Report - tracking.cirrusinsight.com/4f3da120-c47e-46a9-b970-b0277a3b7805/commcarehq-org-a-hiv-self-test-settings-project-subscription

Report Overview

Submitted URL
tracking.cirrusinsight.com/4f3da120-c47e-46a9-b970-b0277a3b7805/commcarehq-org-a-hiv-self-test-settings-project-subscription
IP
54.165.66.145
ASN
#14618 AMAZON-AES
Submitted
2023-02-03 23:43:25
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.148.119.23
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	4.8 kB	9.8 kB	142.250.74.163
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	375 B	21 kB	216.239.36.178
js.hs-analytics.net	2411	2013-09-26T04:22:44Z	2023-03-13T05:16:04Z	812 B	45 kB	104.17.67.176
p3s9fvl6gvhr.statuspage.io	506657	2022-06-20T16:25:37Z	2023-02-04T00:43:14Z	380 B	1.9 kB	52.215.192.133
fast.appcues.com	5455	2015-02-20T12:31:09Z	2023-03-13T08:53:31Z	843 B	127 kB	151.101.66.110
js.driftt.com	5753	2018-06-14T17:30:16Z	2023-03-13T09:01:06Z	405 B	720 kB	54.230.111.119
dnwn0mt1jqwp0.cloudfront.net	unknown	2016-03-26T13:20:47Z	2023-02-04T00:43:31Z	6.9 kB	1.0 MB	54.230.245.109
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	340 B	963 B	172.64.155.188
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	519 B	578 B	216.58.211.4
js-na1.hs-scripts.com	8274	2021-02-23T23:14:31Z	2023-03-13T08:28:22Z	369 B	1.4 kB	104.17.211.204
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.33.119.27
trk.kissmetrics.io	27068	2020-07-20T06:52:43Z	2023-03-10T14:57:42Z	910 B	748 B	54.84.30.144
track.hubspot.com	2528	2012-05-23T20:12:44Z	2023-03-13T05:16:10Z	714 B	1.2 kB	104.19.154.83
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	1.1 kB	2.7 kB	143.204.42.156
www.commcarehq.org	501127	2012-10-12T02:19:52Z	2023-02-04T16:14:19Z	1.2 kB	4.6 kB	75.2.106.21
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	403 B	45 kB	142.250.74.40
doug1izaerwt3.cloudfront.net	unknown	2012-10-16T16:09:37Z	2023-03-13T12:54:49Z	428 B	28 kB	54.230.80.66
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	2.0 kB	3.6 kB	93.184.220.29
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	1.5 kB	54 kB	216.58.207.227
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	419 B	1.8 kB	142.250.74.106
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-13T06:26:15Z	518 B	578 B	142.250.74.67
ipinfo.io	8136	2013-12-16T08:25:53Z	2023-03-13T05:42:51Z	415 B	529 B	34.117.59.81
js.hsadspixel.net	3795	2017-07-25T15:13:14Z	2023-03-13T06:45:15Z	361 B	1.1 kB	104.17.116.176
tracking.cirrusinsight.com	90358	2014-10-06T18:43:38Z	2023-03-09T06:51:11Z	1.0 kB	786 B	34.202.186.230
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.8 kB	66 kB	34.120.237.76
api.appcues.net	3188	2018-07-22T05:30:30Z	2023-03-13T11:12:23Z	576 B	278 B	52.27.176.125
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	620 B	597 B	64.233.165.156
js.hs-banner.com	2426	2020-03-26T18:45:21Z	2023-03-13T05:22:03Z	875 B	3.0 kB	172.64.154.85
js.hsleadflows.net	4609	2017-02-22T11:43:00Z	2023-03-13T06:45:15Z	402 B	1.3 kB	104.17.234.204

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-03 23:43:48	medium	Client IP	34.117.59.81	ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (23)

	URL	Size	First Seen	Last Seen
	i.kissmetrics.com/i.js?_=1675467828075	39 B	2023-03-07	2023-05-04
Pretty URL i.kissmetrics.com/i.js?_=1675467828075 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:02:20 Last Seen2023-05-04 02:50:45 Times Seen10 Hash b1ca97940743ae11772cd5117d4cc0f1 bb43ec4b616225219997b3326e273e12086cc8c5 2bc18c5e40b439c202bfa5d0a973c2a8c30ccdb6a83c85c5d0b55cd2abcad8b9 Loading...

	fast.appcues.com/30307.js?_=1675467828078	16 kB	2023-03-13	2023-03-13
Pretty URL fast.appcues.com/30307.js?_=1675467828078 IP 151.101.66.110 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:32 Last Seen2023-03-13 16:11:32 Times Seen1 Hash cff3abe312cda489dca8d97bfbecb5dd 2f09ab829ca4b36e0f244a82b02a47ce1dc5e6db b7ac7510b11f32a0cb117c7d89b34f9e5d517be8ec083c4d2f9fbde1f38bfdae Loading...

	dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/hqModules.js?version=779a619	4.9 kB	2023-03-13	2023-03-14
Pretty URL dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/hqModules.js?version=779a619 IP 54.230.245.109 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:32 Last Seen2023-03-14 01:02:28 Times Seen1 Hash 628b18e497b682e0c881f41149d0daa7 779a6197c153215cbb92a27b0c2d0cceac7c2c31 4cf5f5a5eb80681538d08d27c27a3f6db037b3dd866397421ddd032e85f914df Loading...

	www.commcarehq.org/a/hiv-self-test/login/?next=/a/hiv-self-test/settings/project/subscription/	591 B	2023-03-13	2023-03-14
Pretty URL www.commcarehq.org/a/hiv-self-test/login/?next=/a/hiv-self-test/settings/project/subscription/ IP 75.2.106.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:32 Last Seen2023-03-14 01:02:28 Times Seen1 Hash 9fbf05ac60112ad84cbff6d676da5c44 c67b30dbfb34b861e3987a3455729dcf8ee5a564 a459b31785478d979e978c5869f170073ea19e260a1eaf560a14288c58b755b5 Loading...

	www.commcarehq.org/static/jsi18n/en/djangojs.js	3.3 kB	2023-03-13	2023-04-02
Pretty URL www.commcarehq.org/static/jsi18n/en/djangojs.js IP 75.2.106.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:32 Last Seen2023-04-02 21:33:25 Times Seen4 Hash 23119541436e8e0f2dc3dc3d91435e1e b5889c5094eac60c3e5394cdd144aec4637d2c06 c53fbb5e9efaaccd1bbb445b5488bcc126d0e0eebbcd9db77d65b33a30a4f31a Loading...

	dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/common.js?version=1713ea5	248 kB	2023-03-13	2023-03-14
Pretty URL dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/common.js?version=1713ea5 IP 54.230.245.109 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:32 Last Seen2023-03-14 01:02:28 Times Seen1 Hash cda54df98dde4b313395fda757be6fbe 1713ea5c5b35134ce9f74257056f7c89f8e242b5 e3eee21b1c2cb569edf7b05bcbf8dce1d959e59bf1ca167465c2422e186bde8d Loading...

	js-na1.hs-scripts.com/503070.js	2.0 kB	2023-03-13	2023-03-13
Pretty URL js-na1.hs-scripts.com/503070.js IP 104.17.211.204 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:32 Last Seen2023-03-13 16:11:32 Times Seen1 Hash 2056265a280b1ef9f3163801dfad8f3e 17c7ad7f483a42a61d5de334f1bdc01ef41e2fda cce644c9e01fcc406699039cf82af443eb77c291f645e0ea11539044adb0a8eb Loading...

	js.hsleadflows.net/leadflows.js	557 kB	2023-03-13	2023-03-14
Pretty URL js.hsleadflows.net/leadflows.js IP 104.17.234.204 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:04:15 Last Seen2023-03-14 06:45:21 Times Seen1 Hash 998dfd36d3c4078a3a05a1a77e61963c 1209afaed65213332ac1e1a8b80800936e1d63aa fd43cd92e272c2e3872abd9559900116d85f2899e76c00015c59360060bcf062 Loading...

	dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/resource_versions.js?version=15e7d0d	1.8 MB	2023-03-13	2023-03-13
Pretty URL dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/resource_versions.js?version=15e7d0d IP 54.230.245.109 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:32 Last Seen2023-03-13 16:11:32 Times Seen1 Hash 7fa0e3f7a42bbfc7f055417688906e1a 3ddb31ce46444088b33a0531d5f0813369dc08dc 57524e7940eaf999ef31947767cf7547f796f05003cfc8738604d2a31fac6e50 Loading...

	dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/base_main.js?version=c1e6e9c	107 kB	2023-03-13	2023-03-14
Pretty URL dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/base_main.js?version=c1e6e9c IP 54.230.245.109 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:32 Last Seen2023-03-14 01:02:28 Times Seen1 Hash 801f1c0a8774f62b983614fbc8ce8a89 c1e6e9c0342e830fb7996b4ec0a416f9c5c70426 700491eef98eecbcd38aac1d50aa9ad1cb5e10b3d974fc4c88fce624050e0bbe Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 216.239.36.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	js.hs-analytics.net/analytics/1675467900000/503070.js?_=1675467828079	68 kB	2023-03-13	2023-03-14
Pretty URL js.hs-analytics.net/analytics/1675467900000/503070.js?_=1675467828079 IP 104.17.67.176 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:32 Last Seen2023-03-14 01:02:28 Times Seen1 Hash f31c7078ff2466d05203011f40db2ffe 98913e8c33dcd26b1168d3f87ed353eba4697d67 04a82d5baea7bd20a850b4d3439fc8b50a59e907989ce283ac655f3fae2d957a Loading...

	www.commcarehq.org/a/hiv-self-test/login/?next=/a/hiv-self-test/settings/project/subscription/	249 B	2023-03-13	2023-03-14
Pretty URL www.commcarehq.org/a/hiv-self-test/login/?next=/a/hiv-self-test/settings/project/subscription/ IP 75.2.106.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:32 Last Seen2023-03-14 01:02:28 Times Seen1 Hash f149d1183c881a0b6afd23dfdcb1a382 2b435fc8234f53eb16a25509b8a242b9fbe475dc 295a2d07fe9580d725437291f679b9b41d6e0ebbfb0c57b9910dd94439e874ff Loading...

	p3s9fvl6gvhr.statuspage.io/embed/script.js	1.6 kB	2023-03-13	2023-03-14
Pretty URL p3s9fvl6gvhr.statuspage.io/embed/script.js IP 52.215.192.133 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:32 Last Seen2023-03-14 01:02:28 Times Seen1 Hash 2432b9f3b02a3cfb1613e280a6514b2a f9011de77bc95696c45033648a4b0ae20b785eae 8564c5226632c8a4d1d5670b89f146a1e3c10feec7db88cad9d20f84709ea078 Loading...

	www.googletagmanager.com/gtag/js?id=UA-22103010-1&_=1675467828077	112 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-22103010-1&_=1675467828077 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:33 Last Seen2023-03-13 16:11:33 Times Seen1 Hash 7eb28acf9877de65c55b7156d6f59cdb 5b7f3f748618ccb57ec35eb279e481ba1b14905d 7204bd67c92c23e3ca17be755cb9607bde6775c6194f90a8fc6539151883451d Loading...

	js.hs-banner.com/503070.js	62 kB	2023-03-13	2023-03-14
Pretty URL js.hs-banner.com/503070.js IP 172.64.154.85 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:33 Last Seen2023-03-14 01:02:28 Times Seen1 Hash 21216917605380fe61bce591c1f51621 0f0ab6faadf61942bec44d70b5d03abe70c1a078 b9cdb1284cc1d6f7434725d66c0fb0c72f862a932aea0094e9ad570d805ca252 Loading...

	doug1izaerwt3.cloudfront.net/cd451ba27fd7233e6e0c660a2184ff34560ea749.1.js?_=1675467828076	27 kB	2023-03-13	2023-03-14
Pretty URL doug1izaerwt3.cloudfront.net/cd451ba27fd7233e6e0c660a2184ff34560ea749.1.js?_=1675467828076 IP 54.230.80.66 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:33 Last Seen2023-03-14 01:02:28 Times Seen1 Hash 1226dbce6ea7cab79699360dea339ff6 fc37d976356369203e96d0d66d7b68704bd4abd8 7feba3012a7d06505babf80e6c647a2b2aa5b62b42f21191f8cd1c274984d3c4 Loading...

	js.driftt.com/include/1675467900000/7456r8nz2u34.js?_=1675467828082	217 kB	2023-03-13	2023-03-13
Pretty URL js.driftt.com/include/1675467900000/7456r8nz2u34.js?_=1675467828082 IP 54.230.111.119 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:12:35 Last Seen2023-03-13 18:45:10 Times Seen1 Hash 8ead115aa6b8dd4cf82dbba47b818130 a27c723ed79222734b7d6716e9a2ff361c1d6dcf c1f22198f612a3b0cb9bb29f17b4d3887c8c5256295c92a027c571721acdf5ad Loading...

	js.hsadspixel.net/fb.js	5.8 kB	2023-03-13	2023-03-14
Pretty URL js.hsadspixel.net/fb.js IP 104.17.116.176 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:26:44 Last Seen2023-03-14 07:00:52 Times Seen1 Hash bde7af4ffd2c05ea8423271f767ebc69 4a66f5562129238153fc7c570d0bfd9c66916db3 f7455fff3d4e08245186e113636f69cbc44679bdf8870de5e4fd9a835e3d2e93 Loading...

	dnwn0mt1jqwp0.cloudfront.net/static/requirejs/require.js?version=33bc97e	86 kB	2023-03-07	2024-04-07
Pretty URL dnwn0mt1jqwp0.cloudfront.net/static/requirejs/require.js?version=33bc97e IP 54.230.245.109 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:59 Last Seen2024-04-07 18:39:59 Times Seen189 Hash f0cc8bbb2fcef87fc194fecbb632fcfa 33bc97e78f4905e72b4c1eb2ca0a4662588443e3 9485f0917f97fcf4f63a5ea365200ffd57f123f451382a2f9a1ad2e2fd51ac9b Loading...

	dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/requirejs_config.js?version=0fd7414	39 kB	2023-03-13	2023-03-14
Pretty URL dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/requirejs_config.js?version=0fd7414 IP 54.230.245.109 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:11:33 Last Seen2023-03-14 01:02:28 Times Seen1 Hash cc0edd712e64a218615440c8d476ad67 0f966977388cbc8992e7a32f7c94c0907694ec4a 101f45e3d3e2f716e3c1616fbb8515651a9d1a4297f185cbbb5d9ad674d17636 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 10:20:48 Times Seen37060637 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	p3s9fvl6gvhr.statuspage.io/embed/frame	6.3 kB	2023-03-07	2024-04-22
Pretty URL p3s9fvl6gvhr.statuspage.io/embed/frame IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:20 Last Seen2024-04-22 17:29:50 Times Seen175 Hash fbc3bffc92e6725e2bab1b1bd5a8e092 a8f3ebe9b6d1a6cb708e3c00dec8100b6c7c168e 9544a51c8b178ecbeacce0475053d02dfc589d8e8300b5b11f8e561133509047 Loading...

HTTP Transactions (91)

	URL	IP	Response	Size
	tracking.cirrusinsight.com/4f3da120-c47e-46a9-b970-b0277a3b7805/commcarehq-org-a-hiv-self-test-settings-project-subscription	34.202.186.230	301 Moved Permanently	134 B
URL HTTP/1.1 tracking.cirrusinsight.com/4f3da120-c47e-46a9-b970-b0277a3b7805/commcarehq-org-a-hiv-self-test-settings-project-subscription IP 34.202.186.230:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 134 B (134 bytes) Hash 4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a HTTP Headers `GET /4f3da120-c47e-46a9-b970-b0277a3b7805/commcarehq-org-a-hiv-self-test-settings-project-subscription HTTP/1.1 Host: tracking.cirrusinsight.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Server: awselb/2.0 Date: Fri, 03 Feb 2023 23:43:12 GMT Content-Type: text/html Content-Length: 134 Connection: keep-alive Location: https://tracking.cirrusinsight.com:443/4f3da120-c47e-46a9-b970-b0277a3b7805/commcarehq-org-a-hiv-self-test-settings-project-subscription`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d4e95d0d8982bcd07804baf6fc88231c 5027abda0875bd2529dd4d6691784c74da71a9ee 373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21453 Expires: Sat, 04 Feb 2023 05:40:46 GMT Date: Fri, 03 Feb 2023 23:43:13 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash e935ea42be4feaed61a824b0b903913e f966cfa80d65a805cb9d7c6a53b3340865d7c51a eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3942 Expires: Sat, 04 Feb 2023 00:48:55 GMT Date: Fri, 03 Feb 2023 23:43:13 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Fri, 03 Feb 2023 22:43:35 GMT content-type: application/json age: 3578 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7d2222d41721947297aaeb5a6e3d0714 04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065 de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C" Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7432 Expires: Sat, 04 Feb 2023 01:47:05 GMT Date: Fri, 03 Feb 2023 23:43:13 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: EwTuatLste48p74vvSwt7caNRdn7HLLfsGQZ0FldyIdhMg69TOGAsCifD7tpaM9IofgKCaZwjsb6DA7QoBmEtw== x-amz-request-id: 3YMXW34AJ66DASTZ content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Fri, 03 Feb 2023 22:52:35 GMT age: 3038 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 23:43:13 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Fri, 03 Feb 2023 22:49:06 GMT age: 3247 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	143.204.42.156	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.156:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 85001ca7eea189a26846491574c67d29 9cbb290ff900da6e2b0c343078924c97e1522098 253b8c493570eefda516652ab899fb93d6f92cda9067bc90de2fe34ab47fea5a HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: 'max-age=158059' Date: Fri, 03 Feb 2023 23:43:13 GMT Etag: "63dca47b-1d7" Server: ECS (dcb/7F37) X-Cache: Miss from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: m0j_BpromYA58HCpgH6B-QazG8p1HhrL4zEnZNoVe2wzX2EXiYFZmA==`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8913af0be619500295008bb91f506660 a7b8068ba9aa506205a295b24458c2616997a0d1 6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A" Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2394 Expires: Sat, 04 Feb 2023 00:23:07 GMT Date: Fri, 03 Feb 2023 23:43:13 GMT Connection: keep-alive`

	push.services.mozilla.com/	54.148.119.23	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.148.119.23:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: FrVUpAETPqnP5/gqmXC7lA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 01k9kXx8xf+pgCpKhu1v0uWj1nU=`

	ocsp.sca1b.amazontrust.com/	143.204.42.156	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.156:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash b586fd09f5eaf3666b06bce902185a0a 7a2156cb4ff53d1ae9948e6e653d75157b4cfb93 0742dfa40f7ff14dd7ad8a9eb62abf5f2cfc05f2209346cea0defb3010ec504f HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: 'max-age=158059' Date: Fri, 03 Feb 2023 23:43:14 GMT Etag: "63dc3123-1d7" Server: ECS (dcb/7F80) X-Cache: Miss from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: jbzAoCEA40DCSjCxAHt1HBsOhIsxZkpMvu-qFE8-q8IkkE-VPmNygA==`

	tracking.cirrusinsight.com/4f3da120-c47e-46a9-b970-b0277a3b7805/commcarehq-org-a-hiv-self-test-settings-project-subscription	54.147.192.172	302 Found	0 B
URL HTTP/2 tracking.cirrusinsight.com/4f3da120-c47e-46a9-b970-b0277a3b7805/commcarehq-org-a-hiv-self-test-settings-project-subscription IP 54.147.192.172:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /4f3da120-c47e-46a9-b970-b0277a3b7805/commcarehq-org-a-hiv-self-test-settings-project-subscription HTTP/1.1 Host: tracking.cirrusinsight.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 `HTTP/2 302 Found date: Fri, 03 Feb 2023 23:43:13 GMT location: https://www.commcarehq.org/a/hiv-self-test/settings/project/subscription/ server: restify set-cookie: civisitor=c64ed8ad-e917-2ca6-3258-1deacb9faf73; Max-Age=31536000; Path=/ cache-control: no-cache, no-store, must-revalidate pragma: no-cache expires: 0 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash c181c51a9326d56e60915a792c306c2c de1cc0ce1384905e65a9fa9575743091d785e528 b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	dnwn0mt1jqwp0.cloudfront.net/static/CACHE/css/output.3ec91fd7eb80.css	54.230.245.109	200 OK	1.3 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/CACHE/css/output.3ec91fd7eb80.css IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (4802), with no line terminators Size 1.3 kB (1300 bytes) Hash 8fd900d79695217682f72c47338e0401 6d0adf3c8033735cc7db936c8aa84ba0946c65e9 151bbe3b1365a3de71f5418f7704ec8ff75c344c106f9d2e0bad0117a6042c4e HTTP Headers `GET /static/CACHE/css/output.3ec91fd7eb80.css HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Fri, 13 Jan 2023 05:30:10 GMT Server: nginx Last-Modified: Thu, 12 Jan 2023 06:22:48 GMT ETag: W/"63bfa738-12c2" Expires: Sun, 12 Feb 2023 05:30:10 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Nfl5hIuxuXOm7GrEo_OyfbeGUUTPq5rcOP0fQxXk7o03Ue6ypA-gHQ== Age: 1879984

	dnwn0mt1jqwp0.cloudfront.net/static/CACHE/css/output.a4ed04f99b78.css	54.230.245.109	200 OK	2.2 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/CACHE/css/output.a4ed04f99b78.css IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (16221), with no line terminators Size 2.2 kB (2163 bytes) Hash 6842e65b983f2d2fded129512c2f3edb 5c9822a8266efc753b90655b2ec958a840e00a98 f2972f1cf56cf25637507201f27fb19df561da6adce216dfe4cb7d3bef05cb0b HTTP Headers `GET /static/CACHE/css/output.a4ed04f99b78.css HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Tue, 17 Jan 2023 05:43:38 GMT Server: nginx Last-Modified: Fri, 13 Jan 2023 23:19:29 GMT ETag: W/"63c1e701-3f5d" Expires: Thu, 16 Feb 2023 05:43:38 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 75wVTgylecd9iki-GgJQ6CxEnf8lHvIJqXzfvbvms901bqEWcjVYjA== Age: 1533576

	dnwn0mt1jqwp0.cloudfront.net/static/requirejs/require.js?version=33bc97e	54.230.245.109	200 OK	21 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/requirejs/require.js?version=33bc97e IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type ASCII text Size 21 kB (21138 bytes) Hash ddf8bf905743cf7515a3d26001cc4436 2ad291d58e948f606189b0a686ac88b01b2ed396 b0c1194cff1e466d58f0dfbd90834e651b77127c08d21829fcbe972ee10ef9f4 HTTP Headers `GET /static/requirejs/require.js?version=33bc97e HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Date: Sun, 22 Jan 2023 04:57:27 GMT Server: nginx Last-Modified: Thu, 19 Jan 2023 06:31:20 GMT ETag: W/"63c8e3b8-151d3" Expires: Tue, 21 Feb 2023 04:57:27 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: kUM3IEbyskyFkGQsM4U9WN32T49ASWRR7BuqpV7aGjuS2dfFLy6bVA== Age: 1104347

	dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/hqModules.js?version=779a619	54.230.245.109	200 OK	1.8 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/hqModules.js?version=779a619 IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type HTML document, ASCII text Size 1.8 kB (1772 bytes) Hash ea000bdd7061df577c4c544dea309415 3a049823772e745e0bd8b975fb8e52bc55187549 462a8a8ee436ef8a8f98d9502c343aa6d6c8d8edf7a657b41c31dfb629eb0e13 HTTP Headers `GET /static/hqwebapp/js/hqModules.js?version=779a619 HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 12 Jan 2023 06:29:12 GMT Server: nginx Last-Modified: Thu, 12 Jan 2023 06:12:59 GMT ETag: W/"63bfa4eb-12f6" Expires: Sat, 11 Feb 2023 06:29:12 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: HUUWckdgnNLooc0S-kwKnqhWCY_4LUJ0Jlc9YsqSYmzBuQ46X84vIQ== Age: 1962842

	dnwn0mt1jqwp0.cloudfront.net/static/CACHE/css/output.d47bc2d906a0.css	54.230.245.109	200 OK	43 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/CACHE/css/output.d47bc2d906a0.css IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 43 kB (43104 bytes) Hash c391a09a0d72eafcbd2d6fa53a9fbc58 013e4c73f0e907f22104910708287441412e7568 983cbe616e94be8cdd84ec7106e4fe629fd1a088872b515a5c266e0d6d5e6bed HTTP Headers `GET /static/CACHE/css/output.d47bc2d906a0.css HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Wed, 11 Jan 2023 04:57:14 GMT Server: nginx Last-Modified: Wed, 04 Jan 2023 20:26:59 GMT ETag: W/"63b5e113-378bd" Expires: Fri, 10 Feb 2023 04:57:14 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: JuOS8UJ0mP_Wpewvrh3i_GHsD1EveB5SlBwNTrLUeK6YvSl3AAXm8Q== Age: 2054760

	dnwn0mt1jqwp0.cloudfront.net/static/intl-tel-input/build/css/intlTelInput.css?version=931656c	54.230.245.109	200 OK	3.1 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/intl-tel-input/build/css/intlTelInput.css?version=931656c IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (20414) Size 3.1 kB (3088 bytes) Hash a8efe2fee258063f886e2fd849b9d9a1 ddd68e66870c695b1d5737246a5a7f5073c57096 69e22333e85dbf59d225f6a5477ec7c85f3ed3a3aee978a01ffcb8ab9193ac53 HTTP Headers `GET /static/intl-tel-input/build/css/intlTelInput.css?version=931656c HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Date: Sat, 07 Jan 2023 06:48:00 GMT Server: nginx Last-Modified: Wed, 04 Jan 2023 20:18:46 GMT ETag: W/"63b5df26-4fbf" Expires: Mon, 06 Feb 2023 06:48:00 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: N-lwsspHs5so8ILr8yvp-L-54ppwRunmt0LMRpkqQofWIdPF2amW7w== Age: 2393714

	www.commcarehq.org/static/jsi18n/en/djangojs.js	75.2.106.21	200 OK	3.3 kB
URL HTTP/2 www.commcarehq.org/static/jsi18n/en/djangojs.js IP 75.2.106.21:0 ASN #16509 AMAZON-02 File type ASCII text Size 3.3 kB (3325 bytes) Hash 23119541436e8e0f2dc3dc3d91435e1e b5889c5094eac60c3e5394cdd144aec4637d2c06 c53fbb5e9efaaccd1bbb445b5488bcc126d0e0eebbcd9db77d65b33a30a4f31a HTTP Headers GET /static/jsi18n/en/djangojs.js HTTP/1.1 Host: www.commcarehq.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/a/hiv-self-test/login/?next=/a/hiv-self-test/settings/project/subscription/ Connection: keep-alive Cookie: sessionid=uqq6tuooggao66f4mcn1zbmdq40evyic; demo_workflow_mar2019_ab=variant; csrftoken=grH1ovKyJP963OYyJUQJG57vWXpmVSk8IlFXC3KyTuX2mZoyX27nYWSJepQ70VUL Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Fri, 03 Feb 2023 23:43:14 GMT content-type: application/javascript content-length: 3325 server: nginx last-modified: Thu, 02 Feb 2023 06:21:00 GMT etag: "63db564c-cfd" expires: Sun, 05 Mar 2023 23:43:14 GMT cache-control: max-age=2592000 access-control-allow-origin: * accept-ranges: bytes X-Firefox-Spdy: h2`

	dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/requirejs_config.js?version=0fd7414	54.230.245.109	200 OK	4.5 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/requirejs_config.js?version=0fd7414 IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type ASCII text Size 4.5 kB (4541 bytes) Hash 29b691408265673a56162a0e03cb6422 545f07e76af141d705e80dabcb97e6a4f6058412 944c8fc69929f664f63926352308bbd600fb201a4e179aa406f9dc515992f081 HTTP Headers `GET /static/hqwebapp/js/requirejs_config.js?version=0fd7414 HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 26 Jan 2023 14:30:47 GMT Server: nginx Last-Modified: Thu, 26 Jan 2023 14:19:14 GMT ETag: W/"63d28be2-9845" Expires: Sat, 25 Feb 2023 14:30:47 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: czgWYHLLplQ5aZ5-K41ynidZp9nCp7E1nCmt64XjtYVfDZ2tw9WsSA== Age: 724347

	dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/resource_versions.js?version=15e7d0d	54.230.245.109	200 OK	218 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/resource_versions.js?version=15e7d0d IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type ASCII text Size 218 kB (218198 bytes) Hash 6c43798f33cf4ac6a75a692197b14dbd 78542f7bf62e2838d40a7368cc832ab3a2915cf7 d6da3f39354b3abc6fb1bdfa1287cadea647205fd4aec0ddef800413d6d3a2ae HTTP Headers `GET /static/hqwebapp/js/resource_versions.js?version=15e7d0d HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 02 Feb 2023 06:47:26 GMT Server: nginx Last-Modified: Thu, 02 Feb 2023 06:25:54 GMT ETag: W/"63db5772-1c0bb6" Expires: Sat, 04 Mar 2023 06:47:26 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: zGZqLr1htxaH362P1IYbQsr3SCAnhnzSbymwCOtyj7ZsGLVmWfNf_Q== Age: 147348

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash c181c51a9326d56e60915a792c306c2c de1cc0ce1384905e65a9fa9575743091d785e528 b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 53fad07a779ec77b4af6e9f3a7d839c6 571fb997cd98b2a06647de2acae0fa3f75b495ee 527759d414f3be6072108550e96ef14e79e016a8f43a00973f3f24437f329bf1 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4069 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:14 GMT Last-Modified: Fri, 03 Feb 2023 22:35:25 GMT Server: ECS (ska/F706) X-Cache: HIT Content-Length: 471`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 23287a0337047631e479bb3cbe8b0fcd 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 23287a0337047631e479bb3cbe8b0fcd 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2	216.58.207.227	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data Size 17 kB (16980 bytes) Hash 8a97f720d330e75ccdbda9ae0e9f5e90 8e4fee916581ab48d385187705667cebc7500afe 97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787 HTTP Headers `GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.commcarehq.org Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 16980 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 02 Feb 2023 00:36:48 GMT expires: Fri, 02 Feb 2024 00:36:48 GMT cache-control: public, max-age=31536000 last-modified: Mon, 09 May 2022 18:33:54 GMT content-type: font/woff2 age: 169586 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2	216.58.207.227	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 17116, version 1.0\012- data Size 17 kB (17116 bytes) Hash bcf3a3fb620dfbee774f84e2c8e71530 40a79d240acdd7e5a95e165515ac7c0958a37971 280aaa8929329764ac3213ca093c63505cfcc665347939c79905c426d33867c5 HTTP Headers `GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.commcarehq.org Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 17116 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 02 Feb 2023 00:53:41 GMT expires: Fri, 02 Feb 2024 00:53:41 GMT cache-control: public, max-age=31536000 last-modified: Mon, 09 May 2022 18:31:19 GMT content-type: font/woff2 age: 168573 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 23287a0337047631e479bb3cbe8b0fcd 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 23287a0337047631e479bb3cbe8b0fcd 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:14 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2	216.58.207.227	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 16920, version 1.0\012- data Size 17 kB (16920 bytes) Hash 875cd87a3bfd0a454005f2b07ba35328 2ee20c6c9d1549d8d38b538e00903a75f5e02307 976177894b0cca88ff93ab02c6da363f2d55cce5d940139db955b251fcdd19a6 HTTP Headers `GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.commcarehq.org Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 16920 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 02 Feb 2023 10:05:59 GMT expires: Fri, 02 Feb 2024 10:05:59 GMT cache-control: public, max-age=31536000 age: 135435 last-modified: Mon, 09 May 2022 18:31:06 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/images/commcare-flower-footer.png?version=df495bd	54.230.245.109	200 OK	1.6 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/images/commcare-flower-footer.png?version=df495bd IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type PNG image data, 37 x 39, 8-bit/color RGBA, non-interlaced\012- data Size 1.6 kB (1609 bytes) Hash ab6ff4e0ad79b5ba56c59ddfdb2d5321 df495bdbc7ed99c60d4765ca95553a85ec45af57 ab1ddbd83ac86e0a39bdae443d2c9fe339652d907d2fe79a82087c24bbad3d41 HTTP Headers `GET /static/hqwebapp/images/commcare-flower-footer.png?version=df495bd HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: image/png Content-Length: 1609 Connection: keep-alive Date: Thu, 05 Jan 2023 05:08:14 GMT Server: nginx Last-Modified: Wed, 04 Jan 2023 20:18:53 GMT ETag: "63b5df2d-649" Expires: Sat, 04 Feb 2023 05:08:14 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: QSxbbabT9fDPUE_t1JhCbB4Rro8RjkPgKC5ht2LVyKEFTaho1T04cg== Age: 2572499

	dnwn0mt1jqwp0.cloudfront.net/static/hqstyle/images/commcare-flower.png?4ee5c2dce71d	54.230.245.109	200 OK	1.3 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/hqstyle/images/commcare-flower.png?4ee5c2dce71d IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data Size 1.3 kB (1322 bytes) Hash 145354667023089205df951a65d8bff5 ad60fd23393b4e814e42f440a81e3c6135dcfe61 4ee5c2dce71db1d1529733d337489c033db4d59022672e618c3b5cfb7ce46e6a HTTP Headers `GET /static/hqstyle/images/commcare-flower.png?4ee5c2dce71d HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://dnwn0mt1jqwp0.cloudfront.net/static/CACHE/css/output.d47bc2d906a0.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Content-Type: image/png Content-Length: 1322 Connection: keep-alive Date: Wed, 25 Jan 2023 05:27:03 GMT Server: nginx Last-Modified: Thu, 19 Jan 2023 06:31:29 GMT ETag: "63c8e3c1-52a" Expires: Fri, 24 Feb 2023 05:27:03 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: LL9BbtsWZbrOq5LD1lHwKCs6owmLVa5fz2aDWWFAvJ9w0RDlmBk6GQ== Age: 843371

	dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/common.js?version=1713ea5	54.230.245.109	200 OK	77 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/common.js?version=1713ea5 IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators Size 77 kB (76788 bytes) Hash 9b189b86599f8ffb16958b1e47d000a3 9158f42da09ce820fffddac5a8dc9c59e29abbf2 dc18c3ae4c72af823ba4fdfd9279f20b25bfc77bb8a0d9975e5d4d9c4b1f2974 HTTP Headers `GET /static/hqwebapp/js/common.js?version=1713ea5 HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Date: Sat, 21 Jan 2023 07:03:33 GMT Server: nginx Last-Modified: Thu, 19 Jan 2023 06:36:59 GMT ETag: W/"63c8e50b-3c6c7" Expires: Mon, 20 Feb 2023 07:03:33 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: yhoVGMJO6vEG3nAJOfcN0S_xT8ukbmLSTlJDhFZGYJPR4uIjE-XOGw== Age: 1183181

	dnwn0mt1jqwp0.cloudfront.net/static/hqstyle/images/commcare-icon-180x180.png?version=46d8f23	54.230.245.109	200 OK	20 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/hqstyle/images/commcare-icon-180x180.png?version=46d8f23 IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size 20 kB (20360 bytes) Hash f1688e20b6d88269cd1495d8ef0800b3 46d8f23db9d22d90c98f5409d0c3f759025be35d 127b72e428ec3b6e350ac7d6bbd6359d0c53e229bc51e932dadd99dc46377c42 HTTP Headers `GET /static/hqstyle/images/commcare-icon-180x180.png?version=46d8f23 HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: image/png Content-Length: 20360 Connection: keep-alive Date: Thu, 26 Jan 2023 07:34:35 GMT Server: nginx Last-Modified: Thu, 26 Jan 2023 06:12:06 GMT ETag: "63d219b6-4f88" Expires: Sat, 25 Feb 2023 07:34:35 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 4EeJICH5KmU2R-uLVleFeO7EFFzeboAjdSc1uky8DHcvTTM1JHtNNA== Age: 749319

	dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/images/favicon.png?version=bd1fede	54.230.245.109	200 OK	2.1 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/images/favicon.png?version=bd1fede IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Size 2.1 kB (2065 bytes) Hash 704c21a2a511269a3a8107215a231d11 bd1fedebd27ff908320f312965e6c15d1aecad58 de02f5041ee57fd0ccbd1219f6b9116b5c437b0ec4a0cab616e5def2875ba135 HTTP Headers `GET /static/hqwebapp/images/favicon.png?version=bd1fede HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: image/png Content-Length: 2065 Connection: keep-alive Date: Sat, 07 Jan 2023 07:33:17 GMT Server: nginx Last-Modified: Wed, 04 Jan 2023 20:18:53 GMT ETag: "63b5df2d-811" Expires: Mon, 06 Feb 2023 07:33:17 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Accept-Ranges: bytes X-Cache: Hit from cloudfront Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: on8LOVwNF1_UmrDOQjM-CU07_O2XWTdHhQx4LPHZOz8g1bu2FeHdjw== Age: 2390997

	dnwn0mt1jqwp0.cloudfront.net/static/fixtures/js/bundle.js?version=aa7cac7	54.230.245.109	200 OK	182 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/fixtures/js/bundle.js?version=aa7cac7 IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 182 kB (182378 bytes) Hash fbf2cbba7b1becae7171fbb181bf69f6 8c29e671bd2644b8814e7874cab39fc517914e8f b0899a2592c76cda659f5fabfd9764ac29b884418ac56b6ce73f046a2e816a1a HTTP Headers `GET /static/fixtures/js/bundle.js?version=aa7cac7 HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Date: Thu, 12 Jan 2023 06:29:14 GMT Server: nginx Last-Modified: Thu, 12 Jan 2023 06:18:24 GMT ETag: W/"63bfa630-9dd90" Expires: Sat, 11 Feb 2023 06:29:14 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 3-N36mFBvqOT52AYBCXPhQ8VveVlcy0qCwHwAeN54AfQhdHzHZE9ug== Age: 1962841

	fonts.googleapis.com/css?family=Nunito+Sans:100,300,400,500,700,800	142.250.74.106	200 OK	1.1 kB
URL HTTP/2 fonts.googleapis.com/css?family=Nunito+Sans:100,300,400,500,700,800 IP 142.250.74.106:0 ASN #15169 GOOGLE File type data Size 1.1 kB (1130 bytes) Hash 2ce2ec307caf31fbe8b1a6c8928c1fbb 6464161b38f64ba8bec215667186bc6b0ffeff91 05ec8a1749ebaa97b0cb2ece477669581dc891b45debc2835938aabf2c367f47 HTTP Headers `GET /css?family=Nunito+Sans:100,300,400,500,700,800 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 03 Feb 2023 23:43:14 GMT date: Fri, 03 Feb 2023 23:43:14 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6750 Expires: Sat, 04 Feb 2023 01:35:45 GMT Date: Fri, 03 Feb 2023 23:43:15 GMT Connection: keep-alive`

	p3s9fvl6gvhr.statuspage.io/embed/script.js	52.215.192.133	200 OK	1.1 kB
URL HTTP/2 p3s9fvl6gvhr.statuspage.io/embed/script.js IP 52.215.192.133:0 ASN #16509 AMAZON-02 File type data Size 1.1 kB (1129 bytes) Hash d2612277ce9fe5df83a1f20832ace049 e8f00b76b1f82be9b3253d756cd862882a87818c 16fcefbd3d5db7a3b6a778eacf964ec4996261445a69b470bd4c8bed31a19ecb HTTP Headers `GET /embed/script.js HTTP/1.1 Host: p3s9fvl6gvhr.statuspage.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK vary: Accept,Accept-Encoding,Fastly-SSL cache-control: max-age=0, private, must-revalidate x-cache: HIT content-type: text/javascript; charset=utf-8 content-encoding: gzip strict-transport-security: max-age=259200 date: Fri, 03 Feb 2023 23:43:14 GMT x-request-id: 0baa36e0-eefd-448e-aca6-7cb83dd697ba x-download-options: noopen x-xss-protection: 1; mode=block x-runtime: 0.062749 x-permitted-cross-domain-policies: none access-control-allow-origin: * accept-ranges: bytes x-content-type-options: nosniff etag: W/"gz[8564c5226632c8a4d1d5670b89f146a1]" x-statuspage-skip-logging: true x-statuspage-version: defcd6943c57aa52b4ccbc06e399f8f3919c36a5 referrer-policy: strict-origin-when-cross-origin age: 192 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6750 Expires: Sat, 04 Feb 2023 01:35:45 GMT Date: Fri, 03 Feb 2023 23:43:15 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6750 Expires: Sat, 04 Feb 2023 01:35:45 GMT Date: Fri, 03 Feb 2023 23:43:15 GMT Connection: keep-alive`

	dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/base_main.js?version=c1e6e9c	54.230.245.109	200 OK	37 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/hqwebapp/js/base_main.js?version=c1e6e9c IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 37 kB (36610 bytes) Hash 2dfc4df2c28c1763fddb1913cf919c04 06d087557d6a78e6e36c0ad0374068685a7a0752 25dc3bb32a5f47a752676a2d7c5dd5571e7e66141659054b1264ac456d7d56a2 HTTP Headers `GET /static/hqwebapp/js/base_main.js?version=c1e6e9c HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Date: Mon, 09 Jan 2023 09:35:53 GMT Server: nginx Last-Modified: Wed, 04 Jan 2023 20:24:09 GMT ETag: W/"63b5e069-1a1f7" Expires: Wed, 08 Feb 2023 09:35:53 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: CiPkB8u56sO9dHWt0LnYjvp_ro-TnpNe5mjZhSg16R-tUyzYz7qzBQ== Age: 2210842

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F650fe1e4-0f8a-4306-9cff-2ad3248d13b1.jpeg	34.120.237.76	200 OK	3.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F650fe1e4-0f8a-4306-9cff-2ad3248d13b1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 3.9 kB (3868 bytes) Hash 77e225775154732b55c206faa6fce355 126bdaa18d9a1650b5e3a4e883d89188e8bbf136 af7fb0e6cfe7082af183bd2ba5ef43ab3ef3f9e6df2761ed4534bd48aa078798 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F650fe1e4-0f8a-4306-9cff-2ad3248d13b1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 3868 x-amzn-requestid: f130379c-2ea2-43d6-a1b0-e3afd4811bc3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyEwLFYgIAMFzwg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd819a-3d0199ab38a410ff7a78a675;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:50:18 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: QrCYar2bxFJ_7bBH-5oJ4qdaS58NXDwNJxLI7ILxrBkzvzGV95PSFw== via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:30:36 GMT etag: "126bdaa18d9a1650b5e3a4e883d89188e8bbf136" content-type: image/jpeg age: 4359 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (13065 bytes) Hash cf80667db0c35c9c6139eca4ba5d12fd 4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590 d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13065 x-amzn-requestid: 54c06759-6fab-455c-be34-496ee42a2580 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fSZLQEqroAMFyWA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d0d57b-2237358a5cc22b8003af1852;Sampled=0 x-amzn-remapped-date: Wed, 25 Jan 2023 07:08:43 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: oc3NhvAmcrO3msFYF2ITsEpq8a2wsOLkXtmZxRQpmse84yml0l9PNA== via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 21:46:57 GMT age: 6978 etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10253 bytes) Hash 392b61306c346508d3ac4a2f28218f9c d2de32b52e0d3f4fc6acaf687b3521294b01dc03 018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10253 x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyD7GGv5IAMFu8A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw== via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:10:32 GMT age: 5563 etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg	34.120.237.76	200 OK	6.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.7 kB (6718 bytes) Hash 45c6a062f8637e689819f505b019dc0e 61665688f1039c4fad848853a68e28d057718ad1 c9b14113eba535a2e1a6cbbf121a818ad0204fc6dd7b2ea9b592830ab927d6d1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6718 x-amzn-requestid: 662f889b-4c25-4dec-85d4-ea9dfa8b8974 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyD7DE5boAMF_cA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8046-33ca99fc7b6eac8d5486d6c1;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: WvNs1hPPXHBJs5rTIBqH3DbqLLX6si9jHF46KrsuT9BFB2N2V3zeUA== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:06:20 GMT age: 5815 etag: "61665688f1039c4fad848853a68e28d057718ad1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg	34.120.237.76	200 OK	8.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.3 kB (8267 bytes) Hash 99bf0073acf75f9e04b52a96bf47797b fa68da2c92fa89ed3dafe9915e064fca022af21f 961b77616486483e5767f214d2417275b9c995614128acab3521b6cd2f8866e2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8267 x-amzn-requestid: 8bf1f9c3-4508-489e-9f45-3ce50df74b0b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyEW0HM6IAMFXog= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd80f8-2e7c768d54981cf1634830db;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:47:36 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: slDJVVNZDwjopU0kXbAvAJw4A0I_hGKXbRf9O15sXxmvu0JXe8yuPA== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:17:59 GMT etag: "fa68da2c92fa89ed3dafe9915e064fca022af21f" content-type: image/jpeg age: 5116 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg	34.120.237.76	200 OK	9.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.5 kB (9500 bytes) Hash 3ac51fd6789cbe19c2d484c9022b0e39 bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9 300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9500 x-amzn-requestid: 8fe94388-e8d9-4329-b73a-e9a356df76bb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyD9QEA1IAMF3Ug= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8054-51f954ac4bec16d1055e38f5;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:52 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: FkTJ6wQ4eFYBPDyS0l5vLeWvHHiQIx-cYyFzT4ggHJ8M5Gg3dozFxQ== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:30:36 GMT age: 4359 etag: "bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 7d482750bf7fdfcaa38c0efd583ef4dc a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d 5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:15 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 45cde8840977d40f0f2996070c26668b 0a94a7a5d1eb1005bf716bf015e10e5612746059 686387ebebc43961d2fe2847add3afd13e2d92a0d3e672e6cb6245ae50b4ce42 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "686387EBEBC43961D2FE2847ADD3AFD13E2D92A0D3E672E6CB6245AE50B4CE42" Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2569 Expires: Sat, 04 Feb 2023 00:26:04 GMT Date: Fri, 03 Feb 2023 23:43:15 GMT Connection: keep-alive`

	www.googletagmanager.com/gtag/js?id=UA-22103010-1&_=1675467828077	142.250.74.40	200 OK	44 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-22103010-1&_=1675467828077 IP 142.250.74.40:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1759) Size 44 kB (43932 bytes) Hash a8f82dc88cb58e72da3f2372683a884f 4a527ef19b111acc5b23e4e8378417834bcb4f37 e2f55a5983cd9e0df3c544fa7c30865a79be2be8f99a3c61ff79f492aa7a788e HTTP Headers `GET /gtag/js?id=UA-22103010-1&_=1675467828077 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Fri, 03 Feb 2023 23:43:15 GMT expires: Fri, 03 Feb 2023 23:43:15 GMT cache-control: private, max-age=900 last-modified: Fri, 03 Feb 2023 23:02:14 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 43932 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	doug1izaerwt3.cloudfront.net/cd451ba27fd7233e6e0c660a2184ff34560ea749.1.js?_=1675467828076	54.230.80.66	200 OK	27 kB
URL HTTP/1.1 doug1izaerwt3.cloudfront.net/cd451ba27fd7233e6e0c660a2184ff34560ea749.1.js?_=1675467828076 IP 54.230.80.66:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (1432) Size 27 kB (26990 bytes) Hash 1226dbce6ea7cab79699360dea339ff6 fc37d976356369203e96d0d66d7b68704bd4abd8 7feba3012a7d06505babf80e6c647a2b2aa5b62b42f21191f8cd1c274984d3c4 HTTP Headers `GET /cd451ba27fd7233e6e0c660a2184ff34560ea749.1.js?_=1675467828076 HTTP/1.1 Host: doug1izaerwt3.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/x-javascript; charset=utf-8 Content-Length: 26990 Connection: keep-alive Last-Modified: Thu, 13 Aug 2020 13:15:32 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Fri, 03 Feb 2023 23:05:12 GMT Cache-Control: max-age=60 ETag: "1226dbce6ea7cab79699360dea339ff6" X-Cache: Hit from cloudfront Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: lnK-1XSOXD-XvMTi9uR-8aQq8haJJyYeNIT-PsM_XhR0lNPuxlBwkw== Age: 2284

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 7d482750bf7fdfcaa38c0efd583ef4dc a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d 5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:15 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 45cde8840977d40f0f2996070c26668b 0a94a7a5d1eb1005bf716bf015e10e5612746059 686387ebebc43961d2fe2847add3afd13e2d92a0d3e672e6cb6245ae50b4ce42 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "686387EBEBC43961D2FE2847ADD3AFD13E2D92A0D3E672E6CB6245AE50B4CE42" Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2569 Expires: Sat, 04 Feb 2023 00:26:04 GMT Date: Fri, 03 Feb 2023 23:43:15 GMT Connection: keep-alive`

	ocsp.sectigo.com/	172.64.155.188	200 OK	471 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 172.64.155.188:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash 66a8870c585dd88ed4aec2763210bb34 e00b9b2691a0459ad21b81d6903dc2abb5584cfa 7e712f610049f0ca059e69842cf614381d30922217aafa61d13fde6869f3d67c HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 03 Feb 2023 23:43:15 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Tue, 31 Jan 2023 18:52:41 GMT Expires: Tue, 07 Feb 2023 18:52:40 GMT Etag: "e00b9b2691a0459ad21b81d6903dc2abb5584cfa" Cache-Control: max-age=327564,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb1 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 793f071ac9edb506-OSL`

	dnwn0mt1jqwp0.cloudfront.net/static/registration/js/bundle.js?version=0e23a67	54.230.245.109	200 OK	423 kB
URL HTTP/1.1 dnwn0mt1jqwp0.cloudfront.net/static/registration/js/bundle.js?version=0e23a67 IP 54.230.245.109:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 423 kB (423410 bytes) Hash 573726cd00dfb0385efea076195bb1a3 a5a43b4decbc7277ccf715e9d479ca45481ff0d3 1849b2ba606fe89f610d2d441217cd5bd5ad70a065d687f05ba4b2bb49c6ca88 HTTP Headers `GET /static/registration/js/bundle.js?version=0e23a67 HTTP/1.1 Host: dnwn0mt1jqwp0.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Date: Sat, 07 Jan 2023 07:33:18 GMT Server: nginx Last-Modified: Wed, 04 Jan 2023 20:24:17 GMT ETag: W/"63b5e071-dd5cb" Expires: Mon, 06 Feb 2023 07:33:18 GMT Cache-Control: max-age=2592000 Access-Control-Allow-Origin: * Content-Encoding: gzip Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Aapge03RiVEzFtItaEo_X2_QN90MqmOwsEfTblXDiMTwNouWtQsJVA== Age: 2390997

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash aa5809ba834dbb2d2aeb01e4d7858cab a5feba654026fec8871aa252344e41923e05f2f6 c1a90a4571f53704311269a2e6cdb6ca20041515cba71b4392adc134b098d3a7 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6512 Cache-Control: max-age=89675 Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:15 GMT Etag: "63dc3dee-118" Expires: Sun, 05 Feb 2023 00:37:50 GMT Last-Modified: Thu, 02 Feb 2023 22:49:18 GMT Server: ECS (ska/F706) X-Cache: HIT Content-Length: 280`

	www.google-analytics.com/analytics.js	216.239.36.178	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 216.239.36.178:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1490) Size 20 kB (20085 bytes) Hash ca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20085 date: Fri, 03 Feb 2023 21:45:20 GMT expires: Fri, 03 Feb 2023 23:45:20 GMT cache-control: public, max-age=7200 age: 7075 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fast.appcues.com/30307.js?_=1675467828078	151.101.66.110	200 OK	4.0 kB
URL HTTP/2 fast.appcues.com/30307.js?_=1675467828078 IP 151.101.66.110:0 ASN #54113 FASTLY File type ASCII text, with very long lines (11281) Size 4.0 kB (4011 bytes) Hash ab0498bca0ea91baf3aaa4fa5d65e9c2 0f3db3fc87424d90a537a36298622e3d82a87c50 798b3f667c1aaa8dd0dc3dfd0e50eeb3172e3992052b011aed60144800096bba HTTP Headers `GET /30307.js?_=1675467828078 HTTP/1.1 Host: fast.appcues.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/javascript; charset=utf-8 access-control-allow-credentials: true access-control-allow-origin: * access-control-expose-headers: cache-control: max-age=120,public content-encoding: gzip server: Cowboy x-request-id: F0B1FVeF-epL0KQbF0Eh accept-ranges: bytes date: Fri, 03 Feb 2023 23:43:15 GMT via: 1.1 varnish age: 0 x-served-by: cache-bma1672-BMA x-cache: MISS x-cache-hits: 0 x-timer: S1675467795.476487,VS0,VE515 vary: accept-encoding, Accept-Encoding timing-allow-origin: * access-control-allow-headers: X-Requested-With,Authorization access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS content-length: 4011 X-Firefox-Spdy: h2

	fast.appcues.com/generic/main/4.40.9/appcues.main.d06ff4c27b29c5714e022bf72a8fa7c26af81500.js	151.101.66.110	200 OK	121 kB
URL HTTP/2 fast.appcues.com/generic/main/4.40.9/appcues.main.d06ff4c27b29c5714e022bf72a8fa7c26af81500.js IP 151.101.66.110:0 ASN #54113 FASTLY File type Unicode text, UTF-8 text, with very long lines (65504), with no line terminators Size 121 kB (121293 bytes) Hash 54ce67bbe540a714df4112b98421c015 e16d89b85f6f6927145df40ec39d36ba14f21bc5 ee59454998ff96926ee189fe771174668bf11b98577813dc94a9f8dadb0209c7 HTTP Headers `GET /generic/main/4.40.9/appcues.main.d06ff4c27b29c5714e022bf72a8fa7c26af81500.js HTTP/1.1 Host: fast.appcues.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Origin: https://www.commcarehq.org Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: sS+1VwP0LDEp+4uy252IMKGKwdToR3BGDHtscef6g8a+nB85YMcoKAGvt/eR9zPNtL9CFybb85f8cfmAMabHug== x-amz-request-id: YFA6R448NE934WQ6 last-modified: Thu, 02 Feb 2023 19:19:38 GMT etag: "106864edb18e2b6d6f1191267a1c56e1" content-type: application/javascript; charset=utf-8 server: AmazonS3 cache-control: public,max-age=31536000,immutable content-encoding: gzip accept-ranges: bytes date: Fri, 03 Feb 2023 23:43:16 GMT via: 1.1 varnish age: 101257 x-served-by: cache-bma1655-BMA x-cache: HIT x-cache-hits: 2002 x-timer: S1675467796.052918,VS0,VE0 vary: Accept-Encoding timing-allow-origin: * access-control-allow-origin: * access-control-allow-headers: X-Requested-With,Authorization access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS content-length: 121293 X-Firefox-Spdy: h2

	js.driftt.com/include/1675467900000/7456r8nz2u34.js?_=1675467828082	54.230.111.119	200 OK	719 kB
URL HTTP/2 js.driftt.com/include/1675467900000/7456r8nz2u34.js?_=1675467828082 IP 54.230.111.119:0 ASN #16509 AMAZON-02 File type data Size 719 kB (718901 bytes) Hash a5d03f92bb2c7c2f5176dc18d8e84693 d8fea2661940163f50b07036a74eda05687244a9 c11fcc58d220a764e43fc29ce46eed193a4c3e7914926de5101d8033ef1d7674 HTTP Headers `GET /include/1675467900000/7456r8nz2u34.js?_=1675467828082 HTTP/1.1 Host: js.driftt.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=utf-8 server: istio-envoy date: Fri, 03 Feb 2023 23:43:15 GMT last-modified: Thu, 02 Feb 2023 17:47:11 GMT etag: W/"8ead115aa6b8dd4cf82dbba47b818130" x-amz-server-side-encryption: AES256 x-amz-version-id: 3xWqR5DkgEuy6guPZHaBH8EtWU71frWm access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache x-envoy-upstream-service-time: 27 content-encoding: gzip vary: Accept-Encoding x-cache: Miss from cloudfront via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: LSMorhgZY555s4d8S8MVTpCWXM18kufz0MzT0DLB4nduTkUbkDpCjw== X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 42f7bb86070a306c0902a2947bfd5db1 679751d86f7520d1e5e30b5bc050015450de75a7 ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-22103010-1&cid=383646822.1675467829&jid=2027073941&uid=none&gjid=281957938&_gid=1324999539.1675467829&_u=4GBACUAABAAAACAAI~&z=1369677850	64.233.165.156	200 OK	4 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-22103010-1&cid=383646822.1675467829&jid=2027073941&uid=none&gjid=281957938&_gid=1324999539.1675467829&_u=4GBACUAABAAAACAAI~&z=1369677850 IP 64.233.165.156:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 4 B (4 bytes) Hash 48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-22103010-1&cid=383646822.1675467829&jid=2027073941&uid=none&gjid=281957938&_gid=1324999539.1675467829&_u=4GBACUAABAAAACAAI~&z=1369677850 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Content-Type: text/plain Content-Length: 0 Origin: https://www.commcarehq.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://www.commcarehq.org strict-transport-security: max-age=10886400; includeSubDomains; preload date: Fri, 03 Feb 2023 23:43:16 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 4 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	js.hs-analytics.net/analytics/1675467900000/503070.js?_=1675467828079	104.17.67.176	200 OK	23 kB
URL HTTP/2 js.hs-analytics.net/analytics/1675467900000/503070.js?_=1675467828079 IP 104.17.67.176:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (63759) Size 23 kB (22888 bytes) Hash da669b268fa8fe3e98866c4c6a6b38dc 5666a90c2f79b7f1c5aa1c3e43c28fde8a94de39 9f39be18122e9a983aab03cfbab1f2f5df4ab8d4cadcd991ce24048a59c89e04 HTTP Headers `GET /analytics/1675467900000/503070.js?_=1675467828079 HTTP/1.1 Host: js.hs-analytics.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Fri, 03 Feb 2023 23:43:16 GMT content-type: text/javascript x-amz-id-2: 0dD4GBNAsDK1WWJjkThuMUmhFmzkyLbmeJDzM7q5dsH2OcnI2t7M/8OjflYIUdIT5/i8ADVtX80= x-amz-request-id: F3T7QWB1M28NMWSS last-modified: Wed, 18 Jan 2023 19:56:51 GMT etag: W/"f31c7078ff2466d05203011f40db2ffe" x-amz-server-side-encryption: AES256 cache-control: max-age=300, public x-amz-version-id: null access-control-allow-credentials: false vary: origin, Accept-Encoding expires: Fri, 03 Feb 2023 23:48:16 GMT cf-cache-status: MISS server: cloudflare cf-ray: 793f071c29f00afa-OSL content-encoding: br X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 42f7bb86070a306c0902a2947bfd5db1 679751d86f7520d1e5e30b5bc050015450de75a7 ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash de88149c85daf1f2f8f183d16f581394 4b88639d92a9defef7e575ff50f00348d7a4fc91 5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 621b586028d5acaf29b8777ca0872ce1 9d2a358576d0acab58e2eacf7765b686cee9181f a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	trk.kissmetrics.io/e	54.84.30.144	200 OK	43 B
URL HTTP/1.1 trk.kissmetrics.io/e IP 54.84.30.144:0 ASN #14618 AMAZON-AES File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash ad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda HTTP Headers `POST /e HTTP/1.1 Host: trk.kissmetrics.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Content-Type: text/plain;charset=UTF-8 Content-Length: 299 Origin: https://www.commcarehq.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Server: nginx Date: Fri, 03 Feb 2023 23:43:16 GMT Content-Type: image/gif Content-Length: 43 Connection: keep-alive Cache-Control: no-cache Access-Control-Allow-Methods: GET, POST, OPTIONS Access-Control-Allow-Origin: * Expires: Fri, 03 Feb 2023 23:43:15 GMT Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT`

	www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-22103010-1&cid=383646822.1675467829&jid=2027073941&_u=4GBACUAABAAAACAAI~&z=1219582700	216.58.211.4	200 OK	42 B
URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-22103010-1&cid=383646822.1675467829&jid=2027073941&_u=4GBACUAABAAAACAAI~&z=1219582700 IP 216.58.211.4:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-22103010-1&cid=383646822.1675467829&jid=2027073941&_u=4GBACUAABAAAACAAI~&z=1219582700 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Fri, 03 Feb 2023 23:43:16 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-22103010-1&cid=383646822.1675467829&jid=2027073941&_u=4GBACUAABAAAACAAI~&z=1219582700	142.250.74.67	200 OK	42 B
URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-22103010-1&cid=383646822.1675467829&jid=2027073941&_u=4GBACUAABAAAACAAI~&z=1219582700 IP 142.250.74.67:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-22103010-1&cid=383646822.1675467829&jid=2027073941&_u=4GBACUAABAAAACAAI~&z=1219582700 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Fri, 03 Feb 2023 23:43:16 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	trk.kissmetrics.io/s	54.84.30.144	200 OK	43 B
URL HTTP/1.1 trk.kissmetrics.io/s IP 54.84.30.144:0 ASN #14618 AMAZON-AES File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash ad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda HTTP Headers `POST /s HTTP/1.1 Host: trk.kissmetrics.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Content-Type: text/plain;charset=UTF-8 Content-Length: 130 Origin: https://www.commcarehq.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Server: nginx Date: Fri, 03 Feb 2023 23:43:16 GMT Content-Type: image/gif Content-Length: 43 Connection: keep-alive Cache-Control: no-cache Access-Control-Allow-Methods: GET, POST, OPTIONS Access-Control-Allow-Origin: * Expires: Fri, 03 Feb 2023 23:43:15 GMT Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash de88149c85daf1f2f8f183d16f581394 4b88639d92a9defef7e575ff50f00348d7a4fc91 5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 8176ac8bbb8fa05f36bdfa163da09e0c b936c84c5fa7e781b12a17952c82bca546ca0575 1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 69e9a8125baf9036891d70207fe629e6 fbc0291e180a0f2060631ac8e60ce2fccca148f8 524c3d6ae6ab855ff7c361ee285b4fd4accd5e0d6deac98663cdbb6de68198a5 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 280 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:16 GMT Last-Modified: Fri, 03 Feb 2023 23:38:36 GMT Server: ECS (ska/F706) X-Cache: HIT Content-Length: 279`

	track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=503070&pu=https%3A%2F%2Fwww.commcarehq.org%2Fa%2Fhiv-self-test%2Flogin%2F%3Fnext%3D%2Fa%2Fhiv-self-test%2Fsettings%2Fproject%2Fsubscription%2F&t=Log+In+%3A%3A+CommCare+HQ+-+CommCare+HQ&cts=1675467829279&vi=03e9113cbe0c5a57072e621c2ac3eddc&nc=true&ce=false&cc=0	104.19.154.83	200 OK	45 B
URL HTTP/2 track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=503070&pu=https%3A%2F%2Fwww.commcarehq.org%2Fa%2Fhiv-self-test%2Flogin%2F%3Fnext%3D%2Fa%2Fhiv-self-test%2Fsettings%2Fproject%2Fsubscription%2F&t=Log+In+%3A%3A+CommCare+HQ+-+CommCare+HQ&cts=1675467829279&vi=03e9113cbe0c5a57072e621c2ac3eddc&nc=true&ce=false&cc=0 IP 104.19.154.83:0 ASN #13335 CLOUDFLARENET File type GIF image data, version 89a, 1 x 1\012- data Size 45 B (45 bytes) Hash c8817d472077ebfc04593c1fa019d32d e1e86f41c86c7b9cd2e8b76c6a925a1a3e7e3247 dc111a70984a9eda00752b06277113029ef288f1125c31eff2477413e15e8aa4 HTTP Headers GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=503070&pu=https%3A%2F%2Fwww.commcarehq.org%2Fa%2Fhiv-self-test%2Flogin%2F%3Fnext%3D%2Fa%2Fhiv-self-test%2Fsettings%2Fproject%2Fsubscription%2F&t=Log+In+%3A%3A+CommCare+HQ+-+CommCare+HQ&cts=1675467829279&vi=03e9113cbe0c5a57072e621c2ac3eddc&nc=true&ce=false&cc=0 HTTP/1.1 Host: track.hubspot.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK date: Fri, 03 Feb 2023 23:43:16 GMT content-type: image/gif content-length: 45 cf-ray: 793f071f89dab509-OSL cache-control: no-cache, no-store, no-transform strict-transport-security: max-age=31536000; includeSubDomains; preload vary: origin, Accept-Encoding cf-cache-status: DYNAMIC access-control-allow-credentials: false p3p: CP="NOI CUR ADM OUR NOR STA NID" x-hubspot-correlation-id: f14bdf91-388f-4bf8-ac33-0a7c90eeb736 x-robots-tag: none set-cookie: __cf_bm=HCQrRCEneli18UnQrZ7GBlcgFnw8p6aTJWdGhgtRi7o-1675467796-0-AXlZ3UDKp2uTsmbCxQJEbhyPxYbRZFA79tK2dfE+Xcjux3G4qrySBTqFaVhY6hfg+Bw+RCVSu6GpbRyGIM+NSv0=; path=/; expires=Sat, 04-Feb-23 00:13:16 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pFP01%2B%2F6vAg2SdSAHtC15Wgr8p9tYR0vxEX1MIeqQennTrPgV5UAXwHvaEtY%2BDq3SNQl6QAIYyk3pRAf3%2BwG68EULs3AjSbh0YJDiN7AluPtVec7o4vOWnSRiePb2i0dqQ4E"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 69e9a8125baf9036891d70207fe629e6 fbc0291e180a0f2060631ac8e60ce2fccca148f8 524c3d6ae6ab855ff7c361ee285b4fd4accd5e0d6deac98663cdbb6de68198a5 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 280 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:16 GMT Last-Modified: Fri, 03 Feb 2023 23:38:36 GMT Server: ECS (ska/F706) X-Cache: HIT Content-Length: 279`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash e65a0e2105b750447cc1350a6a4fb172 18b835c8cd85d27ced1fefd0b0e48d3fb1bc46c9 55d17d1366cb0cc61a11874b300e6f401b784c6d17e673f41ec883501dbd715c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2283 Cache-Control: max-age=99848 Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:16 GMT Etag: "63dc7631-118" Expires: Sun, 05 Feb 2023 03:27:24 GMT Last-Modified: Fri, 03 Feb 2023 02:49:21 GMT Server: ECS (ska/F706) X-Cache: HIT Content-Length: 280`

	js-na1.hs-scripts.com/503070.js	104.17.211.204	200 OK	809 B
URL HTTP/2 js-na1.hs-scripts.com/503070.js IP 104.17.211.204:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (521) Size 809 B (809 bytes) Hash 89711165cbeb40c2df9debd0de01a2c2 f37b935f1a08d0ae3858a42291005063c3cf1873 faecd26aeec2199735b061ac738347321c92b01c7498bf01043253e80751d4e9 HTTP Headers `GET /503070.js HTTP/1.1 Host: js-na1.hs-scripts.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Fri, 03 Feb 2023 23:43:16 GMT content-type: application/javascript;charset=utf-8 x-trace: 2BE12A0F2E372476DFB4326A1F4726F39E98C3D69A000000000000000000 cache-control: public, max-age=30 vary: origin, Accept-Encoding x-hubspot-correlation-id: a75e9ff7-8c47-4da7-8db6-09ac072c2e8b access-control-allow-credentials: true access-control-max-age: 3600 access-control-allow-origin: https://www.commcarehq.org last-modified: Fri, 03 Feb 2023 18:04:44 GMT cf-cache-status: EXPIRED server: cloudflare cf-ray: 793f071effc8b4ee-OSL content-encoding: br X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 9f01938839c6521590d71922deab94d2 0f3345b328545a35dd3bc7f34bdb4447c8095ff4 f1b0aaf2a88a5e0915f1199ac28c8197e32fac3ad8e32334340f2956e1ca13b0 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6079 Cache-Control: max-age=117323 Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 23:43:16 GMT Etag: "63dcaba0-117" Expires: Sun, 05 Feb 2023 08:18:39 GMT Last-Modified: Fri, 03 Feb 2023 06:37:20 GMT Server: ECS (ska/F706) X-Cache: HIT Content-Length: 279`

	ocsp.sca1b.amazontrust.com/	143.204.42.156	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.156:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 6251f26ad02b68df8fc1d9ff5a275cde 8570e28d6a2896715d4206f6674e5de3ba43c440 1ee14aa66409179e4ea7576d14bbab1077b4f0e7cddf372c58c4a316b24ea80c HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Fri, 03 Feb 2023 23:43:16 GMT Last-Modified: Fri, 03 Feb 2023 22:53:27 GMT Server: ECS (nyb/1D1D) X-Cache: Miss from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ebradPAT5DvIztL7iaAyK4o9xIQ2mpO5erb0z9O-H5jLdYT2htcBdw== Age: 2989`

	js.hs-banner.com/cookie-banner-public/v1/activity/view	172.64.154.85	200 OK	0 B
URL HTTP/2 js.hs-banner.com/cookie-banner-public/v1/activity/view IP 172.64.154.85:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /cookie-banner-public/v1/activity/view HTTP/1.1 Host: js.hs-banner.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.commcarehq.org/ Origin: https://www.commcarehq.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Fri, 03 Feb 2023 23:43:17 GMT content-type: application/octet-stream content-length: 0 access-control-allow-origin: https://www.commcarehq.org access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing access-control-allow-credentials: true access-control-max-age: 604800 timing-allow-origin: * vary: origin cf-cache-status: DYNAMIC server: cloudflare cf-ray: 793f0723bd82b4f9-OSL X-Firefox-Spdy: h2

	api.appcues.net/v1/socket/websocket?vsn=2.0.0	52.27.176.125	101 Switching Protocols	0 B
URL HTTP/1.1 api.appcues.net/v1/socket/websocket?vsn=2.0.0 IP 52.27.176.125:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /v1/socket/websocket?vsn=2.0.0 HTTP/1.1 Host: api.appcues.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://www.commcarehq.org Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: xR4HF7ad4gVjcclqSq3y1A== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Date: Fri, 03 Feb 2023 23:43:17 GMT Connection: upgrade cache-control: max-age=0, private, must-revalidate sec-websocket-accept: 7wr2m3pgS6vturgskADzy1NXx6A= sec-websocket-extensions: permessage-deflate server: Cowboy upgrade: websocket`

	js.hs-analytics.net/analytics/1675467600000/503070.js	104.17.67.176	200 OK	21 kB
URL HTTP/2 js.hs-analytics.net/analytics/1675467600000/503070.js IP 104.17.67.176:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (63759) Size 21 kB (20861 bytes) Hash 22017410f75cdb076c00896fc553bb49 21bf3bd287b9ea9d1d01fcf76aab091120111a9a 0185360a29dfcf6f365c39c6e98b047f83208779f25ec2b07f4a111d98f1526b HTTP Headers `GET /analytics/1675467600000/503070.js HTTP/1.1 Host: js.hs-analytics.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Fri, 03 Feb 2023 23:43:17 GMT content-type: text/javascript x-amz-id-2: iPMMy52AaqJySTidlMlB1HRn0S0eI5R7c++ttDZioqBcLICQ7PC8DzKE6ouBm+GHOXrpP2OPx1M= x-amz-request-id: JD1NYENG4W8CG17R last-modified: Wed, 18 Jan 2023 19:56:51 GMT etag: W/"f31c7078ff2466d05203011f40db2ffe" x-amz-server-side-encryption: AES256 cache-control: max-age=300, public x-amz-version-id: null access-control-allow-credentials: false vary: origin, Accept-Encoding expires: Fri, 03 Feb 2023 23:48:17 GMT cf-cache-status: MISS server: cloudflare cf-ray: 793f07222d660afa-OSL content-encoding: br X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg	34.120.237.76	200 OK	7.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.1 kB (7101 bytes) Hash 41580a501cc07c328e6ab6b167a110dc a4dfa0f479b5f9a036b75b2eea6dffabd3a3486e 0fa45161e563101b3f1293f951a3edf84c88c9f3b29bed9b54f952ca325bf21d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e70636-fb7d-4a6e-9742-a039e4d7253d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 7101 x-amzn-requestid: 479d8004-430a-45b9-99fa-11cbcc605a7c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fyD7EHxqoAMFaug= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dd8046-25ac3c54427748bc191fd1ba;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 6h25M_XSVuTCF-9FkTtwujV0X-0-M9fvw4ouOBFmSnMWeApCSHmBsA== via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 22:13:30 GMT age: 5392 etag: "a4dfa0f479b5f9a036b75b2eea6dffabd3a3486e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ipinfo.io/?callback=jQuery351023935383896758156_1675467828080&_=1675467828081	34.117.59.81	429 Too Many Requests	0 B
URL HTTP/2 ipinfo.io/?callback=jQuery351023935383896758156_1675467828080&_=1675467828081 IP 34.117.59.81:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /?callback=jQuery351023935383896758156_1675467828080&_=1675467828081 HTTP/1.1 Host: ipinfo.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 429 Too Many Requests access-control-allow-origin: * x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-content-type-options: nosniff referrer-policy: strict-origin-when-cross-origin content-type: application/json; charset=utf-8 date: Fri, 03 Feb 2023 23:43:15 GMT x-envoy-upstream-service-time: 2 strict-transport-security: max-age=2592000; includeSubDomains vary: Accept-Encoding content-encoding: gzip via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	js.hsadspixel.net/fb.js	104.17.116.176	200 OK	0 B
URL HTTP/2 js.hsadspixel.net/fb.js IP 104.17.116.176:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /fb.js HTTP/1.1 Host: js.hsadspixel.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Fri, 03 Feb 2023 23:43:16 GMT content-type: application/javascript; charset=utf-8 x-amz-replication-status: COMPLETED last-modified: Tue, 31 Jan 2023 04:09:31 UTC x-amz-server-side-encryption: AES256 x-amz-version-id: voeLZ8jD1qAOp4h9t0pVQ2YHSdN3ebgQ etag: W/"bde7af4ffd2c05ea8423271f767ebc69" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 73c5607bdb5db0d651e25c848846d554.cloudfront.net (CloudFront) x-amz-cf-pop: IAD12-P3 x-amz-cf-id: RQZ8ZSwra5SieopC6eKimlomLO6m20lh9HeQUKKSdFq_1FJ7Z_f2KA== cache-control: max-age=600 content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=adsscriptloaderstatic/static-1.317/bundles/pixels-release.js&cfRay=793b54439d080a2f-IAD x-hs-target-asset: adsscriptloaderstatic/static-1.317/bundles/pixels-release.js x-hs-cache-status: HIT cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod cf-cache-status: HIT age: 366 server: cloudflare cf-ray: 793f0721592ab4ff-OSL content-encoding: br X-Firefox-Spdy: h2

	js.hsleadflows.net/leadflows.js	104.17.234.204	200 OK	0 B
URL HTTP/2 js.hsleadflows.net/leadflows.js IP 104.17.234.204:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /leadflows.js HTTP/1.1 Host: js.hsleadflows.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Origin: https://www.commcarehq.org Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Fri, 03 Feb 2023 23:43:16 GMT content-type: application/javascript; charset=utf-8 access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 x-amz-replication-status: COMPLETED last-modified: Thu, 02 Feb 2023 01:26:06 UTC etag: W/"998dfd36d3c4078a3a05a1a77e61963c" x-amz-server-side-encryption: AES256 x-amz-version-id: 9g41IgVIr3w9wyiFOHn4rgapkQc72OJD vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method x-cache: Miss from cloudfront via: 1.1 872e43fac89d80c9557000efb9c31650.cloudfront.net (CloudFront) x-amz-cf-pop: IAD12-P3 x-amz-cf-id: 2ywRC0D3nPVZ1lrbt7o5vsYFJ3Wv5e8ZcFyY1NWWLt0UfC5K2xMV6Q== cache-control: s-maxage=86400, max-age=0 content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=lead-flows-js/static-1.1134/bundle/main/lead-flows-release.js&cfRay=7935b4576a622e0d-IAD x-hs-target-asset: lead-flows-js/static-1.1134/bundle/main/lead-flows-release.js x-hs-cache-status: MISS cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod cf-cache-status: HIT age: 58235 server: cloudflare cf-ray: 793f072159f9b4f4-OSL content-encoding: br X-Firefox-Spdy: h2

	js.hs-banner.com/503070.js	172.64.154.85	200 OK	0 B
URL HTTP/2 js.hs-banner.com/503070.js IP 172.64.154.85:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /503070.js HTTP/1.1 Host: js.hs-banner.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.commcarehq.org/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Fri, 03 Feb 2023 23:43:17 GMT content-type: text/javascript; charset=UTF-8 x-amz-id-2: /lW6blkIlfKCRa73Nkvvv8yWuXP9LkSGj8SJ1FRzY+SlI/acnI53iC0llIvpJrBgRAm/7PBhBAE= x-amz-request-id: 730947X6ZFPG282G last-modified: Fri, 09 Dec 2022 22:32:54 GMT etag: W/"21216917605380fe61bce591c1f51621" x-amz-server-side-encryption: AES256 cache-control: max-age=300, public x-amz-version-id: 4Tg4ktQZdbHLVQKym8XMbENxMT1rBtE5 access-control-allow-origin: https://www.dimagi.com access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing access-control-allow-credentials: true access-control-max-age: 604800 timing-allow-origin: * vary: origin, Accept-Encoding expires: Fri, 03 Feb 2023 23:48:16 GMT cf-cache-status: REVALIDATED server: cloudflare cf-ray: 793f07216fb61c0a-OSL content-encoding: br X-Firefox-Spdy: h2

	www.commcarehq.org/a/hiv-self-test/login/?next=/a/hiv-self-test/settings/project/subscription/	75.2.106.21	200 OK	0 B
URL HTTP/2 www.commcarehq.org/a/hiv-self-test/login/?next=/a/hiv-self-test/settings/project/subscription/ IP 75.2.106.21:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers GET /a/hiv-self-test/login/?next=/a/hiv-self-test/settings/project/subscription/ HTTP/1.1 Host: www.commcarehq.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: sessionid=uqq6tuooggao66f4mcn1zbmdq40evyic Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 TE: trailers HTTP/2 200 OK date: Fri, 03 Feb 2023 23:43:14 GMT content-type: text/html; charset=utf-8 server: nginx expires: Thu, 01 Dec 1994 16:00:00 GMT cache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie, Accept-Language referrer-policy: strict-origin-when-cross-origin http_x_openrosa_version: 1.0 x-frame-options: DENY content-language: en pragma: no-cache set-cookie: demo_workflow_mar2019_ab=variant; Path=/; Secure csrftoken=grH1ovKyJP963OYyJUQJG57vWXpmVSk8IlFXC3KyTuX2mZoyX27nYWSJepQ70VUL; expires=Fri, 02 Feb 2024 23:43:14 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure sessionid=uqq6tuooggao66f4mcn1zbmdq40evyic; expires=Fri, 17 Feb 2023 23:43:14 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure strict-transport-security: max-age=31536000; includeSubDomains x-xss-protection: 1; mode=block x-content-type-options: nosniff, nosniff content-encoding: gzip X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML