=cf98c051-a72f-4015-a6a2-e8c9aac652e4&aaid=&em=0000000000000000000000000000000000000000000000000000000000000000&external_id=6871144572570a76b42cd0909194f75b69c2dc968d5edc4bcfe96fb94dc65121&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 IP 151.101.85.140:0 ASN #54113 FASTLY File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /rp.gif?ts=1668537288536&id=t2_aeb8zd93&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=cf98c051-a72f-4015-a6a2-e8c9aac652e4&aaid=&em=0000000000000000000000000000000000000000000000000000000000000000&external_id=6871144572570a76b42cd0909194f75b69c2dc968d5edc4bcfe96fb94dc65121&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1 Host: alb.reddit.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK server: Varnish retry-after: 0 cross-origin-resource-policy: cross-origin content-type: image/gif accept-ranges: bytes date: Tue, 15 Nov 2022 18:34:49 GMT via: 1.1 varnish content-length: 42 X-Firefox-Spdy: h2`

	js.alpixtrack.com/alphpixel.js?cust=1453609-751-KUSA	130.211.141.45	200 OK	4.9 kB
URL HTTP/1.1 js.alpixtrack.com/alphpixel.js?cust=1453609-751-KUSA IP 130.211.141.45:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type ASCII text Size 4.9 kB (4913 bytes) Hash c8b925eed53ccf4d111fc3f73c73c1a2 b426b9d0ace2b45daee6c24ddc2599eaafa03ed3 26b1fa79351edf039f381c8d30f0d0861746042f076c8de57179d822b8d7eacd HTTP Headers `GET /alphpixel.js?cust=1453609-751-KUSA HTTP/1.1 Host: js.alpixtrack.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Server: nginx/1.20.0 Date: Tue, 15 Nov 2022 18:34:49 GMT Content-Type: application/javascript Content-Length: 4913 Last-Modified: Wed, 07 Jul 2021 09:31:25 GMT Connection: keep-alive ETag: "60e5746d-1331" Expires: Wed, 16 Nov 2022 18:34:49 GMT Cache-Control: max-age=86400, public, no-transform Access-Control-Allow-Origin: * Accept-Ranges: bytes`

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2399 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-b-7c467dd958-gr7hh x-styx-req-id: 2fd2dc3f-6514-11ed-bfb2-3a4894d806be x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Tue, 15 Nov 2022 18:34:49 GMT x-served-by: cache-chi-kigq8000171-CHI, cache-bma1647-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668537289.001449,VS0,VE539 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 68a04663a52ab4272c25f5afcc09a92d 48b0722227353d06cb1dfd4480b644be6e6fc030 892ba18611f372b6bf390d3628b66efc4a721f0f2bde61ae22546a0948935b7e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:49 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-55836619-1&cid=392461123.1668537289&jid=2038769984&gjid=1318713836&_gid=969904299.1668537289&_u=YEBAAEAAAAAAACAAI~&z=1319878542	142.251.1.154	200 OK	4 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-55836619-1&cid=392461123.1668537289&jid=2038769984&gjid=1318713836&_gid=969904299.1668537289&_u=YEBAAEAAAAAAACAAI~&z=1319878542 IP 142.251.1.154:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 4 B (4 bytes) Hash 48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-55836619-1&cid=392461123.1668537289&jid=2038769984&gjid=1318713836&_gid=969904299.1668537289&_u=YEBAAEAAAAAAACAAI~&z=1319878542 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://www.cuofco.org strict-transport-security: max-age=10886400; includeSubDomains; preload date: Tue, 15 Nov 2022 18:34:49 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 4 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 68a04663a52ab4272c25f5afcc09a92d 48b0722227353d06cb1dfd4480b644be6e6fc030 892ba18611f372b6bf390d3628b66efc4a721f0f2bde61ae22546a0948935b7e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:49 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.cuofco.org/report-csp-violation	23.185.0.2	200 OK	20 B
URL HTTP/2 www.cuofco.org/report-csp-violation IP 23.185.0.2:0 ASN #54113 FASTLY File type data Size 20 B (20 bytes) Hash a4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf HTTP Headers `POST /report-csp-violation HTTP/1.1 Host: www.cuofco.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 2502 Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: must-revalidate, no-cache, private content-encoding: gzip content-language: en content-security-policy-report-only: default-src .cuofco.org:; script-src .cuofco.org static.addtoany.com api.glia.com js.poshdevelopment.com .googletagmanager.com 'unsafe-inline' bam.nr-data.net connect.facebook.net libs.salemove.com js-agent.newrelic.com .google-analytics.com js.alpixtrack.com embed.signalintent.com cdn.segment.com www.googleadservices.com maps.googleapis.com .googleadservices.com 'unsafe-eval' applicationtest.cuofco.org platform.fonolo.com; object-src self; style-src .cuofco.org fonts.googleapis.com 'unsafe-inline' libs.salemove.com embed.signalintent.com; img-src .cuofco.org .facebook.com alpixtrack.com .google.com .google-analytics.com data: www.googletagmanager.com uploads.salemove.com .google.com maps.gstatic.com maps.googleapis.com khms0.googleapis.com; media-src .cuofco.org libs.salemove.com; frame-src .cuofco.org static.addtoany.com embed.fleeq.io batchgeo.com maps.googleapis.com maps.google.com platform.fonolo.com; frame-ancestors ; child-src .cuofco.org; font-src .cuofco.org fonts.gstatic.com fonts.googleapis.com themes.googleusercontent.com data: embed.signalintent.com; connect-src .cuofco.org bam.nr-data.net pubsub.salemove.com .google-analytics.com stats.g.doubleclick.net client-logger.salemove.com api.glia.com wss://pubsub.salemove.com api.salemove.com js.alpixtrack.com .facebook.com alpixtrack.com signal-intent-production-back.herokuapp.com cdn.segment.com api.segment.io kluster.salemove.com wss://kluster.salemove.com adservice.google.com applicationtest.cuofco.org; report-uri /report-csp-violation content-type: text/html; charset=UTF-8 expires: Sun, 19 Nov 1978 05:00:00 GMT permissions-policy: interest-cohort=() referrer-policy: no-referrer server: nginx strict-transport-security: max-age=15768000 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-generator: Drupal 9 (https://www.drupal.org) x-pantheon-styx-hostname: styx-fe2-a-8698d47bfb-r6cxj x-styx-req-id: 3003d00b-6514-11ed-b9f4-0e42057539be x-ua-compatible: IE=edge x-xss-protection: 1; mode=block date: Tue, 15 Nov 2022 18:34:49 GMT x-served-by: cache-chi-kigq8000083-CHI, cache-bma1621-BMA x-cache: MISS, MISS x-cache-hits: 0, 0 x-timer: S1668537290.708185,VS0,VE156 vary: Accept-Encoding, Cookie, Cookie age: 0 accept-ranges: bytes via: 1.1 varnish, 1.1 varnish content-length: 20 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D" Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8224 Expires: Tue, 15 Nov 2022 20:51:53 GMT Date: Tue, 15 Nov 2022 18:34:49 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D" Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8224 Expires: Tue, 15 Nov 2022 20:51:53 GMT Date: Tue, 15 Nov 2022 18:34:49 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D" Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8224 Expires: Tue, 15 Nov 2022 20:51:53 GMT Date: Tue, 15 Nov 2022 18:34:49 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D" Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8224 Expires: Tue, 15 Nov 2022 20:51:53 GMT Date: Tue, 15 Nov 2022 18:34:49 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D" Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8224 Expires: Tue, 15 Nov 2022 20:51:53 GMT Date: Tue, 15 Nov 2022 18:34:49 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F040363e6-40a3-4d68-bf2e-ca83ac195dcc.jpeg	34.120.237.76	200 OK	6.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F040363e6-40a3-4d68-bf2e-ca83ac195dcc.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.3 kB (6318 bytes) Hash 4af82634a56d0978c9b4689c8b7eb8ae 4b40ef08bd37cabfcb937053dd58012abdd6620f 476a9f850cfbe41adea1d699fdf4f04424674c53b268681fa6fc0e226bed0797 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F040363e6-40a3-4d68-bf2e-ca83ac195dcc.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6318 x-amzn-requestid: 6469c84d-fc45-470e-a438-2fb81dae70c2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bhPtyHpXoAMFfWA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63705ff1-53ab9291301773c048f69696;Sampled=0 x-amzn-remapped-date: Sun, 13 Nov 2022 03:09:37 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: wqcEh0RSwy9RNH7gsYRXlweR2UEaMMHPH4zIg-kY58Lfsx2wVcOKBA== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google date: Tue, 15 Nov 2022 04:26:39 GMT age: 50890 etag: "4b40ef08bd37cabfcb937053dd58012abdd6620f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (11316 bytes) Hash 848af62ec10d0c297922f8600b6ad12d 4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d a3b4eb6768259876819d7e6c7ac9e21c603d54f60bf70ed077cb820711e2ae74 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11316 x-amzn-requestid: 8456b25a-b87f-490d-86b3-fb217afea082 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bWlniESaIAMF3Qg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636c1c96-30ed3b0972418bae4700edc8;Sampled=0 x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: CqIZqrKKIWszHFwass9Cd-GNxQ5Q9z3_2haPPGprjVDal71MQDurqw== via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google date: Tue, 15 Nov 2022 04:17:10 GMT age: 51459 etag: "4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfe73af-53c0-4706-a320-987a036d5df3.png	34.120.237.76	200 OK	14 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfe73af-53c0-4706-a320-987a036d5df3.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 14 kB (13491 bytes) Hash 11b09e0954b0c369b17157cbec3a9faa e58d41c729265821354d74bf3ede201367c26520 10c5a9996520f504c1fd3e0b7f3d534e67e062067f5708c92ab6bea92f252653 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfe73af-53c0-4706-a320-987a036d5df3.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13491 x-amzn-requestid: c1c11381-c73e-4068-aafd-4a2e9db024f9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: blxEFG06IAMFk8g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63722ee6-5b5137ae63a9d76c3d4d0957;Sampled=0 x-amzn-remapped-date: Mon, 14 Nov 2022 12:04:54 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: l-W-3M52mBUbg8k0CXZzw836bKHu01r3i_7z4CgLbrEneahWNR2n1Q== via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google date: Tue, 15 Nov 2022 11:55:53 GMT age: 23936 etag: "e58d41c729265821354d74bf3ede201367c26520" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9b23464-6c45-4e45-acd1-ac75bde164c7.jpeg	34.120.237.76	200 OK	8.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9b23464-6c45-4e45-acd1-ac75bde164c7.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.0 kB (7982 bytes) Hash 508368e91f7702272c5610f905e4204b 0d61ccdb959e45368a9f6ada26679974374d81a2 bd3b3d55264bccbbf647577e3f93c35dd56840967713fcb948e67426c8a71b38 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9b23464-6c45-4e45-acd1-ac75bde164c7.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7982 x-amzn-requestid: 35753773-2e2d-4def-a9ef-6224343d62e0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bklm8E9qoAMFQgQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6371b62c-46372f151eb5ba9f0f5ec3a0;Sampled=0 x-amzn-remapped-date: Mon, 14 Nov 2022 03:29:48 GMT x-amz-cf-pop: SEA19-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: T8ocx27r2N_V74-jyk23ATbGtw9TJBqSRB0MK0Kahre8ESS5kM_9lQ== via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google date: Mon, 14 Nov 2022 21:47:48 GMT age: 74821 etag: "0d61ccdb959e45368a9f6ada26679974374d81a2" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11e6547-de5b-41d6-a923-9194b88afaba.jpeg	34.120.237.76	200 OK	5.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11e6547-de5b-41d6-a923-9194b88afaba.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.9 kB (5856 bytes) Hash b891dd714ee24b92f59f0697dd45c2b4 8b54f502df3eb318b87ff8a3313007876752e181 d50396bc97a46452ed3af30dbfffc9fe75cf7d4ec347c0a8460d99a6affd1fb2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11e6547-de5b-41d6-a923-9194b88afaba.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5856 x-amzn-requestid: 5261109d-ca5e-4b77-b0a2-17b634a51fd8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bhPtpFvRoAMFfZg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63705ff0-570bdfbd329fe34b47d8c7a4;Sampled=0 x-amzn-remapped-date: Sun, 13 Nov 2022 03:09:36 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 8XeCtd88wwfynTV2w67E7r__KCAAIAsfv7sg67o_HSehIsIBae_SkQ== via: 1.1 ba55932f4947672586f0865cea81e028.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google date: Tue, 15 Nov 2022 04:01:21 GMT age: 52408 etag: "8b54f502df3eb318b87ff8a3313007876752e181" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg	34.120.237.76	200 OK	9.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.3 kB (9311 bytes) Hash c5f45accbd2d3551103631fa77deee8f 7295ef4c52bcea1be24b963d7ff170ef5bacf713 495e2cef9d9ebec66f1ddcf478512af7e37a301b562d7b75e5d28bb7753d2290 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9311 x-amzn-requestid: 32874a50-bbc5-4246-a819-cd65fe918bd6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bKuFsG5IIAMF7zg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63675d57-64c21f6448b29b4710c8c638;Sampled=0 x-amzn-remapped-date: Sun, 06 Nov 2022 07:08:07 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: wLkQgLmUk7U5jQPXEljFQpuwHVgHUKHHA63UwzEicdLPMMo1decu3g== via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google date: Tue, 15 Nov 2022 05:54:08 GMT age: 45641 etag: "7295ef4c52bcea1be24b963d7ff170ef5bacf713" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	platform.fonolo.com/v2/callback/CP0009fdcb5f4e548df585e7396ceb12b1/?c=fonolo_widget&u=https://www.cuofco.org/&s=&tz=0&input[name]=Test%20User&input[account]=12345&t=embedded	3.137.31.241	200 OK	181 B
URL HTTP/2 platform.fonolo.com/v2/callback/CP0009fdcb5f4e548df585e7396ceb12b1/?c=fonolo_widget&u=https://www.cuofco.org/&s=&tz=0&input[name]=Test%20User&input[account]=12345&t=embedded IP 3.137.31.241:0 ASN #16509 AMAZON-02 File type ASCII text Size 181 B (181 bytes) Hash 894cd45b6bf4af079ed4a6cf3faf34c9 f9ed0a1cfa32165237585463bdfbde0497e68a38 13222568ac0b33fa114a9ee34db1c5641ddd7c6a5e1f57b7e13e5aadd81dc25c HTTP Headers `GET /v2/callback/CP0009fdcb5f4e548df585e7396ceb12b1/?c=fonolo_widget&u=https://www.cuofco.org/&s=&tz=0&input[name]=Test%20User&input[account]=12345&t=embedded HTTP/1.1 Host: platform.fonolo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK date: Tue, 15 Nov 2022 18:34:48 GMT content-type: text/javascript;charset=utf-8 server: nginx content-language: en content-encoding: gzip vary: Accept-Encoding strict-transport-security: max-age=63072000; includeSubDomains; preload x-content-type-options: nosniff cache-control: no-store, max-age=0 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 5891b0761cd9f37ec5187c731f2f9532 edb84dd7de2d0228a5e130e5bc279d87d38686b8 388c612f9a5071449346d2cb80c1b33ebf8fdc53c6bd1a3295914fb918c3640a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:50 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 5b80883a318b116e8b967c4e7c5fb219 4d7a8f63edad447a8b46f7816b950d90e01c7872 2b1bf5e0056b5d2dabc4a7ce5da47044293386d238e666abfa8c9c6d25da44aa HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:50 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-55836619-1&cid=392461123.1668537289&jid=2038769984&_u=YEBAAEAAAAAAACAAI~&z=121542004	142.250.74.35	200 OK	42 B
URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-55836619-1&cid=392461123.1668537289&jid=2038769984&_u=YEBAAEAAAAAAACAAI~&z=121542004 IP 142.250.74.35:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers `GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-55836619-1&cid=392461123.1668537289&jid=2038769984&_u=YEBAAEAAAAAAACAAI~&z=121542004 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Tue, 15 Nov 2022 18:34:50 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-55836619-1&cid=392461123.1668537289&jid=2038769984&_u=YEBAAEAAAAAAACAAI~&z=121542004	142.250.74.164	200 OK	42 B
URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-55836619-1&cid=392461123.1668537289&jid=2038769984&_u=YEBAAEAAAAAAACAAI~&z=121542004 IP 142.250.74.164:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers `GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-55836619-1&cid=392461123.1668537289&jid=2038769984&_u=YEBAAEAAAAAAACAAI~&z=121542004 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Tue, 15 Nov 2022 18:34:50 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 5891b0761cd9f37ec5187c731f2f9532 edb84dd7de2d0228a5e130e5bc279d87d38686b8 388c612f9a5071449346d2cb80c1b33ebf8fdc53c6bd1a3295914fb918c3640a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:50 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 9d9493125a22b98bd2ac3a1b11cc0a12 8334175b79551b1e0592f63eb606543c915983a2 a583076207a416f2ccbb70821bc5185bb6b8e86180221014638af5af3b34a7fa HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:50 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	alpixtrack.com/ad/ord=1668537289239?prd=web&cust=1453609-751-KUSA&event_type=visit&version=0.1.2&utm_source=unk&utm_mdm=unk&url=https%3A%2F%2Fwww.cuofco.org%2F&title=Homepage%20%7C%20Credit%20Union%20of%20Colorado&sess_status=st&sess=1668537340002&ref=	130.211.141.45	200 OK	35 B
URL HTTP/1.1 alpixtrack.com/ad/ord=1668537289239?prd=web&cust=1453609-751-KUSA&event_type=visit&version=0.1.2&utm_source=unk&utm_mdm=unk&url=https%3A%2F%2Fwww.cuofco.org%2F&title=Homepage%20%7C%20Credit%20Union%20of%20Colorado&sess_status=st&sess=1668537340002&ref= IP 130.211.141.45:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type GIF image data, version 87a, 1 x 1\012- data Size 35 B (35 bytes) Hash 87aec5a94c94ec7a5dd1c0839eb0182b d6bff0d70b60442d004c0affe6c1ab890615046a 3992b901546ef4e2685680badcd372d0834724caf9b1c95ea0f1e7c4ce6e5bc8 HTTP Headers GET /ad/ord=1668537289239?prd=web&cust=1453609-751-KUSA&event_type=visit&version=0.1.2&utm_source=unk&utm_mdm=unk&url=https%3A%2F%2Fwww.cuofco.org%2F&title=Homepage%20%7C%20Credit%20Union%20of%20Colorado&sess_status=st&sess=1668537340002&ref= HTTP/1.1 Host: alpixtrack.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Server: nginx/1.20.0 Date: Tue, 15 Nov 2022 18:34:50 GMT Content-Type: image/gif Content-Length: 35 Connection: keep-alive ETag: "560c609e-23" Access-Control-Allow-Origin: * Vary: Origin Accept-Ranges: bytes`

	js-agent.newrelic.com/nr-1216.min.js	151.101.86.137	200 OK	14 kB
URL HTTP/2 js-agent.newrelic.com/nr-1216.min.js IP 151.101.86.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (32022) Size 14 kB (14391 bytes) Hash b7c09cc097b2847f9edc784adba62dcb 5aa648623cf5e3b4b215fe5d068a7904c59f2925 6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa HTTP Headers `GET /nr-1216.min.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8= x-amz-request-id: 4AV5AVKCCR961CNG last-modified: Thu, 14 Apr 2022 16:45:57 GMT etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8" x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy content-type: application/javascript server: AmazonS3 cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Tue, 15 Nov 2022 18:34:50 GMT via: 1.1 varnish x-served-by: cache-bma1634-BMA x-cache: HIT x-cache-hits: 5601 x-timer: S1668537290.247033,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 14391 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash d96fba17b1f528e0e6f4a01e886446ed edc5b2d8e2df86e9610df5404390ea52e52dc93f 9efa0944bbe2a5971367a32ae98866d8c1c54fc4507170a7d1884a473123c1ab HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 760 Cache-Control: max-age=101338 Content-Type: application/ocsp-response Date: Tue, 15 Nov 2022 18:34:50 GMT Etag: "6372c1ac-1d7" Expires: Wed, 16 Nov 2022 22:43:48 GMT Last-Modified: Mon, 14 Nov 2022 22:31:08 GMT Server: ECS (ska/F70B) X-Cache: HIT Content-Length: 471`

	bam.nr-data.net/1/NRJS-3105bae7edcf5b778ec?a=311710469&v=1216.487a282&to=ZF1RMEUADxAEBkNRVl0XcgdDCA4NSiFFTUlSVG8KWAUEPyYKWUxLXFRfAUU9LwwBAGFRXER7XApDEw4PCQBFFQdFUVYT&rst=2882&ck=1&ref=https://www.cuofco.org/&ap=925&be=520&fe=2772&dc=1194&perf=%7B%22timing%22:%7B%22of%22:1668537287000,%22n%22:0,%22f%22:302,%22dn%22:311,%22dne%22:436,%22c%22:436,%22s%22:447,%22ce%22:465,%22rq%22:465,%22rp%22:479,%22rpe%22:482,%22dl%22:503,%22di%22:1179,%22ds%22:1193,%22de%22:1297,%22dc%22:2771,%22l%22:2771,%22le%22:2774%7D,%22navigation%22:%7B%7D%7D&fcp=998&at=SBpSRg0aHB4%3D&jsonp=NREUM.setToken	162.247.241.14	200 OK	73 B
URL HTTP/1.1 bam.nr-data.net/1/NRJS-3105bae7edcf5b778ec?a=311710469&v=1216.487a282&to=ZF1RMEUADxAEBkNRVl0XcgdDCA4NSiFFTUlSVG8KWAUEPyYKWUxLXFRfAUU9LwwBAGFRXER7XApDEw4PCQBFFQdFUVYT&rst=2882&ck=1&ref=https://www.cuofco.org/&ap=925&be=520&fe=2772&dc=1194&perf=%7B%22timing%22:%7B%22of%22:1668537287000,%22n%22:0,%22f%22:302,%22dn%22:311,%22dne%22:436,%22c%22:436,%22s%22:447,%22ce%22:465,%22rq%22:465,%22rp%22:479,%22rpe%22:482,%22dl%22:503,%22di%22:1179,%22ds%22:1193,%22de%22:1297,%22dc%22:2771,%22l%22:2771,%22le%22:2774%7D,%22navigation%22:%7B%7D%7D&fcp=998&at=SBpSRg0aHB4%3D&jsonp=NREUM.setToken IP 162.247.241.14:0 ASN #23467 NEWRELIC-AS-1 File type ASCII text, with no line terminators Size 73 B (73 bytes) Hash 516a128bb6000ca8154792678f4333fb 41d0257bea96afd36c6f3e40fcfdc9ca247f8e01 9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10 HTTP Headers GET /1/NRJS-3105bae7edcf5b778ec?a=311710469&v=1216.487a282&to=ZF1RMEUADxAEBkNRVl0XcgdDCA4NSiFFTUlSVG8KWAUEPyYKWUxLXFRfAUU9LwwBAGFRXER7XApDEw4PCQBFFQdFUVYT&rst=2882&ck=1&ref=https://www.cuofco.org/&ap=925&be=520&fe=2772&dc=1194&perf=%7B%22timing%22:%7B%22of%22:1668537287000,%22n%22:0,%22f%22:302,%22dn%22:311,%22dne%22:436,%22c%22:436,%22s%22:447,%22ce%22:465,%22rq%22:465,%22rp%22:479,%22rpe%22:482,%22dl%22:503,%22di%22:1179,%22ds%22:1193,%22de%22:1297,%22dc%22:2771,%22l%22:2771,%22le%22:2774%7D,%22navigation%22:%7B%7D%7D&fcp=998&at=SBpSRg0aHB4%3D&jsonp=NREUM.setToken HTTP/1.1 Host: bam.nr-data.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Date: Tue, 15 Nov 2022 18:34:51 GMT Content-Type: text/javascript Transfer-Encoding: chunked Connection: keep-alive CF-Ray: 76aa1550ada80b39-OSL Access-Control-Allow-Origin: * Set-Cookie: JSESSIONID=8cf448bfda9ddcfd; Path=/; Domain=.nr-data.net; Secure; SameSite=None CF-Cache-Status: DYNAMIC access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS Cross-Origin-Resource-Policy: cross-origin Vary: Accept-Encoding Server: cloudflare Content-Encoding: gzip

	client-logger.salemove.com/	54.167.188.17	204 No Content	0 B
URL HTTP/1.1 client-logger.salemove.com/ IP 54.167.188.17:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST / HTTP/1.1 Host: client-logger.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Origin: https://www.cuofco.org Content-Length: 8529 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/1.1 204 No Content access-control-allow-origin: * access-control-allow-methods: POST access-control-expose-headers: access-control-max-age: 7200 strict-transport-security: max-age=31536000 vary: Origin x-envoy-upstream-service-time: 1 date: Tue, 15 Nov 2022 18:34:51 GMT server: envoy`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c048f3e-f5d6-474b-926e-cfa0f872a7e6.jpeg	34.120.237.76	200 OK	9.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c048f3e-f5d6-474b-926e-cfa0f872a7e6.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.4 kB (9446 bytes) Hash fcd8c821cc1f76bbeb3535701b0385e5 398ee550da0a20bd7acf15287ef478fcf08f4738 6b55b0f3a025cf90ac05ae6f5689349ce2eb32d067498de7301ec5a307247a0e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c048f3e-f5d6-474b-926e-cfa0f872a7e6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 9446 x-amzn-requestid: a8e15861-ac8b-4b6a-b1a7-235fcae0c124 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: blF8lHfjIAMFqpA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6371e9e9-42c44c247dd4e04d292eb953;Sampled=0 x-amzn-remapped-date: Mon, 14 Nov 2022 07:10:34 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: O-q5RI1NQrxVuEdLNyLnsdxqnFbyn9okLo3Xi8S5wHCfhD4wUP3RMg== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google date: Tue, 15 Nov 2022 07:45:45 GMT age: 38951 etag: "398ee550da0a20bd7acf15287ef478fcf08f4738" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	libs.salemove.com/visitor/bootstrapper-073cb7c21.js	54.230.111.12	200 OK	0 B
URL HTTP/2 libs.salemove.com/visitor/bootstrapper-073cb7c21.js IP 54.230.111.12:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /visitor/bootstrapper-073cb7c21.js HTTP/1.1 Host: libs.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript date: Mon, 14 Nov 2022 12:48:59 GMT last-modified: Mon, 14 Nov 2022 06:42:20 GMT etag: W/"b1ebe1ffddfb1a0398489e9f7e94e553" x-amz-meta-s3cmd-attrs: md5:b1ebe1ffddfb1a0398489e9f7e94e553 cache-control: max-age=31536000 server: AmazonS3 strict-transport-security: max-age=63072000; includeSubdomains; preload content-encoding: gzip vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method,Origin x-cache: Hit from cloudfront via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: qOtcTkY8-bm4jZkceqiL5qEFGb55pSrCcui-0uAe4LpWvSbvsvas-Q== age: 107150 X-Firefox-Spdy: h2

	static.addtoany.com/menu/page.js	104.22.71.197	200 OK	0 B
URL HTTP/2 static.addtoany.com/menu/page.js IP 104.22.71.197:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /menu/page.js HTTP/1.1 Host: static.addtoany.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 15 Nov 2022 18:34:48 GMT content-type: application/javascript; charset=utf-8 cache-control: public, max-age=172800 cf-bgj: minify access-control-allow-origin: * age: 151453 etag: W/"bb9-5ec71e264ddf8" last-modified: Wed, 02 Nov 2022 00:25:57 GMT vary: Accept-Encoding via: e1s x-content-type-options: nosniff cf-cache-status: HIT strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 76aa15427ef20a27-ARN content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=PT+Sans:wght@400;700&family=Sanchez&display=swap	142.250.74.10	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css2?family=PT+Sans:wght@400;700&family=Sanchez&display=swap IP 142.250.74.10:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css2?family=PT+Sans:wght@400;700&family=Sanchez&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 15 Nov 2022 18:34:48 GMT date: Tue, 15 Nov 2022 18:34:48 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	tr.snapchat.com/collector/is_enabled?pids=3e513984-0c3d-4f3e-866e-64c50d47f06b&tld=org	35.190.43.134	200 OK	0 B
URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=3e513984-0c3d-4f3e-866e-64c50d47f06b&tld=org IP 35.190.43.134:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /collector/is_enabled?pids=3e513984-0c3d-4f3e-866e-64c50d47f06b&tld=org HTTP/1.1 Host: tr.snapchat.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.cuofco.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 15 Nov 2022 18:34:49 GMT access-control-allow-origin: https://www.cuofco.org content-type: application/json strict-transport-security: max-age=31536000; includeSubDomains; preload x-envoy-upstream-service-time: 2 content-encoding: gzip vary: Accept-Encoding server: API Gateway access-control-allow-credentials: true via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	libs.salemove.com/visitor-app.3a6885d2.default.css	54.230.111.12	200 OK	0 B
URL HTTP/2 libs.salemove.com/visitor-app.3a6885d2.default.css IP 54.230.111.12:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /visitor-app.3a6885d2.default.css HTTP/1.1 Host: libs.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: text/css date: Mon, 14 Nov 2022 13:38:05 GMT last-modified: Fri, 11 Nov 2022 12:56:39 GMT etag: W/"b2057ac7cfaa6e3f675b5287c3fd442e" x-amz-meta-s3cmd-attrs: md5:b2057ac7cfaa6e3f675b5287c3fd442e cache-control: max-age=31536000 server: AmazonS3 strict-transport-security: max-age=63072000; includeSubdomains; preload content-encoding: gzip vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method,Origin x-cache: Hit from cloudfront via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: Z01T5rIxiKmcAnUKn_SwGwvloQko9som41xkVer-Iy0cVo68ihSilg== age: 104205 X-Firefox-Spdy: h2

	libs.salemove.com/visitor-app.3a6885d2.min.js	54.230.111.12	200 OK	0 B
URL HTTP/2 libs.salemove.com/visitor-app.3a6885d2.min.js IP 54.230.111.12:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /visitor-app.3a6885d2.min.js HTTP/1.1 Host: libs.salemove.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: application/javascript date: Mon, 14 Nov 2022 13:38:05 GMT last-modified: Fri, 11 Nov 2022 12:56:39 GMT etag: W/"f4acd9f7222a6202ffdf4df2ef00ae8e" x-amz-meta-s3cmd-attrs: md5:f4acd9f7222a6202ffdf4df2ef00ae8e cache-control: max-age=31536000 server: AmazonS3 strict-transport-security: max-age=63072000; includeSubdomains; preload content-encoding: gzip vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method,Origin x-cache: Hit from cloudfront via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: woL-dYYAUTCxxRA0nRCwCh68YJiCiTD-pzwA6Vb69B3T8gJIsKuWCw== age: 104205 X-Firefox-Spdy: h2

	platform.fonolo.com/v2	3.137.31.241	200 OK	0 B
URL HTTP/2 platform.fonolo.com/v2 IP 3.137.31.241:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /v2 HTTP/1.1 Host: platform.fonolo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 15 Nov 2022 18:34:48 GMT content-type: text/javascript;charset=utf-8 access-control-allow-origin: * x-xss-protection: 1; mode=block expires: Tue, 15 Nov 2022 19:34:48 GMT content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2	216.58.207.195	200 OK	0 B
URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.cuofco.org Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 45300 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 09 Nov 2022 18:51:03 GMT expires: Thu, 09 Nov 2023 18:51:03 GMT cache-control: public, max-age=31536000 last-modified: Wed, 27 Apr 2022 16:11:08 GMT content-type: font/woff2 age: 517425 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (33)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations