click.hello.everfi.com/?qs=7130f22679d97b4b6c7f3171c65710fe2236af5fb196197bafae3ea0e60fe68becb4d344968ed6cab287be3b950dc282b239c3d6fee210c0
13.111.159.230301 Moved Permanently 0 B URL HTTP/1.1 click.hello.everfi.com/?qs=7130f22679d97b4b6c7f3171c65710fe2236af5fb196197bafae3ea0e60fe68becb4d344968ed6cab287be3b950dc282b239c3d6fee210c0
IP 13.111.159.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?qs=7130f22679d97b4b6c7f3171c65710fe2236af5fb196197bafae3ea0e60fe68becb4d344968ed6cab287be3b950dc282b239c3d6fee210c0 HTTP/1.1
Host: click.hello.everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://click.hello.everfi.com/?qs=7130f22679d97b4b6c7f3171c65710fe2236af5fb196197bafae3ea0e60fe68becb4d344968ed6cab287be3b950dc282b239c3d6fee210c0
Connection: Keep-Alive
Content-Length: 0
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4035
Expires: Wed, 08 Feb 2023 21:43:17 GMT
Date: Wed, 08 Feb 2023 20:36:02 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5908
Expires: Wed, 08 Feb 2023 22:14:30 GMT
Date: Wed, 08 Feb 2023 20:36:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 20:34:13 GMT
content-type: application/json
age: 109
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19148
Expires: Thu, 09 Feb 2023 01:55:10 GMT
Date: Wed, 08 Feb 2023 20:36:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yaeuARnrA+kSyBijEVttA+4SLprfV/Ajt3Tu3xRb/yWnaQNyZtLLuXclbuSkmu5vsR0b+oBLe5s=
x-amz-request-id: 5JGNXDB5KEDR73QZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 19:46:05 GMT
age: 2998
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 20:36:03 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 90140686c5cc89dd66e11f9dd03a99e2
fef84443b8287274921cd61167d45f537311b57b
62b3b4b83378cc8714f8410b3ddc8b290454e7fd97d1fe7abc3bf6931810a316
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=151989
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:03 GMT
Etag: "63e3b668-1d7"
Expires: Fri, 10 Feb 2023 14:49:12 GMT
Last-Modified: Wed, 08 Feb 2023 14:49:12 GMT
Server: nginx
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 20:14:52 GMT
age: 1271
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
click.hello.everfi.com/?qs=7130f22679d97b4b6c7f3171c65710fe2236af5fb196197bafae3ea0e60fe68becb4d344968ed6cab287be3b950dc282b239c3d6fee210c0
13.111.159.230302 Found 391 B URL HTTP/1.1 click.hello.everfi.com/?qs=7130f22679d97b4b6c7f3171c65710fe2236af5fb196197bafae3ea0e60fe68becb4d344968ed6cab287be3b950dc282b239c3d6fee210c0
IP 13.111.159.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (319), with CRLF line terminators
Hash 57c62903793ff355661623b23e915c1c
e31cfe7e78589a54485fb8595282546178fc9cb3
ac2962b5b96dcbf7d2c3779d0ddd9473377380ec1c756b528cd532f181a22c81
GET /?qs=7130f22679d97b4b6c7f3171c65710fe2236af5fb196197bafae3ea0e60fe68becb4d344968ed6cab287be3b950dc282b239c3d6fee210c0 HTTP/1.1
Host: click.hello.everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://everfi.com/courses/k-12/financial-literacy-middle-school/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https%3a%2f%2feverfi.com%2fcourses%2fk-12%2ffinancial-literacy-middle-school%2f
Date: Wed, 08 Feb 2023 20:36:03 GMT
Connection: close
Content-Length: 391
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8237
Expires: Wed, 08 Feb 2023 22:53:20 GMT
Date: Wed, 08 Feb 2023 20:36:03 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash fd6546de96012f9b583727f1a45c3067
270faeccd50c19c048afbf210a32d4cfa525d2d2
0e1b2e35e158cde09e0c1a63236bf7f7c2ea2029303fc4ad2d4c5110751cb84a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E1B2E35E158CDE09E0C1A63236BF7F7C2EA2029303FC4AD2D4C5110751CB84A"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 09 Feb 2023 02:36:03 GMT
Date: Wed, 08 Feb 2023 20:36:03 GMT
Connection: keep-alive
push.services.mozilla.com/
34.210.150.237101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.150.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CkojOxD81PhQLVbVHx+r/Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: C7nMWQwObmv8x2mxCIzY5I30W9k=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash fd6546de96012f9b583727f1a45c3067
270faeccd50c19c048afbf210a32d4cfa525d2d2
0e1b2e35e158cde09e0c1a63236bf7f7c2ea2029303fc4ad2d4c5110751cb84a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E1B2E35E158CDE09E0C1A63236BF7F7C2EA2029303FC4AD2D4C5110751CB84A"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Thu, 09 Feb 2023 02:36:03 GMT
Date: Wed, 08 Feb 2023 20:36:04 GMT
Connection: keep-alive
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.sync.js
2.18.173.203200 OK 639 B URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.sync.js
IP 2.18.173.203:0
Hash 736ac18f73779e02b9ae5943e1887acf
39f640e41813e1b8a41afcd40241d727efdefe17
211a7c7a2e778075e2bb00943250ec4cd648021fef90cf59d0c231338b7800e7
GET /utag/blackbaud/main/prod/utag.sync.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "736ac18f73779e02b9ae5943e1887acf:1675800878.971343"
last-modified: Tue, 07 Feb 2023 20:14:38 GMT
server: AkamaiNetStorage
content-length: 639
cache-control: max-age=300
expires: Wed, 08 Feb 2023 20:41:04 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
X-Firefox-Spdy: h2
client-registry.mutinycdn.com/personalize/client/16919262ebbbde25.js
151.101.1.91200 OK 25 kB URL HTTP/2 client-registry.mutinycdn.com/personalize/client/16919262ebbbde25.js
IP 151.101.1.91:0
File type Unicode text, UTF-8 text, with very long lines (62663)
Hash 049316510e163d6b88900f9815e562be
251514dafc23a8da8953fb29b3beea6179e529b6
cd6b9197721cd7f06771757267e8a0b950d7b7dc84663fe867ce78aa0f2ae6e4
GET /personalize/client/16919262ebbbde25.js HTTP/1.1
Host: client-registry.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dfTcD5v4GVnt5meukoVWH8+L/o9lp1/uMKe3ndcktMaZDfqOYxifUjY5H9GOeuXoCgbgUQ/YH2Y=
x-amz-request-id: RCVMFYZ8SZ6GC005
last-modified: Fri, 03 Feb 2023 15:36:29 GMT
etag: "25fd2e5eb2496801aefaf20df2d51354"
cache-control: s-maxage=3600, max-age=0
x-amz-version-id: ir1vfqIYFv44S2HxygQRFNk7MjNFu2Zd
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
x-continent-code: EU
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:04 GMT
via: 1.1 varnish
age: 1784
x-served-by: cache-bma1633-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675888565.597982,VS0,VE1
vary: X-Continent-Code
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24827
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 1.1 kB IP 93.184.220.29:0
Hash 985cbf47ee8e32268050b700be0568b5
54ee475058c6ad83aaca489613a6e2e78fc5c820
41778d40bfae9d8337cdf34556cfafc470dbd3c7147d28f506d84910ed053fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2357
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Last-Modified: Wed, 08 Feb 2023 19:56:47 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 1.4 kB IP 93.184.220.29:0
Hash 5b8e1138768999d32c91715c66804291
c41cadad1543d76e9813e6ec8000e9c7d3286836
f5c4c68e392a87591f6e0544a364490c94a70b05e99d3d7d9f679b0a7178ac3c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5585
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Last-Modified: Wed, 08 Feb 2023 19:02:59 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
everfi.com/courses/k-12/financial-literacy-middle-school/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https%3a%2f%2feverfi.com%2fcourses%2fk-12%2ffinancial-literacy-middle-school%2f
141.193.213.20200 OK 44 kB URL HTTP/2 everfi.com/courses/k-12/financial-literacy-middle-school/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https%3a%2f%2feverfi.com%2fcourses%2fk-12%2ffinancial-literacy-middle-school%2f
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Hash 545bb0f5debd1f958953430ab9daf554
4c5a22449b9124ea9865c9ecdb8f347faf4b187b
eb5a7bd70c588aaa7a581cb8b72f29b9058abffe5cff0050aeebdbd49f973485
GET /courses/k-12/financial-literacy-middle-school/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12SM_Feb+8_L_Varo_MMFS_SE_TP+1&utm_content=https%3a%2f%2feverfi.com%2fcourses%2fk-12%2ffinancial-literacy-middle-school%2f HTTP/1.1
Host: everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-powered-by: WP Engine
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
link: <https://everfi.com/wp-json/>; rel="https://api.w.org/", <https://everfi.com/wp-json/wp/v2/offering/227510>; rel="alternate"; type="application/json", <https://everfi.com/?p=227510>; rel=shortlink
x-pass-why: custom-args
permissions-policy: midi=(), camera=(), microphone=(), payment=()
referrer-policy: origin
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 796727c38c48b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA
151.101.1.137200 OK 31 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 700x447, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c97a5e615c7deafe8c6e55fe9c10258f
1731b500db89f4d774cb174e609cf4d12327156c
7cd34de542b2fac55d8e0868b7ca9edd8690537d534a87bae35166cb5440505b
GET /everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="TurboTax-screenshot.webp"
content-type: image/webp
etag: "c97a5e615c7deafe8c6e55fe9c10258f"
last-modified: Tue, 14 Dec 2021 14:26:38 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=19;start=2023-02-08T20:36:04.673Z;desc=hit,rtt;dur=22
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 31100
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA
151.101.1.137200 OK 270 B URL HTTP/2 res.cloudinary.com/everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA
IP 151.101.1.137:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (427), with no line terminators
Hash 67df486dbafc056c3585a286c8a5d346
74ec64f9a560e5762cf384377db8936dd218a343
92372af69a92065da1ef81174cbc1a4b6dfdcd277c4bd6ab7e779f477fd7e708
GET /everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="k12-teal.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"508005c38ce6fa6b4a9368e6a27dd5ff"
last-modified: Tue, 14 Dec 2021 14:26:39 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=19;cpu=18;start=2023-02-08T20:36:04.673Z;desc=hit,rtt;dur=22
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 270
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.1 kB IP 142.250.74.131:0
Hash a2470c8cfb6909717ea2985fb16cbc9e
56b44b2f3c2e7b81d188d55735747ce34b12c92e
7f543498c1c3b62d8784a127c2aba3a66a4bfe974b7612a40120344dffe2d049
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 9.3 kB IP 93.184.220.29:0
Hash ce7f0361f77c086e967a02e6a7312bd3
0684ef0e03542bb21f0171ab7b67bde18218ac20
6c0e9ad9371eb9f74af727d7703d96df1cbe7bccfba4eee59740cbc4c6835af5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2357
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Last-Modified: Wed, 08 Feb 2023 19:56:47 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA
151.101.1.137200 OK 2.6 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4cd1a8411bd10a551103b6fc1c607fab
d09941e8747ae3c80fe5369aa7f683a6457edb9f
5b0f23dcb7e526029a80c7716ac30700910c33e094c9ee29dfd875b24e970126
GET /everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="k12-yellow.webp"
content-type: image/webp
etag: "4cd1a8411bd10a551103b6fc1c607fab"
last-modified: Thu, 16 Dec 2021 21:48:33 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=14;cpu=13;start=2023-02-08T20:36:04.679Z;desc=hit,rtt;dur=22
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 2586
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206910/k12-blue/k12-blue-svg?_i=AA
151.101.1.137200 OK 3.7 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206910/k12-blue/k12-blue-svg?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a97a03d875b3ef916ee22291e84796d9
7ecd81fe0e24581eb9353a69302eeafcc456f41e
c2b75e337853c4d66bd7e0ca896337d790727315df1f11bc0644c00ddfad9d5f
GET /everfi/images/f_auto,q_auto/v1638206910/k12-blue/k12-blue-svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="k12-blue.webp"
content-type: image/webp
etag: "a97a03d875b3ef916ee22291e84796d9"
last-modified: Thu, 16 Dec 2021 21:50:26 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=19;cpu=18;start=2023-02-08T20:36:04.673Z;desc=hit,rtt;dur=22
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 3734
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP 104.18.21.226:0
Hash 49009939f352c92a38dcad910314ce2f
9d581725f1f01bd7b569857ec4bb836bf91687bd
77ce638d28b63f21e04a5dde476194f9f5f7536b3c175fcf5bc7446212aa2958
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:04 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "F07657058DF17683383862ECD0918E939DAAF948"
Expires: Thu, 09 Feb 2023 07:00:00 GMT
Last-Modified: Wed, 08 Feb 2023 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3041
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796727c98e70fab8-OSL
res.cloudinary.com/everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA
151.101.1.137200 OK 207 B URL HTTP/2 res.cloudinary.com/everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA
IP 151.101.1.137:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (368), with no line terminators
Hash 90af22a6ab173205f6ddaf380b91bf84
cb5e41f97bc9291e36485c55f1200025a343766a
46e8fe814ee052b28b4db7c652a22fdd19e8001dc4db62fe5b721691aaab963e
GET /everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="k12-red.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"4dc972573e7fd439d9545991eb3350cf"
last-modified: Tue, 14 Dec 2021 14:26:39 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=15;cpu=13;start=2023-02-08T20:36:04.679Z;desc=hit,rtt;dur=22
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 207
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA
151.101.1.137200 OK 163 kB URL HTTP/2 res.cloudinary.com/everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA
IP 151.101.1.137:0
File type PNG image data, 638 x 422, 8-bit/color RGBA, non-interlaced\012- data
Size 163 kB (163063 bytes)
Hash b390b802c06f9ebbad2e279c7d419fe5
8f69dd4163abcb0f7355b5bd79c8fcacdf6b915e
01de412f6fffcac3829768ef975074239114527122439ac8f37299659f4ed34b
GET /everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "b390b802c06f9ebbad2e279c7d419fe5"
last-modified: Mon, 29 Nov 2021 19:49:11 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=20;cpu=18;start=2023-02-08T20:36:04.673Z;desc=hit,rtt;dur=22
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 163063
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA
151.101.1.137200 OK 46 kB URL HTTP/2 res.cloudinary.com/everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 883x566, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a09ee7433450450e6dce7d24002d0953
50f0eba61b837497344c6813dec9c513db2faa9a
ff5429b8fbbf6aeb1a6256a7eb46648abbb8ea5b50aeb42517a972e10738f3d4
GET /everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="fortune-fastcompany-lockup.webp"
content-type: image/webp
etag: "a09ee7433450450e6dce7d24002d0953"
last-modified: Tue, 28 Sep 2021 13:34:01 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=21;cpu=17;start=2023-02-08T20:36:04.674Z;desc=hit,rtt;dur=22
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 46376
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA
151.101.1.137200 OK 296 kB URL HTTP/2 res.cloudinary.com/everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA
IP 151.101.1.137:0
File type PNG image data, 700 x 486, 8-bit/color RGB, non-interlaced\012- data
Size 296 kB (295542 bytes)
Hash 45febeb90953d7848134db4a89c86db1
9607a08ff1238fde0573c812d118fbd66b0fb00a
e1c18428c0116b54ade818ac309ecb6ea022734f9245817d68b4f6f62082fd14
GET /everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "45febeb90953d7848134db4a89c86db1"
last-modified: Thu, 13 Jan 2022 19:37:20 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=20;cpu=18;start=2023-02-08T20:36:04.673Z;desc=hit,rtt;dur=22
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 295542
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/8.4.1.66.js
151.101.1.91200 OK 5.7 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/8.4.1.66.js
IP 151.101.1.91:0
Hash b87cf8188ec42a9cbcefcacd8a6c366b
65ba8d033387639f173b20eca3924fe3c23b8aae
4f15bed6d51affd92d1d4a7fcfde08a7bd635a3ce87e2796ad802c091c8f965a
GET /mutiny-client/8.4.1.66.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jSEe85rRZhBwAsZnqLate5blpzkHOvIJbvfzx91XGb+GiFZ0KctMl2c26Xwc4jNNaGeSMRm7ovs=
x-amz-request-id: R5WKTYDRESX2XE46
last-modified: Thu, 02 Feb 2023 17:49:10 GMT
etag: "7038e2abc3c97f0cce472379a93e3a7c"
cache-control: max-age=31536000
x-amz-version-id: msLLnS8hQyu1LXogbSaMmVR3H190CiIQ
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:04 GMT
via: 1.1 varnish
age: 77158
x-served-by: cache-bma1670-BMA
x-cache: HIT
x-cache-hits: 360
x-timer: S1675888565.774127,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2934
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 43 kB IP 142.250.74.131:0
Hash 66876027ad0c60878cfec786c3b80cca
e0451222d55ab4319c64d4063f767f09107bcace
f4a6383d7c60413c38f9b014d9f601d5cbcfd425e74c51e479cc7b594025dabf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 3.2 kB IP 93.184.220.29:0
Hash e308730cefef7d0daa07dabbf7a26f51
f03f363851cf3ed34fff07c906f5f42bb8952291
832b24095323d0e067a9f4a0971dca71e73d79e22201818c77e9a7cc5096634b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=140458
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Etag: "63e3895e-117"
Expires: Fri, 10 Feb 2023 11:37:02 GMT
Last-Modified: Wed, 08 Feb 2023 11:37:02 GMT
Server: nginx
Content-Length: 279
client-registry.mutinycdn.com/personalize/client_data/16919262ebbbde25.json
151.101.1.91200 OK 15 kB URL HTTP/2 client-registry.mutinycdn.com/personalize/client_data/16919262ebbbde25.json
IP 151.101.1.91:0
Hash cad6bacc5bc4fa9e37401df04c6ac2d5
d12b71bf0dc1deafa5f04e19af721a3e8d9785f9
63a00b2465f4b5d8a7278f853b7d73b08447a754e8ec03a87ea2a57d342d2c99
GET /personalize/client_data/16919262ebbbde25.json HTTP/1.1
Host: client-registry.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: tM2B2LJEZmX0KCW6zkm+No12IavV3v8oWWrUt6MbJBFFD7hVHzua/11DBFpA3nEcCRLqTgOpWYs=
x-amz-request-id: X5CRH4VTF9PAQ9P8
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 03 Feb 2023 15:36:30 GMT
etag: "4fc316db8a9a049b687b7f77f3b4c049"
cache-control: s-maxage=3600, max-age=0
x-amz-version-id: hc2x_HSxRv3moMEkEwcAH494FLI.GOYQ
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
x-continent-code: EU
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:04 GMT
via: 1.1 varnish
age: 3244
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675888565.802202,VS0,VE1
vary: X-Continent-Code
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 13108
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/6.4.1.66.js
151.101.1.91200 OK 29 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/6.4.1.66.js
IP 151.101.1.91:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ccbb2aec992e6594f48b52c43f042987
f94c382d9eb3426c55837807e71662a018ebc1ca
3cb5ad0932d18132f9a4a23e4a1eff322e905c8dbdb6bcf233360eb11b6ed9ee
GET /mutiny-client/6.4.1.66.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: M+H7pgkUgC3xHT7xrQPH6mevTCD3GwulBhy7xOhQEPitozfH+Vda3G2wjGNYJZ4kflQeSlBd2qc=
x-amz-request-id: FBP3VXNQ03XHSZDP
last-modified: Thu, 02 Feb 2023 17:49:10 GMT
etag: "2856b49355f1e0be01e8b2a9fee73d87"
cache-control: max-age=31536000
x-amz-version-id: gfTw0O4srRCV9_kRbvr78_K.qRJD9Y.E
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:04 GMT
via: 1.1 varnish
age: 77142
x-served-by: cache-bma1670-BMA
x-cache: HIT
x-cache-hits: 363
x-timer: S1675888565.796988,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28921
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300,400,400italic,700,900
142.250.74.106200 OK 8.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:300,400,400italic,700,900
IP 142.250.74.106:0
Hash 3e9851749249184067848793fdac6eab
ecbefc5b6ff39b6d9e32037881e76d64447d2f61
8c582f41b428d22ae85c200ffe6ce0af343a16f63866ae803b67f7bc362bb67d
GET /css?family=Lato:300,400,400italic,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 20:36:04 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/7.4.1.66.js
151.101.1.91200 OK 11 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/7.4.1.66.js
IP 151.101.1.91:0
File type ASCII text, with very long lines (31369), with no line terminators
Hash 79c7967d9beb1b6d56113b4f540d6774
0d7b1ed508a5449260b60f7e536b9bedaf0523d7
b24aed162f23b744a0684d1d884b629f0f76441883d58bab2dfc0b2cdb5d0d7f
GET /mutiny-client/7.4.1.66.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HbPDVu88QpXonKMIQxsLX2ks2YEk0wTVN0PFyr2R+qCdTrePAFZbkXVIKVu692EPsVJCaM+HLBk=
x-amz-request-id: RY5T7SYPF01QWT00
last-modified: Thu, 02 Feb 2023 17:49:10 GMT
etag: "12ced8c21cbda605896e0e20d4162dd4"
cache-control: max-age=31536000
x-amz-version-id: 4En9JB3XV_mhPdpf8EabNAfMfS2EjXci
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:04 GMT
via: 1.1 varnish
age: 77156
x-served-by: cache-bma1670-BMA
x-cache: HIT
x-cache-hits: 367
x-timer: S1675888565.802355,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11412
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q2
IP 104.18.21.226:0
Hash 8bdb40537d2b39df550bcedf0d99c808
d8dd6987515a3e80e644d570ae7c52622599110d
41b2d83a7e5c07a14c60bc6994d12e818a61ebe3ad42d3b0a8d873af64a95640
POST /ca/gsatlasr3dvtlsca2022q2 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:04 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B66EFFBC3B54B77F30B55D9EAD7D88FE60448B53"
Expires: Thu, 09 Feb 2023 07:00:00 GMT
Last-Modified: Wed, 08 Feb 2023 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 58
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796727ca2f47fab8-OSL
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.js
2.18.173.203200 OK 173 kB URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.js
IP 2.18.173.203:0
Size 173 kB (172651 bytes)
Hash 84779352069f84f5b76940de140e7a19
a81bfcee86d58634b7dfe59494906133c7f1663a
a005f5199a26cc054cd760b6bcc30ef1af38eb4853d5172d5e3c63716b21d62b
GET /utag/blackbaud/main/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d032e3a8158d91ddc57322c298785838:1675800878.604444"
last-modified: Tue, 07 Feb 2023 20:14:38 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Wed, 08 Feb 2023 20:41:04 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.4 kB IP 142.250.74.131:0
Hash 83c28b98d18c6fbb4414b84467df3d52
d39df720cf10e4a33162433e2172ce843bf909ed
83629623feb935eba0020da9b5cc683e04ff1686aeddbc4de19112b5cc6ca843
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=655ccfc4f9
104.18.22.52200 OK 54 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=655ccfc4f9
IP 104.18.22.52:0
File type ASCII text, with very long lines (65397)
Hash dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
GET /releases/v5.15.4/css/pro.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 276793
accept-ranges: bytes
server: cloudflare
cf-ray: 796727ca8cb80b49-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9
104.18.22.52200 OK 4.2 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9
IP 104.18.22.52:0
File type ASCII text, with very long lines (26366)
Hash 7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 276793
accept-ranges: bytes
server: cloudflare
cf-ray: 796727ca9cc10b49-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9
104.18.22.52200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9
IP 104.18.22.52:0
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 276793
accept-ranges: bytes
server: cloudflare
cf-ray: 796727ca8cc00b49-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 44fc0cb48c26edb9ce36736707b9182a
62de7faa3e8171c0d38a2e03a604d2545a3ede7f
9e511ad6ed9e7c5f28f573422e3891d2f4e5c2ba5107f7eda808c529a95931a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
info.everfi.com/js/forms2/js/forms2.min.js
104.17.71.206200 OK 73 kB URL HTTP/2 info.everfi.com/js/forms2/js/forms2.min.js
IP 104.17.71.206:0
File type ASCII text, with very long lines (32008)
Hash eaee9b91af5cbb75c7b3bd053826885e
8d0ed42f4baa9c9b96ff621c49d564ea12cda010
f386bc0f4203d1730e055c71ff5e6c35c4057a161dc6072a7914f19ca5f4a4d0
GET /js/forms2/js/forms2.min.js HTTP/1.1
Host: info.everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 20:56:20 GMT
etag: "481ebc-33e51-5f217594de500"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1810
expires: Thu, 09 Feb 2023 00:36:04 GMT
cache-control: public, max-age=14400
set-cookie: __cf_bm=3yb31O7d2te2fxxk7A3XI_CSspEwS5rJZBwBoshBv5Y-1675888564-0-AQceAHI8Yhtj6Fdqpsii7tSc14JCj9OOgsg51q12aAaJ5+5Lh8ZamHQ2+js+LBVIRBJMSKPRaBYsgHMVGok9FNQ=; path=/; expires=Wed, 08-Feb-23 21:06:04 GMT; domain=.info.everfi.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 796727ca2e69b517-OSL
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash 9b9530469460dbf1b64579b9c3bf2e53
cf5d7ccc68001f422f2a733702e01044af99e257
532b48f9dab14b46f160b42d5535cdaca92641d3e0d25b341dd48a4b54a601ec
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:04 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "58E98A6761753D3D4819834F3AFAA2C51CE7E33A"
Expires: Thu, 09 Feb 2023 08:00:00 GMT
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1355
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796727cb1826fab8-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 7.3 kB IP 142.250.74.131:0
Hash aa608da6b83e5255b947eb7e9916bcb0
b8dc9b51d442f9c5115a90f2dfbf71a6e7c48912
3f541b88abd441bdb0dbd4a541f743387bcf94c6cfb32406c1c92482b145f9f8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.227200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 04:29:08 GMT
expires: Wed, 07 Feb 2024 04:29:08 GMT
cache-control: public, max-age=31536000
age: 144417
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
216.58.207.227200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Hash 1c6c65523675abc6fcd78e804325bd77
898d9808304dc157f5dcb18ca169ec6e2b96b3d7
08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 04:28:57 GMT
expires: Wed, 07 Feb 2024 04:28:57 GMT
cache-control: public, max-age=31536000
age: 144428
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA
151.101.1.137200 OK 31 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA
IP 151.101.1.137:0
Hash 1272821fe49f6119811a39579416e40c
134f6d6aea8b23fcabec183c623c51cb21158f7d
c85d8c79287b391186ba3f659a8e93cd02b3915e1ec6bb16fb3277afee5f483d
GET /everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Endeavor_Website_preview-e1533064446603.webp"
content-type: image/webp
etag: "e718701be14dfb45e8e70950d88f2e54"
last-modified: Tue, 14 Dec 2021 02:23:41 GMT
date: Wed, 08 Feb 2023 20:36:05 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-08T20:36:05.029Z;desc=hit,rtt;dur=18
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 26104
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA
151.101.1.137200 OK 153 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA
IP 151.101.1.137:0
Size 153 kB (153025 bytes)
Hash 71a0f657426760f301cecb1d32018344
1c72eb110ad366a4fbfd72fb40e121b2d6bc8ab6
437614099599cce81cf43f793ad6b8046ea5dac006000d4497ec6722c917d287
GET /everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "a16aae583e4634e743fb443af542fd07"
last-modified: Sat, 14 Jan 2023 06:27:36 GMT
date: Wed, 08 Feb 2023 20:36:05 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-08T20:36:05.029Z;desc=hit,rtt;dur=18
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 139440
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_732,h_546/f_auto,q_auto/v1615774462/Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.jpg?_i=AA
151.101.1.137200 OK 24 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_732,h_546/f_auto,q_auto/v1615774462/Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.jpg?_i=AA
IP 151.101.1.137:0
Hash 58e2931ecce94736923973bf6112f810
17930d3e9064abe30682d91d1bcc9f3e9f555f3d
61d6f2ffa6b348410508e9189c429db7a48c67bd05d2d993e0ebc7ced71d8330
GET /everfi/image/upload/c_scale,w_732,h_546/f_auto,q_auto/v1615774462/Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.webp"
content-type: image/webp
etag: "e6e3dcbf496bf46b458377be9ad90b24"
last-modified: Tue, 14 Dec 2021 01:44:30 GMT
date: Wed, 08 Feb 2023 20:36:05 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2023-02-08T20:36:05.032Z;desc=hit,rtt;dur=18
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 23314
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 10:25:03 GMT
expires: Mon, 05 Feb 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 295862
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA
151.101.1.137200 OK 37 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA
IP 151.101.1.137:0
Hash eee7e83f66c75a368a4d9fa2449c65a7
bc7e2fbe0e77bcd33cb676bdcd76a6087d7ba6be
dfb7971641a40d3587079fee009b7ed0c5b51d6c03fbf59362bd8a0d89bf0408
GET /everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="2022-2023-new-content.webp"
content-type: image/webp
etag: "a96bd57f1ad8c808d8336b9bf67bc45b"
last-modified: Mon, 11 Jul 2022 19:45:14 GMT
date: Wed, 08 Feb 2023 20:36:05 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2023-02-08T20:36:05.054Z;desc=hit,rtt;dur=16
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 33580
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
216.58.207.227200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 24408, version 1.0\012- data
Hash efee2d080d7bebdd2e0aeb2e030813a0
f8d38f9f9584e48c2e469877ebd94232265585f1
bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:36 GMT
expires: Fri, 02 Feb 2024 21:48:36 GMT
cache-control: public, max-age=31536000
age: 514049
last-modified: Tue, 26 Apr 2022 15:50:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 44fc0cb48c26edb9ce36736707b9182a
62de7faa3e8171c0d38a2e03a604d2545a3ede7f
9e511ad6ed9e7c5f28f573422e3891d2f4e5c2ba5107f7eda808c529a95931a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/everfi/image/upload/c_scale,w_848,h_474/f_auto,q_auto/v1673889753/Best_306_5-1.jpg?_i=AA
151.101.1.137200 OK 41 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_848,h_474/f_auto,q_auto/v1673889753/Best_306_5-1.jpg?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ddbde5848f9544524bd7530b906209fa
c38fe8a17b2ead4ebfd7fb2bc45ed7ccb4431a92
0ab4ed60ba7051780829f33af07fff95eedc899fbd0c9028f181c3af012d601e
GET /everfi/image/upload/c_scale,w_848,h_474/f_auto,q_auto/v1673889753/Best_306_5-1.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Best_306_5-1.webp"
content-type: image/webp
etag: "ddbde5848f9544524bd7530b906209fa"
last-modified: Wed, 18 Jan 2023 19:44:36 GMT
date: Wed, 08 Feb 2023 20:36:05 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2023-02-08T20:36:05.064Z;desc=hit,rtt;dur=16
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 41310
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/f_auto,q_auto/v1662561673/word-force-screenshot/word-force-screenshot.png?_i=AA
151.101.1.137200 OK 80 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1662561673/word-force-screenshot/word-force-screenshot.png?_i=AA
IP 151.101.1.137:0
Hash 1e41963278ebc093cd30b41c8dad5e9f
527080996274ae194282d9b68f42228f514fc8ca
19f64e92f787607e448d0e996a26920474fd70e7b7aac92c0f769d36cec7fc74
GET /everfi/images/f_auto,q_auto/v1662561673/word-force-screenshot/word-force-screenshot.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="word-force-screenshot.webp"
content-type: image/webp
etag: "e90195b48e506da93cebd53d9b3bb6b5"
last-modified: Wed, 07 Sep 2022 14:45:41 GMT
date: Wed, 08 Feb 2023 20:36:05 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=18;cpu=0;start=2023-02-08T20:36:05.054Z;desc=hit,rtt;dur=16
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 78864
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 1.2 kB IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 075367fbb9b9e51328cda8a0e1cabc20
33bca1e5d1e11daaf0a316ad6d740a047ab1e59c
a50d541472c83267a673bf84487420a25486887026803be94223be1fe06b34f0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7821
Expires: Wed, 08 Feb 2023 22:46:26 GMT
Date: Wed, 08 Feb 2023 20:36:05 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7821
Expires: Wed, 08 Feb 2023 22:46:26 GMT
Date: Wed, 08 Feb 2023 20:36:05 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7821
Expires: Wed, 08 Feb 2023 22:46:26 GMT
Date: Wed, 08 Feb 2023 20:36:05 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7821
Expires: Wed, 08 Feb 2023 22:46:26 GMT
Date: Wed, 08 Feb 2023 20:36:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 726928e5de19ef978faebbe933c34008
bdaba3ed0c7efb65de88af96063d830683c8499b
c6d208fcee052da80de1bf2dcccbbc48853511b8888c4777799ee676abba51b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8644
x-amzn-requestid: d6d71f42-f887-4ad0-a2b7-9073d3857b03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjRHBFoAMF4_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47b-57490f255d8d30a561fdcd3a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qfHMhMAdnYcOa0Xm23enTGXj4CQC-QFHV50Pq6QQdvM5YcIgUZVPRQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:54:36 GMT
etag: "bdaba3ed0c7efb65de88af96063d830683c8499b"
content-type: image/jpeg
age: 81689
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8532aa1-7280-445c-9c4c-b562d09929d0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8532aa1-7280-445c-9c4c-b562d09929d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1d2eccb9280b851aa1725df5681f6bbd
b4e2b14ee5bc9ee6c9c05666c34b2d1b6ec425b5
c64ece16f4c550feb05db1bccbf74b49d839e77fea31893d48a3f0c267939c92
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8532aa1-7280-445c-9c4c-b562d09929d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10328
x-amzn-requestid: 0b0b3fcd-416c-47ac-afa0-51be0ab85665
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PPlGGqoAMFxYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c596-219ee5023d71e4ce17d49233;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:41:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pNBF_lBtNmvVWQAnBxCp0e03pdV_rbGOf9V1UvqeRO2vcZR3_lSE2w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:55:21 GMT
age: 81644
etag: "b4e2b14ee5bc9ee6c9c05666c34b2d1b6ec425b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.youtube.com/embed/zXNZS7ou0_c
142.250.74.46200 OK 36 kB URL HTTP/2 www.youtube.com/embed/zXNZS7ou0_c
IP 142.250.74.46:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58646)
Hash b7f4c2755828bb421df32e6ef5ae6117
d04f0735c51ab4a3b1a2ab2b96d1bc4480d09c78
5fe025c099d4b5ad718765291dc410845271fb99c18a1f2c8efe69faa87f84d3
GET /embed/zXNZS7ou0_c HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=0CP-7NrkB8Y; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=lA4icok0nZ4; Domain=.youtube.com; Expires=Mon, 07-Aug-2023 20:36:04 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TnpnNE5qVTNOVEkxTXpnek5UazVOZz09ELSPkJ8GGLSPkJ8G; Domain=.youtube.com; Expires=Mon, 07-Aug-2023 20:36:04 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+824; expires=Fri, 07-Feb-2025 20:36:04 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 544181f4aba24fc687a14522dd20f720
2b117270563b8c466ec774acce55271c38f6135b
607c45cc5b4726b92c8507988bbb90ac6a44a3cf22b290030d440266350099a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4961
x-amzn-requestid: c3b9db99-726f-4473-a6b6-9cff0dceb949
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fswe1GeRoAMFiAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db612b-17b52fcd74e374f1104af709;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 07:07:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dSxTM3mmYK8cLOy5_x4o-lew1goEgwT4fBHi0pM-HSK_qBC6rDAlzg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 05:47:57 GMT
age: 53288
etag: "2b117270563b8c466ec774acce55271c38f6135b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
IP 34.120.237.76:0
Hash 1ecbc9861c450e40bf6cc7fc152c0ff6
709e6790d987946952a52848831d0dd5970b6b5c
e653215ca97a7bd4717be84f09d09214d82c49550349bd2fd7b951c4dd289e80
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10058
x-amzn-requestid: 94374454-1e89-4c43-895b-0a90f39b851d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O5vEgcoAMFctg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c50a-0bf11cad4b0818c36188ba91;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qYXu_I4vL00EOopA1nQcxCTMKf4nObKFk9XQozhw6FezKsfTDem3Mw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:06:35 GMT
etag: "520b122e3ce52220af153fee26bb7067283f9075"
content-type: image/jpeg
age: 80970
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8a3fa4f1ec82d501942f9db3de2cb7d
b91c2aea7f2fb26131c8929b254c5596a1bb25ff
9d246eeab8ba04c775a03fd960c8859934a0accb737e845e89aba40bc573fdaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6342
x-amzn-requestid: b2b61a71-5326-4fc6-baba-7baad29cf7c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkbHfDIAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c482-5cc4028d01d05305637af317;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: iIQAy6CQSvnvQ79UJ6ifJbs-0kEqUYe8OyCqPb2HSKxoDoLykOyaLg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:28 GMT
age: 81817
etag: "b91c2aea7f2fb26131c8929b254c5596a1bb25ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541
2.18.173.203200 OK 1.2 kB URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541
IP 2.18.173.203:0
File type ASCII text, with very long lines (995)
Hash cfd5c0a066e7addbdc9778a134b80d9c
9d34e630d703b18e1d48f4dc0c7e2f048b0ec368
ce79520f243faec0d953a70f3ac392ecc8e7936ab7e80bc94212d54af1f5f464
GET /utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "4ff103aae37a4ed488af34613295b078:1655221329.681708"
last-modified: Tue, 14 Jun 2022 15:42:09 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Thu, 23 Feb 2023 20:36:05 GMT
date: Wed, 08 Feb 2023 20:36:05 GMT
content-length: 1150
X-Firefox-Spdy: h2
user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=false&session_token=8778b50e-138b-447b-b13e-64d03eec0f49&token=7b73f9362c0ba1bd&visitor_token=7fdb471b-add3-4b8d-9b76-ea0a9b181435
151.101.193.91200 OK 19 kB URL HTTP/2 user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=false&session_token=8778b50e-138b-447b-b13e-64d03eec0f49&token=7b73f9362c0ba1bd&visitor_token=7fdb471b-add3-4b8d-9b76-ea0a9b181435
IP 151.101.193.91:0
Hash b75ba6273a5ca00bef19c9d3c8920007
1f9279765ef99d15ea020c629a1a55fd1909a8cc
6a9e26cf202872e1b45b80b81d599c80ff9513df4f6d06e43b82f860b86f5757
GET /personalize/user_data/16919262ebbbde25.json?async=false&session_token=8778b50e-138b-447b-b13e-64d03eec0f49&token=7b73f9362c0ba1bd&visitor_token=7fdb471b-add3-4b8d-9b76-ea0a9b181435 HTTP/1.1
Host: user-data.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: x-cache, x-cache-hits, age
access-control-max-age: 7200
cache-control: no-store
pragma: no-cache
x-visitor-token: 7fdb471b-add3-4b8d-9b76-ea0a9b181435
x-async-user-data: false
etag: W/"0f1260904ed65d84400367e3fa6fc691"
x-request-id: 1a4bd26d-a4ff-465e-85fb-1ac4b5506322
x-runtime: 0.061723
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
date: Wed, 08 Feb 2023 20:36:05 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1655-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675888565.800386,VS0,VE436
vary: X-Visitor-Token,X-Profile-Token,Fastly-Client-Ip,X-Async-User-Data,Origin,Accept-Encoding
x-connection-speed: broadband
x-continent-code: EU
x-country-code: NO
x-edge-datacenter: BMA
x-edge-region: EU-East
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 743
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:03 GMT
expires: Fri, 02 Feb 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 514082
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 17:20:45 GMT
expires: Tue, 06 Feb 2024 17:20:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 184520
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=blackbaud/main/202302072014&cb=1675888621177
2.18.173.203200 OK 2 B URL HTTP/2 tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=blackbaud/main/202302072014&cb=1675888621177
IP 2.18.173.203:0
File type ASCII text, with no line terminators
Hash 7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
GET /utag/tiqapp/utag.v.js?a=blackbaud/main/202302072014&cb=1675888621177 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7bc0ee636b3b83484fc3b9348863bd22:1460653071"
last-modified: Thu, 14 Apr 2016 16:57:51 GMT
server: AkamaiNetStorage
content-length: 2
unused62: 8096267
cache-control: max-age=600
expires: Wed, 08 Feb 2023 20:46:05 GMT
date: Wed, 08 Feb 2023 20:36:05 GMT
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP 104.18.21.226:0
Hash 8cf0b610efac16196b05cb1ca469ff56
23f2e2e5fa1d005c57cf22ab58d82120e2dd55f7
f003ec44ac40d51401723f29ebad80225a40a19ead0922877c814eb756bd8f04
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:05 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "D074AA1C337F344B2DFF6341CBB2B39EFB4FDC0D"
Expires: Thu, 09 Feb 2023 07:00:00 GMT
Last-Modified: Wed, 08 Feb 2023 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3040
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796727cd3af1fab8-OSL
cdn.optimizely.com/js/21287320532.js
2.18.172.152200 OK 97 kB URL HTTP/2 cdn.optimizely.com/js/21287320532.js
IP 2.18.172.152:0
File type ASCII text, with very long lines (65468)
Hash fd2aaecd742ecef122512301c046b928
3f31c1af5246825a7531c280270fd5796c25cb53
5816496ea7f53895698e4b39d3b93edd9e36b4f9e923ea24e686037332672c8d
GET /js/21287320532.js HTTP/1.1
Host: cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: uB5O9P2mJA2/yzedxFTZSsXiV2X7vaY1f81HCZ6iJZMjF9vfPhq3+EhoKCJjIg6HbFxmnRZ4A98=
x-amz-request-id: 6P9YCWZ3870DCMP7
x-amz-replication-status: COMPLETED
last-modified: Mon, 06 Feb 2023 19:47:16 GMT
etag: "fd2aaecd742ecef122512301c046b928"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 1031
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: 0loNKruLy.brV8feqiS93pXHIUA54i.8
accept-ranges: bytes
content-type: text/javascript; charset=utf-8
server: AmazonS3
content-length: 96962
vary: Accept-Encoding
cache-control: max-age=120
date: Wed, 08 Feb 2023 20:36:05 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, cdn;desc="AkamaiION";dur=0,rtt;desc="3";dur=0,cdnip;desc="2.18.172.152";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5cee7b98e5150c1f893636a54fc4a6a3
a4a5c0b5271d7489985e25bc9c5d912d4e2552d6
695a2faaf6485e37d403123c99b79a6c3cdf768592b487862cc23a10a6ab407e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 943
Cache-Control: max-age=121597
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Etag: "63e33c03-1d7"
Expires: Fri, 10 Feb 2023 06:22:42 GMT
Last-Modified: Wed, 08 Feb 2023 06:06:59 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
sjrtp-cdn.marketo.com/rtp-api/v1/rtp.js?aid=blackbaud1
23.53.48.147200 OK 0 B URL HTTP/1.1 sjrtp-cdn.marketo.com/rtp-api/v1/rtp.js?aid=blackbaud1
IP 23.53.48.147:0
ASN #1299 Telia Company AB
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtp-api/v1/rtp.js?aid=blackbaud1 HTTP/1.1
Host: sjrtp-cdn.marketo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Jetty(9.4.45.v20220203)
Content-Type: application/x-javascript; charset=UTF-8
Content-Length: 0
Strict-Transport-Security: max-age=63113904
Date: Wed, 08 Feb 2023 20:36:05 GMT
Connection: keep-alive
dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675888621209
52.18.129.71200 OK 310 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675888621209
IP 52.18.129.71:0
File type JSON data\012- , ASCII text, with very long lines (368), with no line terminators
Hash 08723403f9e79f682bf45e03ec4093e2
5646130d29d32eafdada9b739e654d5aefd271f6
92cad27ced7d6737dd3598abd550ecd1b5deea02a1d395a7cc99d2d8334b721e
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675888621209 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://everfi.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v046-070ee2004.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=77348860690816873144056905070499333996; Max-Age=15552000; Expires=Mon, 07 Aug 2023 20:36:05 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: WzXWTMy5RwU=
Content-Length: 310
Connection: keep-alive
a20497791765.cdn.optimizely.com/client_storage/a20497791765.html
104.110.8.48200 OK 843 B URL HTTP/2 a20497791765.cdn.optimizely.com/client_storage/a20497791765.html
IP 104.110.8.48:0
File type HTML document, ASCII text, with very long lines (1371)
Hash c122a3cab7bc9bab0fed7f26b3334706
35877323b39ff4632ee735d8f8e29e71b4fc4aa9
6015474cec9d8aba396ffac0073f15bf6299ade9f00f709be8ace492388b8c10
GET /client_storage/a20497791765.html HTTP/1.1
Host: a20497791765.cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: akTvBZHS9kSAStWBSLicpC35/ZU6lVtsWWjIlbtOc3HmRsJIEvwTJWlK8bwz0HJKNaX8dLj/Ols=
x-amz-request-id: TNYAV7N5JMPY49FX
x-amz-replication-status: PENDING
last-modified: Mon, 06 Feb 2023 19:47:06 GMT
etag: "28621884f3ecb72e8b12ab992dbdf7e6"
x-amz-server-side-encryption: AES256
x-amz-meta-pci_enabled: False
x-amz-version-id: hgV5znTzEYJtrLxexDzM6fRnO_WjaB9B
accept-ranges: bytes
content-type: text/html; charset=utf-8
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=120
x-akamai-transformed: 9 - 0 pmb=mRUM,2
content-encoding: gzip
date: Wed, 08 Feb 2023 20:36:05 GMT
content-length: 843
server-timing: cdn-cache; desc=HIT, edge; dur=1, cdn;desc="AkamaiION";dur=0,rtt;desc="2";dur=0,cdnip;desc="104.110.8.48";dur=0,cdnmap;desc="a4728.x.akamaiedge.net";dur=0,proto;desc="h2";dur=0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1e41d2bb861e28f05f0735ad1b0d035e
a73686fbc5ab7cce5e2925bde0057af5acb0af74
8f477857ad04a959976a41e3f3500cc527f5bee412d6fd0616be96a25b57572a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2133
Cache-Control: max-age=149406
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Etag: "63e3a3ff-1d7"
Expires: Fri, 10 Feb 2023 14:06:11 GMT
Last-Modified: Wed, 08 Feb 2023 13:30:39 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
cdn.c212.net/c.min.js
54.230.111.90200 OK 747 B IP 54.230.111.90:0
File type ASCII text, with very long lines (747), with no line terminators
Hash 9f5634a151b9e5ecb2adec9462f783d6
3d6ac40aed2275277131d462168dac9d27a628f0
10fdc76cd92396525cf18941196d2251aa4d0c05ba2a0a5421e3af99c01503ae
GET /c.min.js HTTP/1.1
Host: cdn.c212.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 747
last-modified: Fri, 24 Jan 2020 19:12:36 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 07:57:30 GMT
etag: "9f5634a151b9e5ecb2adec9462f783d6"
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wgr3GDhJ5NQNFsFAKrZgT5YdE00KFqWBnQeHN2lBsWWLXdXPWu-HMg==
age: 45529
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash dba40f6ad804f091736898d753428480
09bacfaee2996b419d26e0030ba62bdd11aaa29a
893d4dce599de7fd300233b7d306af3711d5e8396acf9429847521d5330347f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5644
Cache-Control: max-age=129879
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Etag: "63e34a00-116"
Expires: Fri, 10 Feb 2023 08:40:44 GMT
Last-Modified: Wed, 08 Feb 2023 07:06:40 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 59274586b00249f3cbd2ff5dc9071563
76b59ad65277082e1811d339bf03d953037e0a25
7e6c2cd14a5c882d4a742f80bc48f2c9704ea2ca12e2e98f9f144ce230450eb0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6354
Cache-Control: max-age=163381
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Etag: "63e3ca18-117"
Expires: Fri, 10 Feb 2023 17:59:06 GMT
Last-Modified: Wed, 08 Feb 2023 16:13:12 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 3665df3873f0b47db79ac8b3e1f2fe9d
84c8cd3fc93b9f126071cee4beb1ae806877a42b
89c1fb6180fe564bb8ea59eca207b9805b7b33230a0a7c775e2882c5a8da6921
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 20:36:05 GMT
Last-Modified: Wed, 08 Feb 2023 18:48:59 GMT
Server: ECS (dcb/7F16)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _jbg--B6z3w1TEdBPAsHAN0j7-YLFyVnyjimHPWQOArrE8wBvRDtQA==
Age: 6426
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6a01a1cb62e9d8dcf9c746da7d0a69b8
95440ca2785209370ba2394c9466e361735ecb66
7927e64b9d5090d6e757323fd02c1f6058561d731c52de3fe8f6f10ac2bfa024
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:05 GMT
Server: ECS (amb/6BAD)
Content-Length: 280
ob.healthroundprince.com/i/9ebca9e35a6781e1317f22e9acd57b94.js
54.230.111.85200 OK 32 kB URL HTTP/2 ob.healthroundprince.com/i/9ebca9e35a6781e1317f22e9acd57b94.js
IP 54.230.111.85:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash fb7494f64c015f8f4029616ae1f2bcf2
3fcd3d21cba99da8a924223e48fd3bb3fa9f6216
1ba1b1fb427b380bdb44c066ae4d6a98c830b0cd03ecd16eddb72297dfb22456
GET /i/9ebca9e35a6781e1317f22e9acd57b94.js HTTP/1.1
Host: ob.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 31909
content-encoding: gzip
server: Caddy
date: Wed, 08 Feb 2023 11:38:38 GMT
cache-control: max-age=43200
expires: Wed, 08 Feb 2023 23:38:38 GMT
etag: "15758-/t9aj+7Tfi1mOFzpwrZBH1jcGFc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: grpRGYR_TaTn7aoP2cF7Fgjdn8VtDuNOoK5r8U_EVfHOb-Q6RNw0Pw==
age: 32247
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq
23.36.79.17200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2298)
Hash 72b1029f1a59294958ea92faff13f67c
e9aea8ea5ba2c33a8451f0dffca2877a7ad1ff4c
f3b645e4de8e9466f1d2b21ed27823e905f145812f7aebbebb6a912670bfb668
GET /i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230208203605FFFD8650458DB0BBCB24
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a918969cf5d1936d73b37aaf4d57de2c40bf732adce1c16e8626829e8c21bda919abc5f4bcfd23303e8122c640e9ba2f2d00d3600bc468ab0c3e78f335da6a5d0
content-encoding: gzip
expires: Wed, 08 Feb 2023 20:36:06 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 08 Feb 2023 20:36:06 GMT
content-length: 1132
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
set-cookie: _ttp=2LTIITdBsxuKMYgPPMA5xP4e9Tz; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=99
x-origin-response-time: 99,23.36.79.13
x-akamai-request-id: a7b3d31
X-Firefox-Spdy: h2
my.hellobar.com/edcdff19ac78bb7a167b2e3617e196453f5eaefa.js
104.22.14.23200 OK 25 kB URL HTTP/2 my.hellobar.com/edcdff19ac78bb7a167b2e3617e196453f5eaefa.js
IP 104.22.14.23:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash addf5c89b5553c24feb22f89c6bfc25a
b016737ac7babf8bb5ca66aaa8ad44735d402e38
7331ae5a5bb95863a1e69fcb3e22da7363b7ba507069d92e7e0aa4dd48e91a5e
GET /edcdff19ac78bb7a167b2e3617e196453f5eaefa.js HTTP/1.1
Host: my.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:05 GMT
content-type: text/javascript
cache-control: max-age=86400, must-revalidate, proxy-revalidate, s-maxage=10
cf-bgj: minify
etag: W/"15512df56430efb60ea3b9901cb0ba16"
last-modified: Wed, 08 Feb 2023 20:35:27 GMT
x-amz-id-2: Wn7Wo4kDmdQFh4wsOTrPTC2gWl8h9izGx4a+lW2LGOhwNXwANNgJWXIpKIA8Tj9pUyPEnw93P4Q=
x-amz-request-id: QE9R3MAFAQH11GFZ
cf-cache-status: HIT
age: 3
vary: Accept-Encoding
server: cloudflare
cf-ray: 796727d12891b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWNiNWY1N2YyMA.js
23.36.79.17200 OK 66 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWNiNWY1N2YyMA.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 2f7f8f3de4f656207b1bb5213b99a66d
b343bbee34df8e1dc54f54a1db764871aa9c7f66
a72933f6888f7fadba1bccc2fe4c61d8bc14449f9d1b90a25c37f4da994ecbc5
GET /i18n/pixel/static/main.MWNiNWY1N2YyMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: _ttp=2LTIITdBsxuKMYgPPMA5xP4e9Tz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202302072108362D6BF22F360C4EC81120
x-tt-trace-host: 0149ac210ef9156de5d0158c58c245ffa55bb2e8ba1356745a09f7bc6b8966f5e06f89c329caee7d4e9fe96ecf3737ecfceb49e6e347b2712d51e070233335e49d13f993967b18f98fcc221253404f6149360f17d79399b99d17fc68a0026e1e1e
content-encoding: gzip
date: Wed, 08 Feb 2023 20:36:06 GMT
content-length: 66064
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: a7b3ff1
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 59274586b00249f3cbd2ff5dc9071563
76b59ad65277082e1811d339bf03d953037e0a25
7e6c2cd14a5c882d4a742f80bc48f2c9704ea2ca12e2e98f9f144ce230450eb0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6355
Cache-Control: max-age=163381
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:06 GMT
Etag: "63e3ca18-117"
Expires: Fri, 10 Feb 2023 17:59:07 GMT
Last-Modified: Wed, 08 Feb 2023 16:13:12 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
marketo.clearbit.com/assets/v1/marketo/forms.js
18.135.18.21200 OK 28 kB URL HTTP/2 marketo.clearbit.com/assets/v1/marketo/forms.js
IP 18.135.18.21:0
File type Unicode text, UTF-8 text, with very long lines (3400)
Hash bf6aa97d440b453e5d58cd5bcf2e585c
cd59575ea6262fa79890d53880697f82fb251cf0
4063e72c353fcac556ca10a2d6d26666e4b486aaefaa1872585b3f9e88b91adb
GET /assets/v1/marketo/forms.js HTTP/1.1
Host: marketo.clearbit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
last-modified: Fri, 06 Jan 2023 21:26:29 GMT
set-cookie: rack.session=BAh7CUkiD3Nlc3Npb25faWQGOgZFVG86HVJhY2s6OlNlc3Npb246OlNlc3Npb25JZAY6D0BwdWJsaWNfaWRJIkVkNjJhNDg5MGUyMDczNzUwYjIwMWQ1MzJlM2FlYjE2ZDYxNTk3OTE2MTE4ZDJkMjE2ZDJkNzIxZTQ3YTQwZGJmBjsARkkiCWNzcmYGOwBGSSIxMUNINHJZUnFsK0E1TzN3ZHVva1MyNEVGUVJNeE9DZnF1QmY2YWpmb3Jicz0GOwBGSSINdHJhY2tpbmcGOwBGewZJIhRIVFRQX1VTRVJfQUdFTlQGOwBUSSItMTFjZDFkMmEwOWFkM2NjMzM4ZWY4ZDY5NmY1NTdhYmNkZjNjMDNkMAY7AEZJIg5fX0ZMQVNIX18GOwBGewA%3D--a8d0100b88f0cca9e2eff3872b5859f24f2b7958; path=/; expires=Wed, 15 Feb 2023 20:36:06 GMT; secure; HttpOnly
content-length: 28086
date: Wed, 08 Feb 2023 20:36:05 GMT
server: envoy
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
X-Firefox-Spdy: h2
my.hellobar.com/modules.js
104.22.14.23200 OK 77 kB URL HTTP/2 my.hellobar.com/modules.js
IP 104.22.14.23:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 28c8a15c3f03f526700353cd09a3a9c7
28263fe20e34314ffc930ea66cfab0d658575b6b
d5fc26c1056bb8a7f4667ae61c9e79adb704bf3e7457743f93e307f66d6581dc
GET /modules.js HTTP/1.1
Host: my.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:06 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=260615
etag: W/"ee85f3aa09f4f82ddd1d0df2fd1af30f"
last-modified: Fri, 23 Dec 2022 05:10:46 GMT
x-amz-id-2: FbKu5nSSamqqutaqGylcNdcI5O5SDGopg0GxPftEg1ygWGh7Rvcz4B73tCzUOVDlgYROQFCF8SM=
x-amz-request-id: 2W5YNVHZ8P90QP0P
cache-control: max-age=14400
cf-cache-status: HIT
age: 2723
vary: Accept-Encoding
server: cloudflare
cf-ray: 796727d178fbb517-OSL
content-encoding: br
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_5f1fb.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_5f1fb.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 591b95fff14a7f5e64f9536c5c595274
e02712023e2c51a67054a78696ea2203ff6fc85e
7b19272e8214a2ee99bba815ca143cf20e761055d526fa500d82b81f1753c634
GET /i18n/pixel/static/identify_5f1fb.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: _ttp=2LTIITdBsxuKMYgPPMA5xP4e9Tz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202302072108362D6BF22F360C4EC8114B
x-tt-trace-host: 0149ac210ef9156de5d0158c58c245ffa55bb2e8ba1356745a09f7bc6b8966f5e06f89c329caee7d4e9fe96ecf3737ecfccf99cf284406cdeb69bc36a3048781d6910af8592b11c62fae4a30bea833e584e4d134275604f50d063fb2b5ac1f59e9
content-encoding: gzip
date: Wed, 08 Feb 2023 20:36:06 GMT
content-length: 30679
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: a7b4528
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
embed.formhq.net/v1/platforms/bWFya2V0bw.js
172.66.43.197200 OK 266 B URL HTTP/2 embed.formhq.net/v1/platforms/bWFya2V0bw.js
IP 172.66.43.197:0
File type ASCII text, with very long lines (422), with no line terminators
Hash 300edff28df0d836c2da771effcf87b4
06b8885db49069726df499e1891f83a8e72509ac
a7dac1cc49cdb587a387b917b11d8e2e5a3fd56664a59e092719687d16599d4e
GET /v1/platforms/bWFya2V0bw.js HTTP/1.1
Host: embed.formhq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:06 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=423
etag: W/"62e92e06-1a7"
last-modified: Tue, 02 Aug 2022 14:00:38 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: max-age=1800
cf-cache-status: HIT
age: 1780
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CLjLGC9kwfg3f6lgAfNB9UBy9MzUv1fGwTyzUpo%2BHVsRKWfaaJTiXTcybr8SPZkSxS4fW4VAsBJXE3Tra8cN4x8oC13NYuUHL%2FIwrIMLF4YScO5Aoh9ia%2BU8gTlSQv8LAMSF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 796727d2fba0b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.66302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 08 Feb 2023 20:36:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f30ebb7855430e77d7f7e78185824905
f833d3fbb268c2d0b289b8af527a13ea6ab3535d
ecf61ddf953eab9c7889a0b5e697364bed9f8fee9f7be3c3d13258542c858354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 999
Origin: https://everfi.com
Connection: keep-alive
Cookie: _ttp=2LTIITdBsxuKMYgPPMA5xP4e9Tz
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202302082036067D145E449A5A326F4066
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b87664fdda941490651c0a23cf13e9b7472b216365672c948133592a2c8b0d2bd9914b8ebf249f92b647a5779baccf3481f9b6caf1c991336ea6bd8df2ea2fc8436a5201bce112f2c37b0980aa6660681297511b096dc7857df44047681c5f52
x-origin-response-time: 23,23.34.240.237
x-akamai-request-id: 6fbaa7.a7b4556
expires: Wed, 08 Feb 2023 20:36:06 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 08 Feb 2023 20:36:06 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-cache-remote: TCP_MISS from a23-34-240-237.deploy.akamaitechnologies.com (AkamaiGHost/11.0.0-46340752) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=106, origin; dur=23, inner; dur=18
x-parent-response-time: 126,23.36.79.13
X-Firefox-Spdy: h2
dx.mountain.com/spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&cb=36163580292136664term=value
54.69.255.140200 OK 3.9 kB URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&cb=36163580292136664term=value
IP 54.69.255.140:0
File type ASCII text, with very long lines (532)
Hash 08a6a815ba1c341f5b25f4db9bdd31fb
7d57a0f6d41c6a2c5503e1133cd2bb96f43fbf40
6098f506eca16c8db089c8f915b982ac5a64ba32c65cdb16b2ba729e0e83c3e0
GET /spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&cb=36163580292136664term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Wed, 08 Feb 2023 20:36:06 GMT
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
transfer-encoding: chunked
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
172.217.21.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 172.217.21.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 08 Feb 2023 20:36:06 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 84889b914548f7820766f27a40699cfa
bc674cdb5819759b5ecd5aabfde47f56127f5d89
e2a69fe4edd028d00a8a744b62ef51dada2aff144da0cd9813efc887a11f70a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
172.217.21.170200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 172.217.21.170:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 1859f9f5b9f64635df5b040fd2a9bf09
3dfe1245b63987c0be255107edb4f63009b83f35
8a8a02386594bc06250ddf82a83224efa2d1cf976372300392a79f61f05d3476
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 08 Feb 2023 20:36:06 GMT
server: ESF
cache-control: private
content-length: 30879
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/js/th/e-T0LC6veq6xndVnxNZYDs0k2YzO3ng5pgwYiLLC-NE.js
216.58.211.4200 OK 14 kB URL HTTP/2 www.google.com/js/th/e-T0LC6veq6xndVnxNZYDs0k2YzO3ng5pgwYiLLC-NE.js
IP 216.58.211.4:0
File type ASCII text, with very long lines (36180)
Hash 6caf3ddf47bad942732577bf1cd634ed
5930e4cdb4173c5ffa3f9e2eaf7ecc147623dd0c
cc13b4b51d92ba1992ec59da7b670f2a66cf5ffd4907061f911349e925a218b7
GET /js/th/e-T0LC6veq6xndVnxNZYDs0k2YzO3ng5pgwYiLLC-NE.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14345
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 22:00:59 GMT
expires: Mon, 05 Feb 2024 22:00:59 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Jan 2023 12:00:00 GMT
content-type: text/javascript
age: 254107
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da7ec6cdfb8eb8618e25bd1233622b0e
fa69c0711b2ad58b96ffbcaa8c1c8e617415712d
39ea51794254bafd67a8070483a664e61f63d5a7b15b8b083a109564641c11ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
embed.formhq.net/v1/base.js
172.66.43.197200 OK 18 kB URL HTTP/2 embed.formhq.net/v1/base.js
IP 172.66.43.197:0
File type ASCII text, with very long lines (6384), with no line terminators
Hash 5641b067971e2e4c1e25d3404c8b2a77
e4aac6b1556a1090e57cbb4263d7d03d0ebf789b
077b2370b7a847c2c89d79b20ecf891411cc1171b65969d806b3b0fb1f120c57
GET /v1/base.js HTTP/1.1
Host: embed.formhq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:05 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=6385
etag: W/"63612f3e-18f1"
last-modified: Tue, 01 Nov 2022 14:37:50 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: max-age=1800
cf-cache-status: HIT
age: 5283
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lmgcmxFaumx00a2gdcEQmzyGESR2iw85YBjaq4I70jgGbcjA9eJRzPof44yfsUOTlzqqIceo5VATYNWSnXedbsU5cms%2FA3sm44i4T7MhC03qaN28l0h7G2aRK%2FH%2B%2BXEAeJcf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 796727d13fe4b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2
obs.healthroundprince.com/ct?id=37830&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675888622228&hl=1&op=0&ag=1317291471&rand=040860896721288171806799866297806011806018221088122998172052920906187181015&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=a5i7fvwsPp&pto=3662&ver=50&gac=-&mei=&ap=&duid=1.1675888622.DjBwQ2O4o4Y5rQ0g&suid=1.1675888622.SWSYBS6h9q6VhJRr&tuid=1.1675888622.Ta1Vh9RknA3kBwg5&fbc=->m=W10%3D&it=94%2C3157%2C146&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
3.227.190.204200 OK 1.1 kB URL HTTP/2 obs.healthroundprince.com/ct?id=37830&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675888622228&hl=1&op=0&ag=1317291471&rand=040860896721288171806799866297806011806018221088122998172052920906187181015&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=a5i7fvwsPp&pto=3662&ver=50&gac=-&mei=&ap=&duid=1.1675888622.DjBwQ2O4o4Y5rQ0g&suid=1.1675888622.SWSYBS6h9q6VhJRr&tuid=1.1675888622.Ta1Vh9RknA3kBwg5&fbc=->m=W10%3D&it=94%2C3157%2C146&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 3.227.190.204:0
File type ASCII text, with very long lines (3491), with no line terminators
Hash 4b2b0872f987c735d7bada7e6b7c3d96
4be7dac78c980b80f6278359c41132da280da430
f72f7d107f8d66b49e530b03905e30c84e76492a2271b55f460a24fe1e1a62fa
GET /ct?id=37830&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675888622228&hl=1&op=0&ag=1317291471&rand=040860896721288171806799866297806011806018221088122998172052920906187181015&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=%7B%7D&cri=a5i7fvwsPp&pto=3662&ver=50&gac=-&mei=&ap=&duid=1.1675888622.DjBwQ2O4o4Y5rQ0g&suid=1.1675888622.SWSYBS6h9q6VhJRr&tuid=1.1675888622.Ta1Vh9RknA3kBwg5&fbc=->m=W10%3D&it=94%2C3157%2C146&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Wed, 08 Feb 2023 20:36:06 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=0fae6f4089541da8345ad1858be404dc; Max-Age=29030400; Path=/; Expires=Wed, 10 Jan 2024 20:36:06 GMT; HttpOnly; Secure; SameSite=None
content-length: 1111
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da7ec6cdfb8eb8618e25bd1233622b0e
fa69c0711b2ad58b96ffbcaa8c1c8e617415712d
39ea51794254bafd67a8070483a664e61f63d5a7b15b8b083a109564641c11ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 433af7e1e2f0f14adb78a739bbae1832
fab933db47af9ab3f4f86befee579ac9972b82fd
a6be621f8cdc57bd55a8e73ff58a34b6a816eb558cb88b49cc031222042f82a0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/bfv8asn8g-EjDhPxDuxZtXGpRqMLxociRooGtPMKrgWAjPWXEJ0ihdJPYnXTyJotuxPpG-iu3g=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 1.2 kB URL HTTP/2 yt3.ggpht.com/bfv8asn8g-EjDhPxDuxZtXGpRqMLxociRooGtPMKrgWAjPWXEJ0ihdJPYnXTyJotuxPpG-iu3g=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash a8e8ac8af7c71029bb12d1a07fd23186
c6fd4bb4690b9db0639d7d4d607bbccffd1b7bdc
6d28e61f4a1039cfb8bb1ac92cecc26b6710cfd64fead6994a394e8a8dded332
GET /bfv8asn8g-EjDhPxDuxZtXGpRqMLxociRooGtPMKrgWAjPWXEJ0ihdJPYnXTyJotuxPpG-iu3g=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1193
x-xss-protection: 0
date: Wed, 08 Feb 2023 20:36:03 GMT
expires: Thu, 09 Feb 2023 20:36:03 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 3
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 433af7e1e2f0f14adb78a739bbae1832
fab933db47af9ab3f4f86befee579ac9972b82fd
a6be621f8cdc57bd55a8e73ff58a34b6a816eb558cb88b49cc031222042f82a0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
obs.healthroundprince.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136debcf3de2428c9b9225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5d16856e2717071a10acf9f29f6749d4d2dc017a3b1bf6717200866f8e6ac400355477925a055767515bc6ba3f1c77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c7b4c205202a1862e347a51a3fd1d7c8cfef02f94e408714c78a3f0ad939a21bfcfc248b5038e523b64cbef86a7b376cccee879cf774a91bac3330743b1342dfec90a37b185e427d043bd05e7c7079952cacd6092616bc7c7748134cccfb4aacbbaa14879bf32ebe2ae7d0d61a19030c8eb1def5a4947821f1edc8380c69ed5d6608c3dc691889975f96c7a33db5728849d96582cdced52a50cf095098161a0404d4c52c721b052dbc8ad74b6c32fd113da8edfd4758d524161a27747034f6643e3ab63fd1fe9e2ba10a68e68c0bf03feb3d4cf5ab286d516353a9fff5179daba054c05f8fabd3ee07edaa949ecb13bb02ab533c306924195fe65d94978b9bb90306c602541695e1f02a8b7d771d300a247181570a6e5118cc14950e3e486fee92e93beade1dba1fba5171a21b814dee9063296413309cb7109247efc7ab3645b97ba823cd472dd268aa830dfeb1f9369715e321e6e418ecae6c72e3e0488124189c19beee69f1147cbf2af7784dd6f698b8a00367baac98c1725f767d64d8308bd6edd4b8c9957a1e56cf0919a8c8a5b70b8b1483fdb23f8c9c9ff04967e290419863e1123edfa0ad1a86d9e8b91da49df9b957152254dd539b706ab56ae9c6f96325f3c423c7912fd48dac46a01ab65d2a6eb34dfc848847c7ba9137e32ebb2a34d3bec0ef1d114b30273614aeb293090ec92319f453488840da0d9dafa884ad25b57200b9110463beef30a04b37de1989957ed91fe124f38e733741a0edd164ee79fe91d19986a77d195992598d5dc975040e16eca0431248b19266dc9c24601ddc4e9bd8fae01a37eff7cdf25dd9d5695a9a95768bcd7049bc1e0d091a48f926a5086e73947c27ceb4aef02beb770f1919ac77be4d789bbae0b&cri=a5i7fvwsPp&ts=525&cb=1675888622753
3.227.190.204200 OK 43 B URL HTTP/2 obs.healthroundprince.com/tracker/tc_imp.gif?e=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&cri=a5i7fvwsPp&ts=525&cb=1675888622753
IP 3.227.190.204:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=a5i7fvwsPp&ts=525&cb=1675888622753 HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: cg_uuid=0fae6f4089541da8345ad1858be404dc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Wed, 08 Feb 2023 20:36:06 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4db8c5eea8252c02db969bca4905f46d
576390ca9ba16de46c301ed86c841da42a8bea71
f7bc002bcee242228e201a3c4d0edf2a3825629dc221b812b549723397429002
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5514
Cache-Control: max-age=163626
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:07 GMT
Etag: "63e3ce57-117"
Expires: Fri, 10 Feb 2023 18:03:13 GMT
Last-Modified: Wed, 08 Feb 2023 16:31:19 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 39f72ee961e1afed82fed52212ec6b65
557eae661c60433cfbbe14dbca5df31259e0c59b
b527888545839ca25e30f2fe8d409f3de6ab08d98a974dd14626b728e5ead13c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3065
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:07 GMT
Last-Modified: Wed, 08 Feb 2023 19:45:02 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
player.vimeo.com/api/player.js
162.159.138.60200 OK 6.3 kB URL HTTP/1.1 player.vimeo.com/api/player.js
IP 162.159.138.60:0
File type Unicode text, UTF-8 text, with very long lines (21087)
Hash be35514553399a516ec9a8a782341d76
cc471c8a2ad4a645656f72e0833a3cd1a9131b63
ab060007b859a933f8fb7bbc505c9c0a06eef5813ab909d9f09f9656c2d53505
GET /api/player.js HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:07 GMT
Content-Type: application/javascript;charset=utf-8
Content-Length: 6272
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: default-src 'none'; style-src 'unsafe-inline'
x-content-type-options: nosniff
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Wed, 08 Feb 2023 20:42:05 GMT
x-host: player-56b544d789-qspv2
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-6
x-backend-proxy: playproxy7
x-bapp-server: player-56b544d789-qspv2
Accept-Ranges: bytes
Age: 1442
X-Served-By: cache-bma1640-BMA
X-Cache: HIT
X-Cache-Hits: 1317
X-Timer: S1675888567.198192,VS0,VE0
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=WBxh4E6FJKu5IIljVMsQG.VbuIeRAgJXmqjJremQIsg-1675888567-0-Aa3I3DoWslidvr1ycUB22//6NC9A+7NhFvyj+ozmNzxFu59Y1H3t9ilE61MWTp840/qUHoaXojAYGrrIKKfsBRE=; path=/; expires=Wed, 08-Feb-23 21:06:07 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 796727d8eb79b4eb-OSL
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: z1eBCpi66RXnf9j3goy4cskXc+uboC6NcfXGmG/pS6C4rnuZtkrvHn9IRHF9XZiPbzyYIoQ1pmBreDlGG055DA==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1904183273
date: Wed, 08 Feb 2023 20:36:07 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
munchkin.marketo.net/munchkin.js
23.61.220.209200 OK 728 B URL HTTP/1.1 munchkin.marketo.net/munchkin.js
IP 23.61.220.209:0
File type ASCII text, with very long lines (521)
Hash 51a92d8c69733d719447dea0416ed039
69f4c1e0b7ebba812bc096708d57627927dff265
cb483c0ea4012ac512bcba6204b37622b388c1aefd4ae9028f60abb965f23d29
GET /munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "92b41a298690c047b0c4602dd843cba4:1662686319.691662"
Last-Modified: Fri, 09 Sep 2022 01:18:39 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 08 Feb 2023 20:36:07 GMT
Content-Length: 728
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.121200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=37086
date: Wed, 08 Feb 2023 20:36:07 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 22590A8F133241928BA34CE6F0E22B08 Ref B: OSL30EDGE0420 Ref C: 2023-02-08T20:36:07Z
date: Wed, 08 Feb 2023 20:36:06 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 39f72ee961e1afed82fed52212ec6b65
557eae661c60433cfbbe14dbca5df31259e0c59b
b527888545839ca25e30f2fe8d409f3de6ab08d98a974dd14626b728e5ead13c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3065
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:07 GMT
Last-Modified: Wed, 08 Feb 2023 19:45:02 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.godaddy.com/
192.124.249.23200 OK 1.7 kB IP 192.124.249.23:0
Hash b7afa7a2f493fa13b1fd5aa72a60f4be
249afa3f9c5d39accaf74d2a15cc369ff4ad814a
3e3c0448e5506cdabcaf5751ab1a7b893f8558a38c9bb1368ddafbd2ce5ddca0
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 68
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 08 Feb 2023 20:36:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1731
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 18:57:45 GMT
Expires: Thu, 09 Feb 2023 18:57:45 GMT
ETag: "249afa3f9c5d39accaf74d2a15cc369ff4ad814a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
s.pinimg.com/ct/core.js
151.101.244.84200 OK 1.1 kB IP 151.101.244.84:0
File type ASCII text, with very long lines (1146), with no line terminators
Hash 81cb953fadf9e47b0a9c2ae51c8bfbdd
c3001b3f0e3909a89b5b063eac41299443eb941a
a159e5324ecdf7e5c2fbd27226180b80b96a23a6235df2ffa3d71ca157001672
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "81cb953fadf9e47b0a9c2ae51c8bfbdd"
content-type: application/javascript
fastly-restarts: 1
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Accept-Encoding, Origin
cache-control: max-age=7200
date: Wed, 08 Feb 2023 20:36:07 GMT
content-length: 1146
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e1166ea1a8d847bf15bb1fb9ee17dfd0
46f40a84dd0607f96a6322e21f014298326622c4
79314336ebf43f867ce780cf25be23682814992d22bd09067ff7624743cee142
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5688
Cache-Control: max-age=111580
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:07 GMT
Etag: "63e3025b-1d7"
Expires: Fri, 10 Feb 2023 03:35:47 GMT
Last-Modified: Wed, 08 Feb 2023 02:00:59 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
munchkin.marketo.net/162/munchkin.js
23.61.220.209200 OK 4.7 kB URL HTTP/1.1 munchkin.marketo.net/162/munchkin.js
IP 23.61.220.209:0
File type ASCII text, with very long lines (606)
Hash 3e9baed982956735f6e0a0e756d97ed9
9223be6a494a10959101a7942419df7b05b84d73
930a508ed0ea6b4861d19c0738360182514010913c4ebfe9352064ae5006f8a1
GET /162/munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "75daf56f6191efe42577301908659c29:1656637152.894482"
Last-Modified: Fri, 01 Jul 2022 00:59:12 GMT
Server: AkamaiNetStorage
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=8640000
Expires: Fri, 19 May 2023 20:36:07 GMT
Date: Wed, 08 Feb 2023 20:36:07 GMT
Content-Length: 4677
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f2b0a6514c3d6dd2b28ae837d8fc3f1e
57684c105b5d5c87ef5b387def1156ea0b15b80b
670f2db240623d49c1c4089285f949c09f1bce10f3bc017c749131f32595da27
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1320
Cache-Control: max-age=111184
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:07 GMT
Etag: "63e311df-117"
Expires: Fri, 10 Feb 2023 03:29:11 GMT
Last-Modified: Wed, 08 Feb 2023 03:07:11 GMT
Server: ECS (amb/6BAD)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f2b0a6514c3d6dd2b28ae837d8fc3f1e
57684c105b5d5c87ef5b387def1156ea0b15b80b
670f2db240623d49c1c4089285f949c09f1bce10f3bc017c749131f32595da27
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6575
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:07 GMT
Last-Modified: Wed, 08 Feb 2023 18:46:32 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f2b0a6514c3d6dd2b28ae837d8fc3f1e
57684c105b5d5c87ef5b387def1156ea0b15b80b
670f2db240623d49c1c4089285f949c09f1bce10f3bc017c749131f32595da27
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4453
Cache-Control: max-age=114317
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:07 GMT
Etag: "63e311df-117"
Expires: Fri, 10 Feb 2023 04:21:24 GMT
Last-Modified: Wed, 08 Feb 2023 03:07:11 GMT
Server: ECS (amb/6B9B)
X-Cache: HIT
Content-Length: 279
bat.bing.com/action/0?ti=25002257&tm=gtm002&Ver=2&mid=9f3813c7-14ce-47a8-bf30-0fccd9b0677f&sid=5849e430a7f011ed88e215e873265551&vid=5849f300a7f011edb5b00facc232bbdb&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=FutureSmart%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&r=<=2593&evt=pageLoad&sv=1&rn=901596
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25002257&tm=gtm002&Ver=2&mid=9f3813c7-14ce-47a8-bf30-0fccd9b0677f&sid=5849e430a7f011ed88e215e873265551&vid=5849f300a7f011edb5b00facc232bbdb&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=FutureSmart%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&r=<=2593&evt=pageLoad&sv=1&rn=901596
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25002257&tm=gtm002&Ver=2&mid=9f3813c7-14ce-47a8-bf30-0fccd9b0677f&sid=5849e430a7f011ed88e215e873265551&vid=5849f300a7f011edb5b00facc232bbdb&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=FutureSmart%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&r=<=2593&evt=pageLoad&sv=1&rn=901596 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1E78E82270D966020FE8FA90718E670D; domain=.bing.com; expires=Mon, 04-Mar-2024 20:36:07 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 531B85B57A614793A8B7A9D1034256ED Ref B: OSL30EDGE0420 Ref C: 2023-02-08T20:36:07Z
date: Wed, 08 Feb 2023 20:36:07 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 4eb05b6b5e5ebdeaa575b76015736f3e
73dcc26acb95261d68e520753769cf5d81d34c7c
2d46f80640eb7a83f99229e6c125b9d07d24bad1deae4b6efc193a5f77e6d5c2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130111
Date: Wed, 08 Feb 2023 20:36:07 GMT
Etag: "63e34b79-1d7"
Expires: Fri, 10 Feb 2023 08:44:38 GMT
Last-Modified: Wed, 08 Feb 2023 07:12:57 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DvznrOgmDutjGNmwwUCMeAgv61RhTcKJw9WLq_F577EiOnBZwqPWNA==
Age: 5501
fonts.hellobar.com/css2?family=;
104.22.15.23400 Bad Request 1.6 kB URL HTTP/2 fonts.hellobar.com/css2?family=;
IP 104.22.15.23:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 203cbb527a96aa0e36ab77925d5e8a86
059cfa1330a9c124c1e6ad6538bd8395c00d61a2
57edfba3eb38b4ef9424473d9f2fb1658d2666dd09f25eb5026d2dfab0ee9841
GET /css2?family=; HTTP/1.1
Host: fonts.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everfi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Wed, 08 Feb 2023 20:36:07 GMT
content-type: text/html; charset=utf-8
content-length: 1572
cf-ray: 796727daea66b500-OSL
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Mon, 01 Jan 1990 00:00:00 GMT
cf-cache-status: DYNAMIC
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
pragma: no-cache
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 0
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=25022015&tm=gtm002&Ver=2&mid=244faa06-2a00-4867-afaa-e03e5c2e0fb0&sid=5849e430a7f011ed88e215e873265551&vid=5849f300a7f011edb5b00facc232bbdb&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=FutureSmart%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&r=<=2593&evt=pageLoad&sv=1&rn=419562
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25022015&tm=gtm002&Ver=2&mid=244faa06-2a00-4867-afaa-e03e5c2e0fb0&sid=5849e430a7f011ed88e215e873265551&vid=5849f300a7f011edb5b00facc232bbdb&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=FutureSmart%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&r=<=2593&evt=pageLoad&sv=1&rn=419562
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25022015&tm=gtm002&Ver=2&mid=244faa06-2a00-4867-afaa-e03e5c2e0fb0&sid=5849e430a7f011ed88e215e873265551&vid=5849f300a7f011edb5b00facc232bbdb&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=FutureSmart%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&r=<=2593&evt=pageLoad&sv=1&rn=419562 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=107D9DAC81496A5E212D8F1E801E6B58; domain=.bing.com; expires=Mon, 04-Mar-2024 20:36:07 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 61AC2E40618242B39284B2D00C73CD31 Ref B: OSL30EDGE0420 Ref C: 2023-02-08T20:36:07Z
date: Wed, 08 Feb 2023 20:36:07 GMT
X-Firefox-Spdy: h2
fonts.hellobar.com/css2?family=Undefined
104.22.15.23400 Bad Request 1.6 kB URL HTTP/2 fonts.hellobar.com/css2?family=Undefined
IP 104.22.15.23:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (490)
Hash e424dbc2af7d85ded4d19e5ed715614f
5c13b485f16f2e3c142aa80d269b30cec6b826b0
64fd55372da262dbc49a4c79d8feb879848195dd0095a3a151c8c3afd963f3aa
GET /css2?family=Undefined HTTP/1.1
Host: fonts.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everfi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Wed, 08 Feb 2023 20:36:07 GMT
content-type: text/html; charset=utf-8
content-length: 1641
cf-ray: 796727dafa72b500-OSL
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Mon, 01 Jan 1990 00:00:00 GMT
cf-cache-status: DYNAMIC
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
pragma: no-cache
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 0
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
54.230.111.85200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 54.230.111.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KaRbjNJhVzvRw5u3j2337hQ3w99QdsRHHMq1lqSCvl2Xx477sRKwtg==
age: 458761
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675888623388&dep=2%2CPAGE_LOAD
2.18.172.195200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675888623388&dep=2%2CPAGE_LOAD
IP 2.18.172.195:0
File type JSON data\012- , ASCII text, with very long lines (534), with no line terminators
Hash 6e63eb6af30db692485439f6687cfd3e
8b369c1b024c90a5646b8f7d36ff73e71a949bcd
a35f431d3eec1e88e5356fd6485190f4c4213276c1e046b072bfedb4f00dab19
GET /user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675888623388&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpEVmhOREV6TmpRdE5EZ3lPQzAwT0RWaExXSTBPR1V0WXpRNE1qUTNZekkwWVRsaA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://everfi.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 4932883076107550
date: Wed, 08 Feb 2023 20:36:07 GMT
vary: Accept-Encoding
akamai-grn: 0.540a655f.1675888567.247c2ab
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888623390&dep=5%2CEVENT_TAGS_ABSENT
2.18.172.195200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888623390&dep=5%2CEVENT_TAGS_ABSENT
IP 2.18.172.195:0
File type JSON data\012- , ASCII text, with very long lines (534), with no line terminators
Hash 6e63eb6af30db692485439f6687cfd3e
8b369c1b024c90a5646b8f7d36ff73e71a949bcd
a35f431d3eec1e88e5356fd6485190f4c4213276c1e046b072bfedb4f00dab19
GET /user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888623390&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVptWXpaR1ExTldJdE1qQTRPUzAwTXpNeExUZ3pORFl0WlRBd01qY3dOekkzWm1ReA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://everfi.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1831466752129889
date: Wed, 08 Feb 2023 20:36:07 GMT
vary: Accept-Encoding
akamai-grn: 0.540a655f.1675888567.247c2b7
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2239a1a5ee%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675888623391
2.18.172.195200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2239a1a5ee%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675888623391
IP 2.18.172.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2239a1a5ee%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675888623391 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1734877016663910
date: Wed, 08 Feb 2023 20:36:07 GMT
akamai-grn: 0.540a655f.1675888567.247c2be
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
bat.bing.com/p/action/25002257.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25002257.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25002257.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1D19685098D34A91BA3A7A2EDA92265E Ref B: OSL30EDGE0420 Ref C: 2023-02-08T20:36:07Z
date: Wed, 08 Feb 2023 20:36:07 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/25022015.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25022015.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25022015.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: CFC2381EB944425EA5711DF247039AD7 Ref B: OSL30EDGE0420 Ref C: 2023-02-08T20:36:07Z
date: Wed, 08 Feb 2023 20:36:07 GMT
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 57d9370d8b3d0f046acab2b66b1a07f8
44586359fa93d5ce19a6f9cbffd136426760e4a4
0ca961eab56fac4741a10dd162f0b90c6b668037d63d67cf0c4c7162ebd54a44
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 08 Feb 2023 20:36:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 07 Feb 2023 21:38:13 GMT
Expires: Wed, 08 Feb 2023 21:38:13 GMT
ETag: "44586359fa93d5ce19a6f9cbffd136426760e4a4"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
logx.optimizely.com/v1/events
18.205.58.21204 No Content 0 B URL HTTP/1.1 logx.optimizely.com/v1/events
IP 18.205.58.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/events HTTP/1.1
Host: logx.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 813
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://everfi.com
Access-Control-Expose-Headers: X-Results-Data-Source
Content-Type: text/plain
Date: Wed, 08 Feb 2023 20:36:07 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 3816e881-8111-4b8f-8fb2-7cc906d00e64
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a8f5028569a98461bd4b2a7f079ff565
2ae41518b785bc40818961332a95f3a1f7c9ac03
c419fedc6516840878ba546175c9285c4049bd1bddf7383ce8534535af1d7b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1756
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:07 GMT
Last-Modified: Wed, 08 Feb 2023 20:06:51 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
www.facebook.com/tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&rl=&if=false&ts=1675888623547&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&cs_est=true&fbp=fb.1.1675888623546.1134015845&it=1675888623188&coo=false&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&rl=&if=false&ts=1675888623547&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&cs_est=true&fbp=fb.1.1675888623546.1134015845&it=1675888623188&coo=false&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&rl=&if=false&ts=1675888623547&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&cs_est=true&fbp=fb.1.1675888623546.1134015845&it=1675888623188&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 08 Feb 2023 20:36:07 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3d2254db64618fd4b1915e5b6ea2fd4d
542a2a05ce51215616bd7db4332af8ccf4dbc3d9
dc9651e87bd870de66c5024cee6765a8dc32a548da72b5ee1b3998f3d7eba4ce
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 13:42:55 GMT
Expires: Wed, 15 Feb 2023 13:42:54 GMT
Etag: "542a2a05ce51215616bd7db4332af8ccf4dbc3d9"
Cache-Control: max-age=579406,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796727db19100b61-OSL
px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888623196&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f
108.174.10.20302 Found 0 B URL HTTP/1.1 px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888623196&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f
IP 108.174.10.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=285700&time=1675888623196&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Play
Location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675888623196%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Ffinancial-literacy-middle-school%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12SM_Feb%252B8_L_Varo_MMFS_SE_TP%252B1%2526utm_content%253Dhttps%25253a%25252f%25252feverfi.com%25252fcourses%25252fk-12%25252ffinancial-literacy-middle-school%25252f%26liSync%3Dtrue
LinkedIn-Action: 1
content-length: 0
Date: Wed, 08 Feb 2023 20:36:07 GMT
Connection: keep-alive
X-Li-Fabric: prod-lva1
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAX0NjbC661cDqeAMSj0cg==
Set-Cookie: UserMatchHistory=AQIXM7PI4GPmjAAAAYYyviWl72qM-XPRfFLtLv7b-EhM3AEOnbuJG5rtBuHFMo5ZGE0uNmqFgM9IWA; Max-Age=2592000; Expires=Fri, 10 Mar 2023 20:36:07 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQIVN2j-tTTzBQAAAYYyviWlWuyEpIol1o4clnyUom3OGBOXvwFxEwCFFOatJBz9uHZIgNvvWZ4c6aZkzmsYeA; Max-Age=2592000; Expires=Fri, 10 Mar 2023 20:36:07 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
bcookie="v=2&ac26d2c0-07e7-4f60-88f5-00161e94e26d"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 08-Feb-2024 20:36:07 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675888567:t=1675974967:v=2:sig=AQFuGulEWXisLchTafCPozJ01i2SukiN"; Expires=Thu, 09 Feb 2023 20:36:07 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
id.rlcdn.com/464526.gif
35.244.174.68451 Unavailable For Legal Reasons 0 B IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /464526.gif HTTP/1.1
Host: id.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Wed, 08 Feb 2023 20:36:07 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-W25X31S350>m=45je3260&_p=1841988778&cid=26063535.1675888623&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%208_L_Varo_MMFS_SE_TP%201%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&sid=1675888623&sct=1&seg=0&dt=FutureSmart%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.19
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-W25X31S350>m=45je3260&_p=1841988778&cid=26063535.1675888623&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%208_L_Varo_MMFS_SE_TP%201%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&sid=1675888623&sct=1&seg=0&dt=FutureSmart%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.19
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-W25X31S350>m=45je3260&_p=1841988778&cid=26063535.1675888623&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%208_L_Varo_MMFS_SE_TP%201%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&sid=1675888623&sct=1&seg=0&dt=FutureSmart%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.19 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://everfi.com
date: Wed, 08 Feb 2023 20:36:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0bdb7270303181a8741369fcfa9709e7
e85aa6393d2a1013b0546050c5158a5685c6feb3
23fd96172c8f72d73d8b2a85d29684d36d3037df3247e294f15259724eebcaae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4371
Cache-Control: max-age=149494
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:07 GMT
Etag: "63e39b9a-1d7"
Expires: Fri, 10 Feb 2023 14:07:41 GMT
Last-Modified: Wed, 08 Feb 2023 12:54:50 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3d2254db64618fd4b1915e5b6ea2fd4d
542a2a05ce51215616bd7db4332af8ccf4dbc3d9
dc9651e87bd870de66c5024cee6765a8dc32a548da72b5ee1b3998f3d7eba4ce
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 20:36:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 13:42:55 GMT
Expires: Wed, 15 Feb 2023 13:42:54 GMT
Etag: "542a2a05ce51215616bd7db4332af8ccf4dbc3d9"
Cache-Control: max-age=579406,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796727dccb300b61-OSL
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2
104.18.22.52200 OK 25 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2
IP 104.18.22.52:0
File type Web Open Font Format (Version 2), TrueType, length 24800, version 331.-31196\012- data
Hash 4abe94f1746789f39110d3ebac7ebd96
bdc3b41f3cc3e5e3e87ca020eeddc2b288f0dd91
299dc8e16be2ab2214e279b5536efd387d17fd3d364f397ce9f1fed602384fea
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:07 GMT
content-type: font/woff2
content-length: 24800
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae357-60e0"
last-modified: Wed, 04 Aug 2021 18:58:31 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 204587
accept-ranges: bytes
server: cloudflare
cf-ray: 796727dd08020b49-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2
104.18.22.52200 OK 20 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2
IP 104.18.22.52:0
File type Web Open Font Format (Version 2), TrueType, length 19784, version 331.-31196\012- data
Hash c7682b8035fc1d1672d6455631813794
9e2955e5e55b3073e229c218724406425862d4a1
1b50aa1d36ea249991fb44f8f6ad2aa74fe360df9cc04c564b5edf3b053b739c
GET /releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:07 GMT
content-type: font/woff2
content-length: 19784
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35f-4d48"
last-modified: Wed, 04 Aug 2021 18:58:39 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 60
accept-ranges: bytes
server: cloudflare
cf-ray: 796727dd382c0b49-OSL
X-Firefox-Spdy: h2
obs.healthroundprince.com/mon
3.227.190.204200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP 3.227.190.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1799
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=0fae6f4089541da8345ad1858be404dc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 08 Feb 2023 20:36:07 GMT
content-length: 0
X-Firefox-Spdy: h2
blackbaud.demdex.net/dest5.html?d_nsid=0
54.195.228.119200 OK 2.8 kB URL HTTP/1.1 blackbaud.demdex.net/dest5.html?d_nsid=0
IP 54.195.228.119:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: blackbaud.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Wed, 8 Feb 2023 20:36:08 GMT
DCS: dcs-prod-irl1-2-v046-0dafbee55.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Wed, 8 Feb 2023 11:53:45 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: y8HAwCAeT0o=
transfer-encoding: chunked
Connection: keep-alive
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
172.217.21.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 172.217.21.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 08 Feb 2023 20:36:08 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
410-ycz-984.mktoresp.com/webevents/visitWebPage?_mchNc=1675888623397&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675888623396-62082&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1__-__utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
192.28.147.68200 OK 28 B URL HTTP/1.1 410-ycz-984.mktoresp.com/webevents/visitWebPage?_mchNc=1675888623397&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675888623396-62082&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1__-__utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F
IP 192.28.147.68:0
File type ASCII text, with no line terminators
Hash 9dafc521bd59955b4986f0fc3777f77a
5a572b4730d4a2bce2fa35597a0993c649f26c74
e4e90a7b8bacdfe395361149a9fd42f9192b68bdf1497e4454d0ab4c4917f746
POST /webevents/visitWebPage?_mchNc=1675888623397&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675888623396-62082&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1__-__utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F HTTP/1.1
Host: 410-ycz-984.mktoresp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 08 Feb 2023 20:36:08 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Request-Id: a16facd9-2a56-4fa4-b167-cfb9146a2cd3
Content-Encoding: gzip
Access-Control-Allow-Origin: *
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
172.217.21.170200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 172.217.21.170:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d27aed7c06bcd53d52aadc5127238ada
2d5c1d863bd9d3deb5cfa4b14f6437cc2f2fdfe0
d2e9b86fcc32bb9c2a17f52f95bdf96179afd591ef35a06a283b809f61fe9a5a
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1159
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 08 Feb 2023 20:36:08 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.hellobar.com/css2?family=Lato
104.22.15.23200 OK 611 B URL HTTP/2 fonts.hellobar.com/css2?family=Lato
IP 104.22.15.23:0
Hash 49ed7f55014ffa4d8e3e3d67bacc5676
1d8734a89cfb82d9974746f5c85d903156243cb6
3448c024aec173c751234ed722187fbcb39772b60c7122d7e8173ff9d5444828
GET /css2?family=Lato HTTP/1.1
Host: fonts.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everfi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:07 GMT
content-type: text/css; charset=utf-8
cf-ray: 796727dada50b500-OSL
access-control-allow-origin: *
cache-control: private, max-age=86400
expires: Wed, 08 Feb 2023 20:36:07 GMT
cf-cache-status: DYNAMIC
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 0
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
metrics.blackbaud.com/b/ss/blackbaud-global-prod/1/JS-2.22.3/s48370805995057?AQB=1&ndh=1&pf=1&t=8%2F1%2F2023%2020%3A37%3A3%203%200&sdid=6EF3533C03099E29-74C900151E1FC9A5&mid=69528933884055132813704056753868103231&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%7CMarketingCloud%7Cemail%7Cno%20keyword%7Chttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&events=event12%3D1634&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&l1=vertical%3Ak-12&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&v4=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&v5=not%20available&v6=en-US&v7=courses&v9=1634&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&v38=FutureSmart&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&-g=%252f&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1
13.37.25.97200 OK 43 B URL HTTP/2 metrics.blackbaud.com/b/ss/blackbaud-global-prod/1/JS-2.22.3/s48370805995057?AQB=1&ndh=1&pf=1&t=8%2F1%2F2023%2020%3A37%3A3%203%200&sdid=6EF3533C03099E29-74C900151E1FC9A5&mid=69528933884055132813704056753868103231&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%7CMarketingCloud%7Cemail%7Cno%20keyword%7Chttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&events=event12%3D1634&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&l1=vertical%3Ak-12&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&v4=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&v5=not%20available&v6=en-US&v7=courses&v9=1634&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&v38=FutureSmart&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&-g=%252f&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1
IP 13.37.25.97:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/blackbaud-global-prod/1/JS-2.22.3/s48370805995057?AQB=1&ndh=1&pf=1&t=8%2F1%2F2023%2020%3A37%3A3%203%200&sdid=6EF3533C03099E29-74C900151E1FC9A5&mid=69528933884055132813704056753868103231&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%7CMarketingCloud%7Cemail%7Cno%20keyword%7Chttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&events=event12%3D1634&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&l1=vertical%3Ak-12&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&v4=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&v5=not%20available&v6=en-US&v7=courses&v9=1634&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Afinancial-literacy-middle-school&v38=FutureSmart&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&-g=%252f&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1 HTTP/1.1
Host: metrics.blackbaud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Wed, 08 Feb 2023 20:36:08 GMT
expires: Tue, 07 Feb 2023 20:36:08 GMT
last-modified: Thu, 09 Feb 2023 20:36:08 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3598943297691713536-4619380855514637379
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=26063535.1675888623&shpt=FutureSmart%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%2226063535.1675888623%22%2C%22shpt%22%3A%22FutureSmart%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888623.1%22%2C%22dcm_gid%22%3A%22306919690.1675888623%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A2%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888623.1&dcm_gid=306919690.1675888623&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&cb=36163580292136664term%3Dvalue
52.42.124.195200 OK 1.3 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=26063535.1675888623&shpt=FutureSmart%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%2226063535.1675888623%22%2C%22shpt%22%3A%22FutureSmart%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888623.1%22%2C%22dcm_gid%22%3A%22306919690.1675888623%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A2%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888623.1&dcm_gid=306919690.1675888623&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&cb=36163580292136664term%3Dvalue
IP 52.42.124.195:0
File type ASCII text, with very long lines (2516)
Hash 6ccbae000207296f85c7e81f516c1bc1
e0f0e9fdc94165390838d9e1f2b0d4976211781e
ea92f09de5f11ec4ef5e6d7f46499a4b0636a1b51c5918663805077ccf3435e2
GET /st?ga_tracking_id=UA-68235542-1&ga_client_id=26063535.1675888623&shpt=FutureSmart%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%2226063535.1675888623%22%2C%22shpt%22%3A%22FutureSmart%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888623.1%22%2C%22dcm_gid%22%3A%22306919690.1675888623%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A2%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888623.1&dcm_gid=306919690.1675888623&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&cb=36163580292136664term%3Dvalue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 08 Feb 2023 20:36:08 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=37746dac-a7f0-11ed-a857-fd49fa0ec7e2;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 0
server: istio-envoy
connection: close
transfer-encoding: chunked
hi.hellobar.com/v/x9OnYcW7CtjD1HajfS-4XdDedxQJgwSxsF/Lr85XzAdhXVCb4wGcNE90SJN0Sp-N9fv6EypmZOs36SS?t=1675888624&v=8c74d07b-171c-44a5-d52f-99d403fd50f3&f=i&s=a1ebb3b66d780577b388350ad94238b901b135e6a23bdde8f2e98c41c44ce4384de0ee0fca5034d6b9e944203c907a592b9219c158ebb98a52eb8c5eaef8474c
54.230.111.64200 OK 35 B URL HTTP/2 hi.hellobar.com/v/x9OnYcW7CtjD1HajfS-4XdDedxQJgwSxsF/Lr85XzAdhXVCb4wGcNE90SJN0Sp-N9fv6EypmZOs36SS?t=1675888624&v=8c74d07b-171c-44a5-d52f-99d403fd50f3&f=i&s=a1ebb3b66d780577b388350ad94238b901b135e6a23bdde8f2e98c41c44ce4384de0ee0fca5034d6b9e944203c907a592b9219c158ebb98a52eb8c5eaef8474c
IP 54.230.111.64:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /v/x9OnYcW7CtjD1HajfS-4XdDedxQJgwSxsF/Lr85XzAdhXVCb4wGcNE90SJN0Sp-N9fv6EypmZOs36SS?t=1675888624&v=8c74d07b-171c-44a5-d52f-99d403fd50f3&f=i&s=a1ebb3b66d780577b388350ad94238b901b135e6a23bdde8f2e98c41c44ce4384de0ee0fca5034d6b9e944203c907a592b9219c158ebb98a52eb8c5eaef8474c HTTP/1.1
Host: hi.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 35
date: Tue, 07 Feb 2023 23:10:21 GMT
last-modified: Tue, 10 Apr 2018 13:15:02 GMT
etag: "c2196de8ba412c60c22ab491af7b1409"
accept-ranges: bytes
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: yN3vo-pd5Q60zH3556y5VdALVpXY-q08gf_3OagYCvFrXEjHsuygvQ==
age: 77148
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash bed03149c0aba545526a720ab2f46f5a
03ef590af1f824ad5248f9ebc2f0e575c320753a
be6699b517938133eae256e94e9f1911681e6fe8738c35f7d54d743027b06bed
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=131878
Date: Wed, 08 Feb 2023 20:36:08 GMT
Etag: "63e359a0-1d7"
Expires: Fri, 10 Feb 2023 09:14:06 GMT
Last-Modified: Wed, 08 Feb 2023 08:13:20 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LvoTmqUCsPaB5Pn8X6ZT6X7l4RXbWfE8HNU5FP26iUH3maNUlpfzXA==
Age: 3646
fonts.hellobar.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3aPw.ttf
104.22.15.23200 OK 78 kB URL HTTP/2 fonts.hellobar.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3aPw.ttf
IP 104.22.15.23:0
File type TrueType Font data, 13 tables, 1st "GDEF", 8 names, Microsoft, language 0x409\012- data
Hash 82700090e37c384a815a4ede6cc49089
4e04b674bee33e5076e9ee51d26949280417069f
128a473487f110ec63d25ff7441b26376bfbc6a0e80cf8d70a60f077ff2137c3
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3aPw.ttf HTTP/1.1
Host: fonts.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.hellobar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:07 GMT
content-type: font/ttf
cf-ray: 796727dc1bf6b500-OSL
access-control-allow-origin: *
age: 5914427
cache-control: public, max-age=31536000
expires: Wed, 29 Nov 2023 21:25:48 GMT
last-modified: Wed, 27 Apr 2022 16:04:49 GMT
vary: Accept-Encoding
cf-cache-status: HIT
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-opener-policy: same-origin; report-to="apps-themes"
cross-origin-resource-policy: cross-origin
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888624113&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%2C%22pin_unauth%22%3A%22dWlkPVpEVmhOREV6TmpRdE5EZ3lPQzAwT0RWaExXSTBPR1V0WXpRNE1qUTNZekkwWVRsaA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2239a1a5ee%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
2.18.172.195200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888624113&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%2C%22pin_unauth%22%3A%22dWlkPVpEVmhOREV6TmpRdE5EZ3lPQzAwT0RWaExXSTBPR1V0WXpRNE1qUTNZekkwWVRsaA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2239a1a5ee%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP 2.18.172.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675888624113&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%2C%22pin_unauth%22%3A%22dWlkPVpEVmhOREV6TmpRdE5EZ3lPQzAwT0RWaExXSTBPR1V0WXpRNE1qUTNZekkwWVRsaA%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2239a1a5ee%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1475505483515770
date: Wed, 08 Feb 2023 20:36:08 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZBRzREQm1UNStTblFKM1Y0ZWp0Si8wM0ZTQndKNGN3c2Z1WGFJVGFZTm1DM2Z2aHZ4d1ZFMUNCbkxjQ0dPSjVicFBMancrZkszY0o3UURMYW5EQnRUZHpEL0dHQms0a0t3VzI1YzhaSDBrMD0mTnIxaDVUMDJ5cEd3dlppbUtxemFmTno3cWRNPQ=="; Expires=Thu, 08 Feb 2024 20:36:08 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.540a655f.1675888568.247c8da
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
vc.hotjar.io/sessions/2584703?s=0.25&r=0.22235200707356473
54.230.111.64204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/2584703?s=0.25&r=0.22235200707356473
IP 54.230.111.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/2584703?s=0.25&r=0.22235200707356473 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Wed, 08 Feb 2023 20:36:08 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YxOJbInny0qZNfGAfqCvKscgRZkd2jcN9xNksQLyTP5gMQ-c0_9_yA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-68235542-1&cid=26063535.1675888623&jid=2102182413&gjid=1589895173&_gid=306919690.1675888623&_u=YADAAUAAAAAAACgEK~&z=392337504
64.233.162.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-68235542-1&cid=26063535.1675888623&jid=2102182413&gjid=1589895173&_gid=306919690.1675888623&_u=YADAAUAAAAAAACgEK~&z=392337504
IP 64.233.162.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-68235542-1&cid=26063535.1675888623&jid=2102182413&gjid=1589895173&_gid=306919690.1675888623&_u=YADAAUAAAAAAACgEK~&z=392337504 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://everfi.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 08 Feb 2023 20:36:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 57e2189e39db1881e2420ddad64a1ca3
4c41ef7ec3b33c2cf4a58420700537c8073c9971
29fa92faf146319bbe2aaacee0a2876045ed5e3d02202db318a500d09fa29534
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 20:36:08 GMT
Last-Modified: Wed, 08 Feb 2023 19:23:22 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: iPTBQwp5Wjr-3mD1fN07BeZLdgo4m400HRdrBjTBwNnTHaXqO2zQzg==
Age: 4366
cm.everesttech.net/cm/dd?d_uuid=77348860690816873144056905070499333996
54.229.62.148302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=77348860690816873144056905070499333996
IP 54.229.62.148:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=77348860690816873144056905070499333996 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Wed, 08 Feb 2023 20:36:08 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y_QHuAAAAF-VBQMx; Domain=.everesttech.net; Expires=Thu, 08-Feb-2024 20:36:08 GMT; Path=/
everest_session_v2="Y@QHuAAAAF-VBgMx"; Version=1; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Y_QHuAAAAF-VBQMx
Server: AMO-cookiemap/1.1
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 931374cc5f548eb980181d61e4278798
40a2c53b550ea44a930892fe9ac7b26225c5e960
46dd369c210c99bbd54512f30facd70dc4012e62f5cbdf329ed3efb80a09f21c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1637
Cache-Control: max-age=142089
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:08 GMT
Etag: "63e3895c-1d7"
Expires: Fri, 10 Feb 2023 12:04:17 GMT
Last-Modified: Wed, 08 Feb 2023 11:37:00 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/ibs:dpid=411&dpuuid=Y_QHuAAAAF-VBQMx
52.18.129.71302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=Y_QHuAAAAF-VBQMx
IP 52.18.129.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=Y_QHuAAAAF-VBQMx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v046-023a5908f.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_QHuAAAAF-VBQMx
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=85259298306708779920917615630733078792; Max-Age=15552000; Expires=Mon, 07 Aug 2023 20:36:08 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: 2VU6HcpZTKA=
Content-Length: 0
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash b7e30f8419d69ce02a1f96b895cabac8
1de1962de5a350f1a905de3c61c01085eae52ec5
e30bea7507c8e32e8b2e7d6f54e9cd86e99d1198a5cb468221ae4cae33ee2085
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 20:36:08 GMT
Last-Modified: Wed, 08 Feb 2023 19:32:00 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gDs5p1iSlIGNJRIZOcpjZF21OCgHYwGcCNJXS_ThgaQrG3CgVIMIuQ==
Age: 3848
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_QHuAAAAF-VBQMx
52.18.129.71200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_QHuAAAAF-VBQMx
IP 52.18.129.71:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y_QHuAAAAF-VBQMx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v046-091b75bbd.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: rYxtpziYRYY=
Content-Length: 59
Connection: keep-alive
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=26063535.1675888623&jid=2102182413&_u=YADAAUAAAAAAACgEK~&z=854962114
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=26063535.1675888623&jid=2102182413&_u=YADAAUAAAAAAACgEK~&z=854962114
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=26063535.1675888623&jid=2102182413&_u=YADAAUAAAAAAACgEK~&z=854962114 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 20:36:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 20:36:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675888623196%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Ffinancial-literacy-middle-school%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12SM_Feb%252B8_L_Varo_MMFS_SE_TP%252B1%2526utm_content%253Dhttps%25253a%25252f%25252feverfi.com%25252fcourses%25252fk-12%25252ffinancial-literacy-middle-school%25252f%26liSync%3Dtrue
108.174.10.20302 Found 0 B URL HTTP/1.1 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675888623196%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Ffinancial-literacy-middle-school%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12SM_Feb%252B8_L_Varo_MMFS_SE_TP%252B1%2526utm_content%253Dhttps%25253a%25252f%25252feverfi.com%25252fcourses%25252fk-12%25252ffinancial-literacy-middle-school%25252f%26liSync%3Dtrue
IP 108.174.10.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675888623196%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Ffinancial-literacy-middle-school%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12SM_Feb%252B8_L_Varo_MMFS_SE_TP%252B1%2526utm_content%253Dhttps%25253a%25252f%25252feverfi.com%25252fcourses%25252fk-12%25252ffinancial-literacy-middle-school%25252f%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Play
Location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888623196&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&liSync=true
LinkedIn-Action: 1
content-length: 0
Date: Wed, 08 Feb 2023 20:36:08 GMT
Connection: keep-alive
Content-Security-Policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Expect-CT: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
X-Li-Fabric: prod-lva1
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache, no-store
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAX0NjbU8JSbvb5hjRTo4w==
Set-Cookie: bcookie="v=2&34a315df-d781-435c-854a-e034142b50a3"; Domain=.linkedin.com; Expires=Thu, 08-Feb-2024 20:36:08 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202302082036087c0290b6-650c-4178-8bf1-1a1d4ccdf47eAQGFkqj4VAU-PL5EN-VdwEUTmVEx7JvY"; Domain=.www.linkedin.com; Expires=Thu, 08-Feb-2024 20:36:08 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzU4ODg1Njg7MjswMjHfoau1qotckxHV91PRnvxL9Vbt1bcCqlwJOI3mvx5cVA==; Domain=.linkedin.com; Expires=Mon, 07 Aug 2023 20:36:08 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675888568:t=1675974968:v=2:sig=AQGnR94RYNlrY0HCiVuBRHfQ4ptC8RMO"; Expires=Thu, 09 Feb 2023 20:36:08 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
obs.healthroundprince.com/mon
3.227.190.204200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP 3.227.190.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1826
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=0fae6f4089541da8345ad1858be404dc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 08 Feb 2023 20:36:08 GMT
content-length: 0
X-Firefox-Spdy: h2
gs.mountain.com/gs
34.212.4.35200 OK 144 B IP 34.212.4.35:0
File type ASCII text, with no line terminators
Hash 3af5f67dbbd7e595f1f6e4c1d4912c91
e1532186bc6248aca023a1b962f9168da11a189f
33a15bf2c0116fe816cdf25ee88eb8635623f5c44ebb8c5bd27c4c0d9ecae131
GET /gs HTTP/1.1
Host: gs.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: guid=37746dac-a7f0-11ed-a857-fd49fa0ec7e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 08 Feb 2023 20:36:08 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 2
server: istio-envoy
connection: close
px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888623196&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&liSync=true
108.174.10.20200 OK 0 B URL HTTP/1.1 px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675888623196&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&liSync=true
IP 108.174.10.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=285700&time=1675888623196&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Play
LinkedIn-Action: 1
content-length: 0
Content-Type: application/javascript
Date: Wed, 08 Feb 2023 20:36:09 GMT
Connection: keep-alive
X-Li-Fabric: prod-lva1
X-Li-Pop: prod-lva1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAX0NjbYPsm9QJwxtvSJTg==
Set-Cookie: bcookie="v=2&bf60b5f1-eac8-4e67-84b4-e3aff0170b9b"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 08-Feb-2024 20:36:09 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675888569:t=1675974969:v=2:sig=AQEN1QzmWUeKR1koQKPCj0i0WtkqG0xH"; Expires=Thu, 09 Feb 2023 20:36:09 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=26063535.1675888623&shpt=FutureSmart%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%2226063535.1675888623%22%2C%22shpt%22%3A%22FutureSmart%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888623.1%22%2C%22dcm_gid%22%3A%22306919690.1675888623%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A2%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888623.1&dcm_gid=306919690.1675888623&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&cb=1675888568272511&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675888568967
52.42.124.195200 OK 450 B URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=26063535.1675888623&shpt=FutureSmart%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%2226063535.1675888623%22%2C%22shpt%22%3A%22FutureSmart%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888623.1%22%2C%22dcm_gid%22%3A%22306919690.1675888623%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A2%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888623.1&dcm_gid=306919690.1675888623&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&cb=1675888568272511&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675888568967
IP 52.42.124.195:0
File type ASCII text, with very long lines (1555), with no line terminators
Hash c19529dbd697e469e767194d6631106e
3a76c12cc04c085b983c2c6467046f38dfab2e6f
480b88f9edad2ca12053a09a8145c6de9a42c5369b8c585839abae56f03e0563
GET /st?ga_tracking_id=UA-68235542-1&ga_client_id=26063535.1675888623&shpt=FutureSmart%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%2226063535.1675888623%22%2C%22shpt%22%3A%22FutureSmart%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675888623.1%22%2C%22dcm_gid%22%3A%22306919690.1675888623%22%2C%22ga_utm_campaign%22%3A%22K12SM_Feb%208_L_Varo_MMFS_SE_TP%201%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A2%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675888623.1&dcm_gid=306919690.1675888623&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&cb=1675888568272511&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675888568967 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: guid=37746dac-a7f0-11ed-a857-fd49fa0ec7e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 08 Feb 2023 20:36:09 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt=H4sIAAAAAAAAAKtWKlOyMqoFAP609q8HAAAA;Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=37746dac-a7f0-11ed-a857-fd49fa0ec7e2;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 16
server: istio-envoy
connection: close
transfer-encoding: chunked
ct.pinterest.com/ct.html
2.18.172.195200 OK 323 B IP 2.18.172.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 7
referrer-policy: origin
x-pinterest-rid: 1599582069665868
date: Wed, 08 Feb 2023 20:36:09 GMT
vary: Accept-Encoding
akamai-grn: 0.540a655f.1675888569.247ce2c
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
obs.healthroundprince.com/mon
3.227.190.204200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP 3.227.190.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1821
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=0fae6f4089541da8345ad1858be404dc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 08 Feb 2023 20:36:10 GMT
content-length: 0
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2584703/visit-data?sv=7
18.200.61.239200 OK 61 kB URL HTTP/2 in.hotjar.com/api/v2/client/sites/2584703/visit-data?sv=7
IP 18.200.61.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 16be78526bee4c4d0a728bb7abc89f08
5c36cbae32865b3799cec093c2116eecee3fa4dc
b270e2234e969738a747482fcfc99cf63696777fdeac21639d5184c38d726e21
POST /api/v2/client/sites/2584703/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain; charset=UTF-8
Content-Length: 130
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:08 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=2d0a6364-08ac-4937-b429-b05d87060500&sessionStarted=1675888626.416&campaignRefreshToken=0d5662ab-bc49-4f83-a329-33cbe41cc8d0&hideController=false&pageLoadStartTime=1675888620421&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f
54.230.111.20200 OK 32 kB URL HTTP/2 js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=2d0a6364-08ac-4937-b429-b05d87060500&sessionStarted=1675888626.416&campaignRefreshToken=0d5662ab-bc49-4f83-a329-33cbe41cc8d0&hideController=false&pageLoadStartTime=1675888620421&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f
IP 54.230.111.20:0
Hash 41b598acc8b5381b0878e09baf35a51e
99ab5965dd490373442c4b12329d4baa5bc1efb7
c32ff37b00472b708b712bb63b8ea68040f7b4791cbd8b46f6840a90c7739f52
GET /core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=2d0a6364-08ac-4937-b429-b05d87060500&sessionStarted=1675888626.416&campaignRefreshToken=0d5662ab-bc49-4f83-a329-33cbe41cc8d0&hideController=false&pageLoadStartTime=1675888620421&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Wed, 08 Feb 2023 19:00:19 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: anVnAvkfgn5J6cuZXMyTKehe9MUtP13K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 13
date: Wed, 08 Feb 2023 20:36:10 GMT
cache-control: no-cache
etag: W/"91bbc65a16f226622a581aaaf53cafa1"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: M8xuctLNtI--qsLPyrkx7srDApHulZlgCcXonq9TqeqnI38pmT6Qvg==
X-Firefox-Spdy: h2
api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&page_title=FutureSmart%20%7C%20EVERFI
54.230.111.46200 OK 761 B URL HTTP/2 api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&page_title=FutureSmart%20%7C%20EVERFI
IP 54.230.111.46:0
File type JSON data\012- , ASCII text, with very long lines (3352)
Hash f036b8fb082f510295b426e0b73996c0
0c2ac8d4b1aa2a4f42b794be1670098c26289ee4
3b08aa64704af879d6b7ea924f2c875383cc27c817e748bc177315dac137885b
POST /api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&page_title=FutureSmart%20%7C%20EVERFI HTTP/1.1
Host: api.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 63
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Wed, 08 Feb 2023 20:36:07 GMT
server: nginx
access-control-allow-origin: https://everfi.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
api-version: v2
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
identification-source: CACHE
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Tue, 07 Feb 2023 20:36:07 GMT
vary: Accept-Encoding, Origin
content-encoding: gzip
request-id: b80bde06-87cf-4e2c-9a01-9f8fe1b61c5e
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: maIf23tiJbUFaG1wl8mk0QfriI-C-0ZjmFuCrfLRXlisuAbh9fPfiQ==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/17.22abfce0.chunk.css
54.230.111.20200 OK 24 B URL HTTP/2 js.driftt.com/core/assets/css/17.22abfce0.chunk.css
IP 54.230.111.20:0
File type ASCII text, with no line terminators
Hash 0c5dad92482d9a7c7c253510f5082465
534b458f99b4d0bb90c2cf2c4bb3703ef44a52bf
5dbaf0a4ff0f8ac8c1b67550eee84390b089604ffaf71183e417636c7e183ac5
GET /core/assets/css/17.22abfce0.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 24
server: istio-envoy
date: Thu, 26 Jan 2023 20:13:51 GMT
last-modified: Tue, 11 Oct 2022 19:09:27 GMT
etag: "0c5dad92482d9a7c7c253510f5082465"
x-amz-server-side-encryption: AES256
x-amz-version-id: eR0JFDWwyA3gsnd_XajqmmtDUbC85CBL
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4-nx_MfrLGnaXn2sXHpMN9SoXGIeChgDpHeAVvB7ZosKdy5iu-ZoDg==
age: 1124540
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash bf0fd5827521576c8b55f90f62db4fe2
daa49326cc39a31de834e384eecaed210789add9
2ef645cc8ba99c0d13cb78f6f395c426898d18b687b682b982c051cd99724eaa
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 20:36:11 GMT
Last-Modified: Wed, 08 Feb 2023 19:30:09 GMT
Server: ECS (nyb/1D2A)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qsZgNYddg6yt3HBxk0ruZN4yTS9kuqLj8hYqjeOlH6LdoWQsffT-NA==
Age: 3962
js.driftt.com/core/assets/css/21.c695453b.chunk.css
54.230.111.20200 OK 365 B URL HTTP/2 js.driftt.com/core/assets/css/21.c695453b.chunk.css
IP 54.230.111.20:0
File type ASCII text, with very long lines (365), with no line terminators
Hash 06b2963b029c0824382815165bfea73e
de23fb128e2589cf384603cfbb7f6b7bef969b05
ec3a84e593065a50cd77ce9fba273b4196936940c0813ca248b045df2e2c8eff
GET /core/assets/css/21.c695453b.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=2d0a6364-08ac-4937-b429-b05d87060500&sessionStarted=1675888626.416&campaignRefreshToken=0d5662ab-bc49-4f83-a329-33cbe41cc8d0&hideController=false&pageLoadStartTime=1675888620421&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 365
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: "06b2963b029c0824382815165bfea73e"
x-amz-server-side-encryption: AES256
x-amz-version-id: ObwTjzJ4TT60JlQVwXz0_ax56DSZu27m
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Gw8EIi0xYXR--pkKsM65BoERToWr3TAouWAO-snUxmZloCnZ4IDFIw==
age: 1048274
X-Firefox-Spdy: h2
kit.fontawesome.com/655ccfc4f9.js?ver=6.1.1
104.18.22.52200 OK 0 B URL HTTP/2 kit.fontawesome.com/655ccfc4f9.js?ver=6.1.1
IP 104.18.22.52:0
GET /655ccfc4f9.js?ver=6.1.1 HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:04 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FzlzA0Wly4PKVLnujNbB
cf-cache-status: HIT
age: 59
server: cloudflare
cf-ray: 796727c9388dfac4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/12.d33926cb.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/12.d33926cb.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/12.d33926cb.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"bdcb035523ec144399213aa65a8430ff"
x-amz-server-side-encryption: AES256
x-amz-version-id: KyS4g55V4uBz7fjaZ0R1pHyOHsEBkZV6
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 27
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OE_aGUjl5Ez2q_MI0PUYOoIRgxZy4yJUrhwU6dDC-EVACVC35JFzqw==
age: 1048273
X-Firefox-Spdy: h2
fonts.hellobar.com/s/lato/v23/S6uyw4BMUTPHvxk.ttf
104.22.15.23200 OK 0 B URL HTTP/2 fonts.hellobar.com/s/lato/v23/S6uyw4BMUTPHvxk.ttf
IP 104.22.15.23:0
GET /s/lato/v23/S6uyw4BMUTPHvxk.ttf HTTP/1.1
Host: fonts.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.hellobar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:07 GMT
content-type: font/ttf
cf-ray: 796727dc1bf5b500-OSL
access-control-allow-origin: *
age: 5914451
cache-control: public, max-age=31536000
expires: Sat, 25 Nov 2023 13:06:24 GMT
last-modified: Tue, 26 Apr 2022 15:50:24 GMT
vary: Accept-Encoding
cf-cache-status: HIT
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-opener-policy: same-origin; report-to="apps-themes"
cross-origin-resource-policy: cross-origin
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/26.5f645a85.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/26.5f645a85.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/26.5f645a85.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:18 GMT
last-modified: Wed, 08 Feb 2023 18:35:26 GMT
etag: W/"5609cee09879a7d8df8c020e751c4c9d"
x-amz-server-side-encryption: AES256
x-amz-version-id: LXU20jDKZmjlR53NMIdEuloBcrFHQHyo
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 21
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0CkgPxN0zqyPxTIONMEx94FjpZ-BHPY2HhWJAsBaR-CDC6VBIlSzDA==
age: 5753
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/38.11d2b6a7.chunk.css
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/38.11d2b6a7.chunk.css
IP 54.230.111.20:0
GET /core/assets/css/38.11d2b6a7.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"87532c4db85f1429fa6d759bc3332f36"
x-amz-server-side-encryption: AES256
x-amz-version-id: hzHYKpyiaZmITNnBC_LqpsxusmNF7FFl
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 15
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RsTmAp5MLor8k4IxhcE7Ck9t9NdcGcHacLg1QqtcJirHwOW-lv-JkA==
age: 1048274
X-Firefox-Spdy: h2
fonts.hellobar.com/css2?family=Source+Sans+Pro
104.22.15.23200 OK 0 B URL HTTP/2 fonts.hellobar.com/css2?family=Source+Sans+Pro
IP 104.22.15.23:0
GET /css2?family=Source+Sans+Pro HTTP/1.1
Host: fonts.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://everfi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:07 GMT
content-type: text/css; charset=utf-8
cf-ray: 796727daca3fb500-OSL
access-control-allow-origin: *
cache-control: private, max-age=86400
expires: Wed, 08 Feb 2023 20:36:07 GMT
cf-cache-status: DYNAMIC
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 0
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&page_title=FutureSmart%20%7C%20EVERFI
54.230.111.46200 OK 0 B URL HTTP/2 api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&page_title=FutureSmart%20%7C%20EVERFI
IP 54.230.111.46:0
POST /api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f&page_title=FutureSmart%20%7C%20EVERFI HTTP/1.1
Host: api.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 63
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Wed, 08 Feb 2023 20:36:07 GMT
server: nginx
access-control-allow-origin: https://everfi.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
api-version: v2
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
identification-source: CACHE
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Tue, 07 Feb 2023 20:36:07 GMT
vary: Accept-Encoding, Origin
content-encoding: gzip
request-id: 180787bd-5fdb-4eb9-afad-e2e802c9f7af
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fXkbBt8sGXLKqiChBHhtqd1sjixbmlJKuQEtAX_u_JLldQ36U4GrWQ==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/19.8e79a39a.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/19.8e79a39a.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/19.8e79a39a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"c478a5bb4d7885e2b9250c6beeb4fd6d"
x-amz-server-side-encryption: AES256
x-amz-version-id: uwUNfVtyHdRKYycXgamRNBkk5aCRrwjq
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BTfPyiKgTHkp5D-MpfKd0iocZHkTjWtqMCoHC9TfKi7QI9lbjs4Kdg==
age: 1048275
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/41.a1867ad4.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/41.a1867ad4.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/41.a1867ad4.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"299dd262bf32831c99dc78a9c5b5ca43"
x-amz-server-side-encryption: AES256
x-amz-version-id: X151O2if9SUzZhsBRIHlOqKUakbFDRo_
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p7qiLZc5ONOQnJgrsTLaAtj8l-BbX5bLt8l1FEvNpbRvIqlxyov03A==
age: 1048275
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/10.33fd2576.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/10.33fd2576.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/10.33fd2576.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:18 GMT
last-modified: Wed, 08 Feb 2023 18:35:25 GMT
etag: W/"8c4bb27fba945df0bdfe8d25049c6d28"
x-amz-server-side-encryption: AES256
x-amz-version-id: IVJsPh8FSYTZvAmmR6w9_4RI7KWYSk3e
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JHJa5GYZb4SMor7lHOTpjdq2-bf5eoEv7DfUKViDrDU9qtHhyx29cw==
age: 5753
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/17.938ddc32.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/17.938ddc32.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/17.938ddc32.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 07 Feb 2023 19:52:13 GMT
last-modified: Tue, 07 Feb 2023 18:24:51 GMT
etag: W/"6e1f76499cde58fd41e91c5a37d51f07"
x-amz-server-side-encryption: AES256
x-amz-version-id: DcqAdrJmepmz_M9pKA9h2j5OvJGa2cKf
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WADFkr-1rtqoIPyUGjt4Aa9MKI38eyHTqFFhx9qR4qiL_GRAjL8cNg==
age: 89038
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/3.f50b964b.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/3.f50b964b.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/3.f50b964b.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Sun, 15 Jan 2023 02:22:28 GMT
last-modified: Wed, 11 Jan 2023 18:48:21 GMT
etag: W/"1ac37bf2b93050f29058b66a9ad43e10"
x-amz-server-side-encryption: AES256
x-amz-version-id: XjyDJs7tJQ_66vN6EdQbFkXQ4j4BABRH
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 37
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: exF0_YzFQ4Ra5Vnry6RdnFaxszZz_V-HcwpyWo65j3MzlrzZiwQjRg==
age: 2139223
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2584703.js?sv=7
54.230.111.39200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2584703.js?sv=7
IP 54.230.111.39:0
GET /c/hotjar-2584703.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 08 Feb 2023 20:36:07 GMT
cache-control: max-age=60
etag: W/9b8b50d4380c20e8b3e9679e5c05c10b
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AfRq6r3pR-m-nc-aOHzr0M20disJc5aPgJ-ZudK2vMpUogznLoJUvg==
X-Firefox-Spdy: h2
cdn.optimizely.com/js/22133900366.js
2.18.172.152200 OK 0 B URL HTTP/2 cdn.optimizely.com/js/22133900366.js
IP 2.18.172.152:0
GET /js/22133900366.js HTTP/1.1
Host: cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ycjDAXOKFWnUEg/DXqKHuCCPB2yIwDxZyWaHu9U3222Vmaqzm1CEyga9azYgEPIeaXx2iM8wWjI=
x-amz-request-id: N5VX28M5BKX2AZ3A
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 18:09:24 GMT
etag: "c20e5f273bcdb5423220d5f4855ca570"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 8
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: zxXHkbanS0Al8Kk6PQ5fj52mV_qPPwri
accept-ranges: bytes
content-type: text/javascript; charset=utf-8
server: AmazonS3
content-length: 82615
vary: Accept-Encoding
cache-control: max-age=120
date: Wed, 08 Feb 2023 20:36:05 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, cdn;desc="AkamaiION";dur=0,rtt;desc="1";dur=0,cdnip;desc="2.18.172.152";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
IP 54.230.111.20:0
GET /core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Wed, 08 Feb 2023 19:00:19 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: anVnAvkfgn5J6cuZXMyTKehe9MUtP13K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 16
date: Wed, 08 Feb 2023 20:36:10 GMT
cache-control: no-cache
etag: W/"91bbc65a16f226622a581aaaf53cafa1"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WAHMeUYDB1D-ymQhX719LGbxnJNZonERbZIAkyOHHAUod3zzNheiiA==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/18.c30208b5.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/18.c30208b5.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/18.c30208b5.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:18 GMT
last-modified: Wed, 08 Feb 2023 18:35:26 GMT
etag: W/"f7d574ded6fe2e85c9ad827112254f1a"
x-amz-server-side-encryption: AES256
x-amz-version-id: xvb8GHQbRCL4LFr92XoLIaKihQOwgN1C
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nOYVSAHLOP10l8VDCCPDFnFnUR0Fe8Bow8qzJKgE7oovV7-iUGvtQg==
age: 5753
X-Firefox-Spdy: h2
ws.zoominfo.com/pixel/uaPMNNWAvRE9GecQvShh
104.16.101.12200 OK 0 B URL HTTP/2 ws.zoominfo.com/pixel/uaPMNNWAvRE9GecQvShh
IP 104.16.101.12:0
GET /pixel/uaPMNNWAvRE9GecQvShh HTTP/1.1
Host: ws.zoominfo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 20:36:06 GMT
content-type: text/javascript
vary: Accept-Encoding
x-powered-by: Express
x-content-type-options: nosniff
access-control-allow-headers: Content-Type,cf-ipcountry,service-version,x-appengine-user-ip,x-forwarded-for, x-ws-collect-type
access-control-allow-credentials: true
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: visitorId=4a89cfe6cf80a79df26e2ee2af172b19980fff8d3aef7924904d5b7bdff35379; Max-Age=31536000; Domain=ws.zoominfo.com; Path=/; Expires=Thu, 08 Feb 2024 20:36:06 GMT; Secure; SameSite=None
__cf_bm=GGFcCb9skUwcmLsrsQMirVg3lTBASD.QlT0pYcdPdEY-1675888566-0-AaPakd/m+gwHYNFJwSipTIXJQpjUnfJgdB3p5tt2lld8NCufF7lEbZVVPR2xMc9mxWbcOL5pEkSiakmFA9PsKXU=; path=/; expires=Wed, 08-Feb-23 21:06:06 GMT; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
_cfuvid=e3CnvOunmgsZqyx.Nvzx_346At6qdTvZR.vXZbuyIP4-1675888566131-0-604800000; path=/; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 796727d138c9b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/9.4a3e9801.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:22 GMT
etag: W/"c6f58dd3d60f07462254b842dd4f9ca1"
x-amz-server-side-encryption: AES256
x-amz-version-id: hzm2Healt7ZjvNDM3nYQ47BRwWjFuLrw
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jWW1CyvbUL7i_AnKFNVHu_jFKbylIy2kpI5fdse63mNrteXQ2WYlzw==
age: 1048274
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/50.de3b5864.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/50.de3b5864.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/50.de3b5864.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"114785899ceb423273fcc17aaad202e9"
x-amz-server-side-encryption: AES256
x-amz-version-id: 1DnDsXjV5U2x4yjXf3GCnDIDPlyIffBu
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: P-UStgy_9EtFCuO8aBE1KoChQ2HlXNs4QCuuEEOnKcXocHeGnEAKeA==
age: 1048274
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/29.43f0ec90.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/29.43f0ec90.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/29.43f0ec90.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=2d0a6364-08ac-4937-b429-b05d87060500&sessionStarted=1675888626.416&campaignRefreshToken=0d5662ab-bc49-4f83-a329-33cbe41cc8d0&hideController=false&pageLoadStartTime=1675888620421&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"bbca5d42d17f354ba709da59e093f2e7"
x-amz-server-side-encryption: AES256
x-amz-version-id: YttOPnMbgeCzGpP2GWR5vyLPUID5po5b
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 23
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R4fq9ImEQvzsVqIMVQ_4gG-6ECvWj1eH5bhXKUmx4Xn_IQnacF2yfA==
age: 1048274
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A700&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A700&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Lato%3A700&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 20:36:04 GMT
date: Wed, 08 Feb 2023 20:36:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/285700/domain/everfi.com/token
54.230.111.42200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/285700/domain/everfi.com/token
IP 54.230.111.42:0
GET /partner/285700/domain/everfi.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Wed, 08 Feb 2023 19:49:37 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ctbrn-WMWjrKisAqi7zENE6onctIthrwrhShRKu1qJFpvadA5s3LsA==
age: 2790
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/main~493df0b3.bfaa8bf7.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/main~493df0b3.bfaa8bf7.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/main~493df0b3.bfaa8bf7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:22 GMT
etag: W/"f380dbfcbb0e3e9e079d70231be1cff3"
x-amz-server-side-encryption: AES256
x-amz-version-id: tVIOQ5knB_pnUIzARn2A1QNlFnrQ08ww
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hjv9M-wxBHRqPy20g6u6BI-36Q3FnLUmg569iOqDfl4K1GeTfnSVAA==
age: 1048274
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/10.18bfca70.chunk.css
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/10.18bfca70.chunk.css
IP 54.230.111.20:0
GET /core/assets/css/10.18bfca70.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"dd670379de64b0621ee84574f3b8e73d"
x-amz-server-side-encryption: AES256
x-amz-version-id: W.Ed7skdAN0dSG59eVgsVvIsNBx.BMsL
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 20
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hcAgf9CoKpYCVvWGdax8B-HWzDZSroDR8dVAbxD-CbICMbS4zdsTSA==
age: 1048274
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/25.22647a55.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/25.22647a55.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/25.22647a55.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"2ce6c446f71a395ff41647c9ba4b9c19"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3Dq5XEj76miHFBtzwx_L1gh4_UbdDQYk
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2z5GJ7C7sJC3uUNRxNLcJQdpQ26AZDROdydwz9qERMU9rS2FeH58CQ==
age: 1048274
X-Firefox-Spdy: h2
api-v2.mutinyhq.io/v2/b
54.209.157.48201 Created 0 B IP 54.209.157.48:0
POST /v2/b HTTP/1.1
Host: api-v2.mutinyhq.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 4388
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Wed, 08 Feb 2023 20:36:11 GMT
content-type: text/plain
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: x-cache, x-cache-hits, age
access-control-max-age: 7200
vary: Origin,Accept-Encoding
etag: W/"565339bc4d33d72817b583024112eb7f"
cache-control: max-age=0, private, must-revalidate
x-request-id: f95c2b24-6da9-492d-8adc-05b81fafb48b
x-runtime: 0.007634
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
tag.demandbase.com/89bf928e3008d78e.min.js
54.230.111.54200 OK 0 B URL HTTP/2 tag.demandbase.com/89bf928e3008d78e.min.js
IP 54.230.111.54:0
GET /89bf928e3008d78e.min.js HTTP/1.1
Host: tag.demandbase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Fri, 03 Feb 2023 22:29:38 GMT
x-amz-version-id: ZENMp.PG0_SCBKlA3gMuRbJ6iQODQlwL
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 20:35:07 GMT
cache-control: public, max-age=3600
etag: W/"d26c8daf51a6b52d2a4c1d1e2834c17f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9VS4AkWtON36rFKMv9s0gOGerRNHA-pTWW-HTsdugwhflcvwAPi0rQ==
age: 3557
strict-transport-security: max-age=63072000; includeSubDomains; preload
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/runtime~main.d3d0cfc4.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/runtime~main.d3d0cfc4.js
IP 54.230.111.20:0
GET /core/assets/js/runtime~main.d3d0cfc4.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:18 GMT
last-modified: Wed, 08 Feb 2023 18:35:28 GMT
etag: W/"97f543911fc43e93f244f837ddd08e51"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3kWkyAZY1NFWQ.T0mYtcdv_vl43nozxI
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xexjgRa9O0ypVUuA_492_5CsDvAR-4cqTHkKu8ZrDXpbmmtP4CZJTg==
age: 5752
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/30.57dfb56c.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/30.57dfb56c.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/30.57dfb56c.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"b8addee34a5cd2241740a2e3094039b3"
x-amz-server-side-encryption: AES256
x-amz-version-id: PRu.RNHym52TA_hlIcQB1Vv5VUA1vVKS
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7yvI_Dh7xkGBcksaSIY5PjDUHSkI546le-wpSyRmrTBT3LS_-O3fxw==
age: 1048275
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/21.69555934.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/21.69555934.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/21.69555934.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=2d0a6364-08ac-4937-b429-b05d87060500&sessionStarted=1675888626.416&campaignRefreshToken=0d5662ab-bc49-4f83-a329-33cbe41cc8d0&hideController=false&pageLoadStartTime=1675888620421&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Ffinancial-literacy-middle-school%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12SM_Feb%2B8_L_Varo_MMFS_SE_TP%2B1%26utm_content%3Dhttps%253a%252f%252feverfi.com%252fcourses%252fk-12%252ffinancial-literacy-middle-school%252f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 18:44:07 GMT
last-modified: Wed, 08 Feb 2023 18:35:26 GMT
etag: W/"288df9ffec9b073f1f10bebea367120a"
x-amz-server-side-encryption: AES256
x-amz-version-id: jAsT7w5C65Ekvv9zssDranLz2weOUBXw
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yoMYtGvoCudOYG7aDhbqwnoRKQ96Vr_9zIorSaOrNoZWdbHLkmyKzA==
age: 6724
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/1.502906a3.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/1.502906a3.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/1.502906a3.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 08 Feb 2023 19:00:19 GMT
last-modified: Wed, 08 Feb 2023 18:35:25 GMT
etag: W/"de18fcd9afa920d48db7b5e32d4f0207"
x-amz-server-side-encryption: AES256
x-amz-version-id: PL5XzY3ro33dGy_JaFgmckrMuv3awd.l
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 28
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6isfhiT4c54Nutp1gt7Yf2DYSoDnOgGuNrOeNMpJsZE_rpkCu7h71w==
age: 5752
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/35.2db13da8.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/35.2db13da8.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/35.2db13da8.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675888620421
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"b335cb429753b2c3dabe45686f46aee9"
x-amz-server-side-encryption: AES256
x-amz-version-id: cZsJMbphr0g_Rs503LmupKJPT7bBS_rp
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Mq_nmqHPmmEEk35AAr2iDNnmVvF0ZQLVAqgXw5FPxDd0UaHLb77sRg==
age: 1048274
X-Firefox-Spdy: h2