r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2479
Expires: Thu, 02 Feb 2023 19:20:30 GMT
Date: Thu, 02 Feb 2023 18:39:11 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9041
Expires: Thu, 02 Feb 2023 21:09:52 GMT
Date: Thu, 02 Feb 2023 18:39:11 GMT
Connection: keep-alive
everfi.com/courses/k-12/smarteconomics/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Feb2_SmartEconomics_Announcement&utm_content=SmartEconomics:+Economics+for+Middle+School
141.193.213.20301 Moved Permanently 162 B URL HTTP/1.1 everfi.com/courses/k-12/smarteconomics/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Feb2_SmartEconomics_Announcement&utm_content=SmartEconomics:+Economics+for+Middle+School
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /courses/k-12/smarteconomics/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Feb2_SmartEconomics_Announcement&utm_content=SmartEconomics:+Economics+for+Middle+School HTTP/1.1
Host: everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 18:39:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://everfi.com/courses/k-12/smarteconomics/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Feb2_SmartEconomics_Announcement&utm_content=SmartEconomics:+Economics+for+Middle+School
Permissions-Policy: midi=(), camera=(), microphone=(), payment=()
Referrer-Policy: origin
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79350c515efdb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5846
Expires: Thu, 02 Feb 2023 20:16:37 GMT
Date: Thu, 02 Feb 2023 18:39:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 17:43:31 GMT
content-type: application/json
age: 3340
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jjHWRfg9/oGXmuzaHdIbhRjYjDu9VatAvGddih2XA2NADONHokyuazSd58fE+uCck3Co4IGtt+Ck8rPM4Jd0Ug==
x-amz-request-id: 4B9SW80VEBHV7E6E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 17:52:04 GMT
age: 2827
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 18:39:11 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b451c1751dc00e04272d8a3f5b6c1676
e1bf5d1de68a2d6fa25da57a45e99c7016aee448
24384f5b2f00b5725e2514f158d366f5dea4f312239ce9abc41f8d417ed82e44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24384F5B2F00B5725E2514F158D366F5DEA4F312239CE9ABC41F8D417ED82E44"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17982
Expires: Thu, 02 Feb 2023 23:38:54 GMT
Date: Thu, 02 Feb 2023 18:39:12 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 17:49:05 GMT
age: 3007
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3263
Expires: Thu, 02 Feb 2023 19:33:35 GMT
Date: Thu, 02 Feb 2023 18:39:12 GMT
Connection: keep-alive
push.services.mozilla.com/
35.161.92.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.92.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7KSFZqxSHE0eM5SQvKDf/A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZW+qAVdGNLF/anMfnXTFnmgYpAM=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b451c1751dc00e04272d8a3f5b6c1676
e1bf5d1de68a2d6fa25da57a45e99c7016aee448
24384f5b2f00b5725e2514f158d366f5dea4f312239ce9abc41f8d417ed82e44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24384F5B2F00B5725E2514F158D366F5DEA4F312239CE9ABC41F8D417ED82E44"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17981
Expires: Thu, 02 Feb 2023 23:38:54 GMT
Date: Thu, 02 Feb 2023 18:39:13 GMT
Connection: keep-alive
cdnjs.cloudflare.com/ajax/libs/jquery-visible/1.2.0/jquery.visible.min.js?ver=6.1.1
104.17.24.14200 OK 382 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-visible/1.2.0/jquery.visible.min.js?ver=6.1.1
IP 104.17.24.14:0
File type ASCII text, with very long lines (802)
Hash f2095dd733ec7385989c812e1f476de9
84df5212d2e505e8804d4f658d7ae54ec510bf50
a71c9ced606de75b437126955a4b047518c4575c9d45d7a222c9eada08fd5d0c
GET /ajax/libs/jquery-visible/1.2.0/jquery.visible.min.js?ver=6.1.1 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:13 GMT
content-type: application/javascript; charset=utf-8
content-length: 382
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-323"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 12708527
expires: Tue, 23 Jan 2024 18:39:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8o%2BQ9OyIp3P%2F9Z2BcjygwUMxopOwzIA%2Bs%2BN0318tOwso0KsmFaLDEiPlTwAPlpjK%2BNCsEoEtlEfV43%2BaQm5vKLwIs3sYfEMt8VnQQNNdFbc5%2FHeaqqRMbVuNzioCZmy37gco8K9d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79350c5b2dad1c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 2.5 kB IP 93.184.220.29:0
Hash 78fd3b5535c8b1067bbb3f4949b5f106
df640fc025aeed10cc41193fb680170acef3de8b
3464295c485157e7270ff36d724655d7a0da610db630757a94af7a8d53ad5361
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4291
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:13 GMT
Last-Modified: Thu, 02 Feb 2023 17:27:42 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 1.4 kB IP 216.58.211.3:0
Hash 6d825cb2a9b44429eb124d4f14ef95bf
3996598f683544c2fcc20dcd380e1bd3a8c6c153
89ba67f8a5386a6fa96cd2de9780f568d9254befa25671012bba75607c0da0f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206910/k12-blue/k12-blue-svg?_i=AA
151.101.1.137200 OK 3.7 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206910/k12-blue/k12-blue-svg?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a97a03d875b3ef916ee22291e84796d9
7ecd81fe0e24581eb9353a69302eeafcc456f41e
c2b75e337853c4d66bd7e0ca896337d790727315df1f11bc0644c00ddfad9d5f
GET /everfi/images/f_auto,q_auto/v1638206910/k12-blue/k12-blue-svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="k12-blue.webp"
content-type: image/webp
etag: "a97a03d875b3ef916ee22291e84796d9"
last-modified: Thu, 16 Dec 2021 21:50:26 GMT
date: Thu, 02 Feb 2023 18:39:13 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=3;cpu=1;start=2023-02-02T18:39:13.198Z;desc=hit,rtt;dur=13
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 3734
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 4.8 kB IP 216.58.211.3:0
Hash 1672ecfde9ba31d42e7e232c23bba7b8
caea560a1bad782e1edca09cc952d235c1af7c65
65f8b35f9348b8bc04351485cd5b1a7173dc378c552b0bf005c9b4be6567ee95
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA
151.101.1.137200 OK 31 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 700x447, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c97a5e615c7deafe8c6e55fe9c10258f
1731b500db89f4d774cb174e609cf4d12327156c
7cd34de542b2fac55d8e0868b7ca9edd8690537d534a87bae35166cb5440505b
GET /everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="TurboTax-screenshot.webp"
content-type: image/webp
etag: "c97a5e615c7deafe8c6e55fe9c10258f"
last-modified: Tue, 14 Dec 2021 14:26:38 GMT
date: Thu, 02 Feb 2023 18:39:13 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=3;cpu=1;start=2023-02-02T18:39:13.199Z;desc=hit,rtt;dur=13
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 31100
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA
151.101.1.137200 OK 46 kB URL HTTP/2 res.cloudinary.com/everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 883x566, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a09ee7433450450e6dce7d24002d0953
50f0eba61b837497344c6813dec9c513db2faa9a
ff5429b8fbbf6aeb1a6256a7eb46648abbb8ea5b50aeb42517a972e10738f3d4
GET /everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="fortune-fastcompany-lockup.webp"
content-type: image/webp
etag: "a09ee7433450450e6dce7d24002d0953"
last-modified: Tue, 28 Sep 2021 13:34:01 GMT
date: Thu, 02 Feb 2023 18:39:13 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-02T18:39:13.199Z;desc=hit,rtt;dur=13
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 46376
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA
151.101.1.137200 OK 207 B URL HTTP/2 res.cloudinary.com/everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA
IP 151.101.1.137:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (368), with no line terminators
Hash 90af22a6ab173205f6ddaf380b91bf84
cb5e41f97bc9291e36485c55f1200025a343766a
46e8fe814ee052b28b4db7c652a22fdd19e8001dc4db62fe5b721691aaab963e
GET /everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="k12-red.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"4dc972573e7fd439d9545991eb3350cf"
last-modified: Tue, 14 Dec 2021 14:26:39 GMT
date: Thu, 02 Feb 2023 18:39:13 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=14;cpu=1;start=2023-02-02T18:39:13.199Z;desc=hit,rtt;dur=13
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 207
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA
151.101.1.137200 OK 270 B URL HTTP/2 res.cloudinary.com/everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA
IP 151.101.1.137:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (427), with no line terminators
Hash 67df486dbafc056c3585a286c8a5d346
74ec64f9a560e5762cf384377db8936dd218a343
92372af69a92065da1ef81174cbc1a4b6dfdcd277c4bd6ab7e779f477fd7e708
GET /everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="k12-teal.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"508005c38ce6fa6b4a9368e6a27dd5ff"
last-modified: Tue, 14 Dec 2021 14:26:39 GMT
date: Thu, 02 Feb 2023 18:39:13 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=15;cpu=1;start=2023-02-02T18:39:13.199Z;desc=hit,rtt;dur=13
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 270
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA
151.101.1.137200 OK 2.6 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4cd1a8411bd10a551103b6fc1c607fab
d09941e8747ae3c80fe5369aa7f683a6457edb9f
5b0f23dcb7e526029a80c7716ac30700910c33e094c9ee29dfd875b24e970126
GET /everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="k12-yellow.webp"
content-type: image/webp
etag: "4cd1a8411bd10a551103b6fc1c607fab"
last-modified: Thu, 16 Dec 2021 21:48:33 GMT
date: Thu, 02 Feb 2023 18:39:13 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=9;cpu=1;start=2023-02-02T18:39:13.199Z;desc=hit,rtt;dur=13
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 2586
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA
151.101.1.137200 OK 163 kB URL HTTP/2 res.cloudinary.com/everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA
IP 151.101.1.137:0
File type PNG image data, 638 x 422, 8-bit/color RGBA, non-interlaced\012- data
Size 163 kB (163063 bytes)
Hash b390b802c06f9ebbad2e279c7d419fe5
8f69dd4163abcb0f7355b5bd79c8fcacdf6b915e
01de412f6fffcac3829768ef975074239114527122439ac8f37299659f4ed34b
GET /everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "b390b802c06f9ebbad2e279c7d419fe5"
last-modified: Mon, 29 Nov 2021 19:49:11 GMT
date: Thu, 02 Feb 2023 18:39:13 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-02T18:39:13.200Z;desc=hit,rtt;dur=13
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 163063
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA
151.101.1.137200 OK 296 kB URL HTTP/2 res.cloudinary.com/everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA
IP 151.101.1.137:0
File type PNG image data, 700 x 486, 8-bit/color RGB, non-interlaced\012- data
Size 296 kB (295542 bytes)
Hash 45febeb90953d7848134db4a89c86db1
9607a08ff1238fde0573c812d118fbd66b0fb00a
e1c18428c0116b54ade818ac309ecb6ea022734f9245817d68b4f6f62082fd14
GET /everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "45febeb90953d7848134db4a89c86db1"
last-modified: Thu, 13 Jan 2022 19:37:20 GMT
date: Thu, 02 Feb 2023 18:39:13 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-02T18:39:13.200Z;desc=hit,rtt;dur=13
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 295542
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 05591ea5c74087b8136622e22e57676c
96784f29ec4c01fc5de1cf2540f09c18c346e6d5
911e9c67a94237ef3c2968a66029f939379814a312a281c8f183ba5f7836c88b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3397
Cache-Control: max-age=150861
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:13 GMT
Etag: "63dba059-118"
Expires: Sat, 04 Feb 2023 12:33:34 GMT
Last-Modified: Thu, 02 Feb 2023 11:36:57 GMT
Server: ECS (amb/6B8E)
X-Cache: HIT
Content-Length: 280
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.sync.js
2.18.173.203200 OK 639 B URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.sync.js
IP 2.18.173.203:0
Hash da0d1bcd1b196bf584b866a23547dd5b
e15fef73674a61aed29b1b96f41058395aa6e8a0
1cb0c8ca65801fc0b2d1c3411e88f5172acad285b43ca49449626e3c926ffb9d
GET /utag/blackbaud/main/prod/utag.sync.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "da0d1bcd1b196bf584b866a23547dd5b:1674847152.078922"
last-modified: Fri, 27 Jan 2023 19:19:12 GMT
server: AkamaiNetStorage
content-length: 639
cache-control: max-age=300
expires: Thu, 02 Feb 2023 18:44:13 GMT
date: Thu, 02 Feb 2023 18:39:13 GMT
X-Firefox-Spdy: h2
client-registry.mutinycdn.com/personalize/client/16919262ebbbde25.js
151.101.129.91200 OK 28 kB URL HTTP/2 client-registry.mutinycdn.com/personalize/client/16919262ebbbde25.js
IP 151.101.129.91:0
File type Unicode text, UTF-8 text, with very long lines (62663)
Hash 3ba7569bb9a4f265560f4168bbe4ef29
cdf85386760328e5c0f4e0a9d9fb923dad4f337b
522f8529e51c99a922a9f3c20506d82544a90388a22183372e99452a2091cfdb
GET /personalize/client/16919262ebbbde25.js HTTP/1.1
Host: client-registry.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IWvRw9t2aG6WMMHjOivo/K4fpHdw1uhJkR3WDwMjyAEg0OHUdHS7mXBUxPvo3yJbAO52D7GoCcs=
x-amz-request-id: XWXQNDYE9RZ34RBC
last-modified: Fri, 27 Jan 2023 20:07:36 GMT
etag: "0888966d463b49b9236b396a577c9c9a"
cache-control: s-maxage=3600, max-age=0
x-amz-version-id: .ENpK.fYYTTLS_O5vSIWD.qOIoS0HBh1
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
x-continent-code: EU
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 18:39:13 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1681-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675363153.162799,VS0,VE552
vary: X-Continent-Code
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 27463
X-Firefox-Spdy: h2
info.everfi.com/js/forms2/js/forms2.min.js
104.17.70.206200 OK 71 kB URL HTTP/2 info.everfi.com/js/forms2/js/forms2.min.js
IP 104.17.70.206:0
Hash 90146d82eac5f13a9a3a47ea906ff1d0
90a70962061e00166dc875ccc041b4e332cd0b12
121d1bfd13b05ae1e965fe3e5286d36e8c60f3cf132c5090edf7342c415d786d
GET /js/forms2/js/forms2.min.js HTTP/1.1
Host: info.everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:13 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 20:56:20 GMT
etag: "481ebc-33e51-5f217594de500"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Thu, 02 Feb 2023 22:39:13 GMT
cache-control: public, max-age=14400
set-cookie: __cf_bm=433QGzDHprHyhwFDqSATFMJBrxVysFi8aj1D5LUrrKc-1675363153-0-ARf6UW2BQONBenMs1AAtjiCnZCuXd8Nw6gyv/V0IZjt6JwwM5G1yKnL426HZ4YR3fOOtO7yFij4G9qr0mGyeujA=; path=/; expires=Thu, 02-Feb-23 19:09:13 GMT; domain=.info.everfi.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 79350c5caabfb4f1-OSL
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/6.4.1.63.js
151.101.65.91200 OK 40 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/6.4.1.63.js
IP 151.101.65.91:0
Hash 2414910941ecc4f578303ba2f71e8fae
01535a40bc134d8b0c5acaad68c752730cee802a
043c1b77f9241fc66ddbdf89f2776d0e58013ebc3ba734759b6e593c6ee23af0
GET /mutiny-client/6.4.1.63.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QAJeK4IzVBS2JkrDW/s8yQ+UjJjyRs0OQ1NbZr/9CToQV7dFLgYQz+sfwsruttBACZcF9w14k+8=
x-amz-request-id: FXC8M5YZAVNG9091
last-modified: Fri, 27 Jan 2023 13:42:07 GMT
etag: "832cb79ff169f02a47aacc8f99ee8a3f"
cache-control: max-age=31536000
x-amz-version-id: 7T.btEMTzuWyCZuRp2i0IZ0sd3pDhtmG
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 18:39:13 GMT
via: 1.1 varnish
age: 514015
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 1446
x-timer: S1675363154.843214,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28693
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/7.4.1.63.js
151.101.65.91200 OK 11 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/7.4.1.63.js
IP 151.101.65.91:0
File type ASCII text, with very long lines (31369), with no line terminators
Hash 506c56c8959866f1660754e52af883b7
24de06eca1d8c85b5c507c8d2ad4d1618d327796
4d4baaa180813a0a5cfd9370f9c77857bf11adec5cd5c9ef838cad9d5e8848ed
GET /mutiny-client/7.4.1.63.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: siFE3+d3cLfPP69qon/whX7K8zPPD1oht657Lr5w4wKOltD1YCNss1yT986zwkJjyACBALw183o=
x-amz-request-id: FXC901J3XC934WXP
last-modified: Fri, 27 Jan 2023 13:42:07 GMT
etag: "3f6c22d4aecc68f536e2bc57ad787731"
cache-control: max-age=31536000
x-amz-version-id: RJrJC85nSTCaPK4cjirW_xuU1TkarPmb
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 18:39:13 GMT
via: 1.1 varnish
age: 514015
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 1435
x-timer: S1675363154.845769,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11412
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300,400,400italic,700,900
142.250.74.106200 OK 5.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:300,400,400italic,700,900
IP 142.250.74.106:0
Hash 5549ab862044dc8872fe47979b2af3d1
559641b23e00bb97aa766a17cd4db082d6e3d2d5
5d3902170f5b26be1cef06042b34bbc6446388652ea02c7d5de55049ef837c94
GET /css?family=Lato:300,400,400italic,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 18:39:13 GMT
date: Thu, 02 Feb 2023 18:39:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9
104.18.23.52200 OK 4.2 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9
IP 104.18.23.52:0
File type ASCII text, with very long lines (26366)
Hash 7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:13 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1017078
accept-ranges: bytes
server: cloudflare
cf-ray: 79350c5fdaeb1c0a-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9
104.18.23.52200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9
IP 104.18.23.52:0
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:13 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 555859
accept-ranges: bytes
server: cloudflare
cf-ray: 79350c5fdae91c0a-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=655ccfc4f9
104.18.23.52200 OK 54 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=655ccfc4f9
IP 104.18.23.52:0
File type ASCII text, with very long lines (65397)
Hash dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
GET /releases/v5.15.4/css/pro.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:13 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 355148
accept-ranges: bytes
server: cloudflare
cf-ray: 79350c5fcae71c0a-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WZ264LM
142.250.74.72200 OK 100 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WZ264LM
IP 142.250.74.72:0
File type ASCII text, with very long lines (27589)
Hash 8409ea9bd070ad83a685bd2cebbecb34
e0af9807becdeda86a8e1930a35bf843dc522dd4
dd34701be0139ed726eb0a75cbcd563fb06bd5ba5cace54f0d5fa4a3f90cb925
GET /gtm.js?id=GTM-WZ264LM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 18:39:13 GMT
expires: Thu, 02 Feb 2023 18:39:13 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 18:15:57 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 99501
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
104.18.21.226200 OK 8.3 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP 104.18.21.226:0
Hash 1ca5eb0e51a863b721d5b70849e27956
bb680824c17365c294eb1e10b58f97b5ccfacf2a
64b88d5f5f23d3f68395944a182dcc374645866b8146d8732d6279db48ee420b
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 18:39:13 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "840019DC3108E5EF9337837634EEF317F5DC8D4C"
Expires: Fri, 03 Feb 2023 06:00:00 GMT
Last-Modified: Thu, 02 Feb 2023 18:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79350c5ee8d60b39-OSL
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/vanilla-lazyload@10.19.0/dist/lazyload.min.js
151.101.1.229200 OK 2.2 kB URL HTTP/2 cdn.jsdelivr.net/npm/vanilla-lazyload@10.19.0/dist/lazyload.min.js
IP 151.101.1.229:0
File type ASCII text, with very long lines (5459)
Hash 7d090d3e0782292a741d9d796e98b7aa
9d68a21b034bd4f647d8ae31b1952bde5d3fd255
6e3e472a41ee44fc79183d0086f6b5fce63ee496c4970eae99a59976f004023e
GET /npm/vanilla-lazyload@10.19.0/dist/lazyload.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 10.19.0
x-jsd-version-type: version
etag: W/"157d-7oSTFmgFjdrwSUlzDWmBH9iMXEY"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 18:39:14 GMT
age: 27509507
x-served-by: cache-fra19154-FRA, cache-bma1640-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2168
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:25:03 GMT
expires: Mon, 29 Jan 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 375251
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash 9476a87daab1837bc16a151d07c846bf
b013eb829d955f51fd21ccbf9a24d8a30b06f7ef
323b4b8d888cdcd474a86d2081f10dd7ff08eac7cf0061bb781cabe3ce34eccf
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 18:39:14 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "8D4051762F8180FEF2A481625FD7C0E33B6E01BE"
Expires: Fri, 03 Feb 2023 05:00:00 GMT
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2397
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79350c60cac80b39-OSL
fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
216.58.207.227200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 24408, version 1.0\012- data
Hash efee2d080d7bebdd2e0aeb2e030813a0
f8d38f9f9584e48c2e469877ebd94232265585f1
bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:31 GMT
expires: Fri, 26 Jan 2024 21:48:31 GMT
cache-control: public, max-age=31536000
age: 593443
last-modified: Tue, 26 Apr 2022 15:50:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.227200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 04:29:08 GMT
expires: Wed, 31 Jan 2024 04:29:08 GMT
cache-control: public, max-age=31536000
age: 223806
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
client-registry.mutinycdn.com/personalize/client_data/16919262ebbbde25.json
151.101.129.91200 OK 13 kB URL HTTP/2 client-registry.mutinycdn.com/personalize/client_data/16919262ebbbde25.json
IP 151.101.129.91:0
File type Unicode text, UTF-8 text, with very long lines (65531), with no line terminators
Hash 7dbb8747451a02b890cb9a50cbd854d3
8a53e31e597c8ab4cd4439511362d42201aedda7
6d1cf5e3e5f4e23f7647b0b005fb1efa661fffed92158c14c44f20522605b395
GET /personalize/client_data/16919262ebbbde25.json HTTP/1.1
Host: client-registry.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: P7cx2e+2Xz6q3vTF0fi1tSAPxg5uUSr8v9BhfmRXADDqRbSWpxSRg9aChCJuCOm4H9g8hypvoPQ=
x-amz-request-id: GG6JYK26MW99GZGJ
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 27 Jan 2023 20:07:37 GMT
etag: "87966df1eb501945694f1658feb96aea"
cache-control: s-maxage=3600, max-age=0
x-amz-version-id: RCA59qpWamI3.4c.5bS8sbw4tCJB_pmS
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
x-continent-code: EU
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 18:39:14 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1630-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675363154.836576,VS0,VE215
vary: X-Continent-Code
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 13114
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
216.58.207.227200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Hash 1c6c65523675abc6fcd78e804325bd77
898d9808304dc157f5dcb18ca169ec6e2b96b3d7
08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 04:28:49 GMT
expires: Wed, 31 Jan 2024 04:28:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
content-type: font/woff2
age: 223825
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA
151.101.1.137200 OK 139 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA
IP 151.101.1.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1270x784, components 3\012- data
Size 139 kB (139440 bytes)
Hash a16aae583e4634e743fb443af542fd07
5fc5d0c7b504a9ee454b3d94b0a3eb9f88cce510
945f826d7bc47963fa41b2cf5327daca7b01044e594c655995537c1fc6880543
GET /everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "a16aae583e4634e743fb443af542fd07"
last-modified: Sat, 14 Jan 2023 06:27:36 GMT
date: Thu, 02 Feb 2023 18:39:14 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-02T18:39:14.080Z;desc=hit,rtt;dur=12
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 139440
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA
151.101.1.137200 OK 26 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x336, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e718701be14dfb45e8e70950d88f2e54
3ff84aafe455c94e074eb7e5e2c9eb30ec588e74
589bedc0c2f982eee65a2868782c6e41215eda4222cd3246fa2efab8feee1bf4
GET /everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Endeavor_Website_preview-e1533064446603.webp"
content-type: image/webp
etag: "e718701be14dfb45e8e70950d88f2e54"
last-modified: Tue, 14 Dec 2021 02:23:41 GMT
date: Thu, 02 Feb 2023 18:39:14 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-02T18:39:14.081Z;desc=hit,rtt;dur=12
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 26104
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/everfi/image/upload/c_scale,w_732,h_546/f_auto,q_auto/v1615774462/Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.jpg?_i=AA
151.101.1.137200 OK 23 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_732,h_546/f_auto,q_auto/v1615774462/Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.jpg?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 732x546, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e6e3dcbf496bf46b458377be9ad90b24
5d5bfc21753a4c32bfd423bc61ff0ddb1563db54
f586d222cf9f2a5cc305ed1ed5feb74adc68cb3d86e1787de3023fb5674c000d
GET /everfi/image/upload/c_scale,w_732,h_546/f_auto,q_auto/v1615774462/Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Screen-Shot-2018-06-06-at-4.30.59-PM_201343fd232.webp"
content-type: image/webp
etag: "e6e3dcbf496bf46b458377be9ad90b24"
last-modified: Tue, 14 Dec 2021 01:44:30 GMT
date: Thu, 02 Feb 2023 18:39:14 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-02T18:39:14.085Z;desc=hit,rtt;dur=12
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 23314
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA
151.101.1.137200 OK 34 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a96bd57f1ad8c808d8336b9bf67bc45b
15f927db7371c61b930f9b02f34204ee2ba1f1f2
077aad9e98d550ae86833b31f89184394224cecd2530f1f556a85d334c489731
GET /everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="2022-2023-new-content.webp"
content-type: image/webp
etag: "a96bd57f1ad8c808d8336b9bf67bc45b"
last-modified: Mon, 11 Jul 2022 19:45:14 GMT
date: Thu, 02 Feb 2023 18:39:14 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-02T18:39:14.089Z;desc=hit,rtt;dur=12
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 33580
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_848,h_474/f_auto,q_auto/v1673889753/Best_306_5-1.jpg?_i=AA
151.101.1.137200 OK 41 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_848,h_474/f_auto,q_auto/v1673889753/Best_306_5-1.jpg?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ddbde5848f9544524bd7530b906209fa
c38fe8a17b2ead4ebfd7fb2bc45ed7ccb4431a92
0ab4ed60ba7051780829f33af07fff95eedc899fbd0c9028f181c3af012d601e
GET /everfi/image/upload/c_scale,w_848,h_474/f_auto,q_auto/v1673889753/Best_306_5-1.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Best_306_5-1.webp"
content-type: image/webp
etag: "ddbde5848f9544524bd7530b906209fa"
last-modified: Wed, 18 Jan 2023 19:44:36 GMT
date: Thu, 02 Feb 2023 18:39:14 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-02T18:39:14.090Z;desc=hit,rtt;dur=12
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 41310
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q2
IP 104.18.21.226:0
Hash 0cc570ef12c8f58ed87bcdc889e71411
b1a47aeb53c994a6143cee5c36b9bba8f965e2da
10c4dd215af8e2e632d8cef1e29af8a3a6b74f706ad5542bd5ac3028de493bb8
POST /ca/gsatlasr3dvtlsca2022q2 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 18:39:14 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "0A64E395A79F764817824146EAEF403061396D9D"
Expires: Fri, 03 Feb 2023 05:00:00 GMT
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79350c5fdc2ab4e8-OSL
res.cloudinary.com/everfi/images/f_auto,q_auto/v1662561673/word-force-screenshot/word-force-screenshot.png?_i=AA
151.101.1.137200 OK 79 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1662561673/word-force-screenshot/word-force-screenshot.png?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e90195b48e506da93cebd53d9b3bb6b5
b5138823ededa5d6999eff6ef80092a40a806f08
436e5bdbd55b0f212dfa2fa47f100ff6fca2beef79a3bd83f4063117857488b1
GET /everfi/images/f_auto,q_auto/v1662561673/word-force-screenshot/word-force-screenshot.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="word-force-screenshot.webp"
content-type: image/webp
etag: "e90195b48e506da93cebd53d9b3bb6b5"
last-modified: Wed, 07 Sep 2022 14:45:41 GMT
date: Thu, 02 Feb 2023 18:39:14 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=11;cpu=1;start=2023-02-02T18:39:14.088Z;desc=hit,rtt;dur=12
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 78864
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4352
Expires: Thu, 02 Feb 2023 19:51:46 GMT
Date: Thu, 02 Feb 2023 18:39:14 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4352
Expires: Thu, 02 Feb 2023 19:51:46 GMT
Date: Thu, 02 Feb 2023 18:39:14 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4352
Expires: Thu, 02 Feb 2023 19:51:46 GMT
Date: Thu, 02 Feb 2023 18:39:14 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4352
Expires: Thu, 02 Feb 2023 19:51:46 GMT
Date: Thu, 02 Feb 2023 18:39:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3701
Expires: Thu, 02 Feb 2023 19:40:55 GMT
Date: Thu, 02 Feb 2023 18:39:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:16:08 GMT
age: 40986
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ybz4mmNUwsKOkpz6GFm4nLz7iGX5gJ--EiUjqrs8G92GBLn6qaF7IQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:51 GMT
age: 74483
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 73056
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i697kJpdT4ZPeMLWIftWf16pWCic0-v4tL4GDKfVfTZLo-E4-3FwDQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 73056
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e0zaXjoBKOmsY4fPEbl1SWCBxetMssmszZug0-epLq-X5rGb5zKHZw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:36 GMT
age: 74378
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d910c24f5a6108cb74103cd70692a703
9fe648fa464e46d16f685aca1704f3414eda4107
5cbe5e571e62555225621440203ae24a3b8c41ac7f49b6b731bc2c94e620797f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5561
x-amzn-requestid: 76ca969b-a840-4d5c-97c1-2dfd93b8f630
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKYE3-IAMFqbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-2729fe22420bcc0563c39aff;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: E91BIw8QT3vXXQY8GIPpnRqnTZV4paZ3wynf7UjLnjeIfwS0tiC1Gg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 73056
etag: "9fe648fa464e46d16f685aca1704f3414eda4107"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/f_auto,q_auto/v1674594411/macbook-mockup-featuring-sticky-notes-in-the-wall-m14905-r-el2/macbook-mockup-featuring-sticky-notes-in-the-wall-m14905-r-el2.webp?_i=AA
151.101.1.137200 OK 54 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1674594411/macbook-mockup-featuring-sticky-notes-in-the-wall-m14905-r-el2/macbook-mockup-featuring-sticky-notes-in-the-wall-m14905-r-el2.webp?_i=AA
IP 151.101.1.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8bf06b86dedbabfb6e112073eed1b897
edc8e3444d38cf73e67dd41729012e28fff57ea3
9135a530085fcbab13e9458d3460cd960a6faa66ace511d976ca31a737c4d18e
GET /everfi/images/f_auto,q_auto/v1674594411/macbook-mockup-featuring-sticky-notes-in-the-wall-m14905-r-el2/macbook-mockup-featuring-sticky-notes-in-the-wall-m14905-r-el2.webp?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="macbook-mockup-featuring-sticky-notes-in-the-wall-m14905-r-el2.webp"
content-type: image/webp
etag: "8bf06b86dedbabfb6e112073eed1b897"
last-modified: Tue, 24 Jan 2023 21:07:26 GMT
date: Thu, 02 Feb 2023 18:39:14 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=162;cpu=0;start=2023-02-02T18:39:14.092Z;desc=miss,rtt;dur=12,cloudinary;dur=67;start=2023-02-02T18:39:14.139Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 53850
X-Firefox-Spdy: h2
user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=false&session_token=2df13346-a832-4be3-90da-1199d61fcbe2&token=7b73f9362c0ba1bd&visitor_token=6ad31905-e4da-4469-9007-f08194915f40
151.101.66.217200 OK 745 B URL HTTP/2 user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=false&session_token=2df13346-a832-4be3-90da-1199d61fcbe2&token=7b73f9362c0ba1bd&visitor_token=6ad31905-e4da-4469-9007-f08194915f40
IP 151.101.66.217:0
File type JSON data\012- , ASCII text, with very long lines (1278), with no line terminators
Hash 9878a5c344ebdbcebb5f257e2efb9a87
724c6705984fac83b75885c7304c038000a3459e
1cb7b7eaa2d95d8cebc2f7f1cd7c300deaa8a22ced0fa99f912216e3a89ee13f
GET /personalize/user_data/16919262ebbbde25.json?async=false&session_token=2df13346-a832-4be3-90da-1199d61fcbe2&token=7b73f9362c0ba1bd&visitor_token=6ad31905-e4da-4469-9007-f08194915f40 HTTP/1.1
Host: user-data.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: x-cache, x-cache-hits, age
access-control-max-age: 7200
cache-control: no-store
pragma: no-cache
x-visitor-token: 6ad31905-e4da-4469-9007-f08194915f40
x-async-user-data: false
etag: W/"3c784708f4aefd3d66d4d4daf383baeb"
x-request-id: 8d3c881e-37d3-4d45-946c-6b6a716a0ed6
x-runtime: 0.082928
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
date: Thu, 02 Feb 2023 18:39:14 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1677-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675363154.841727,VS0,VE465
vary: X-Visitor-Token,X-Profile-Token,Fastly-Client-Ip,X-Async-User-Data,Origin,Accept-Encoding
x-connection-speed: broadband
x-continent-code: EU
x-country-code: NO
x-edge-datacenter: BMA
x-edge-region: EU-East
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 745
X-Firefox-Spdy: h2
cdn.optimizely.com/js/21287320532.js
2.18.172.152200 OK 96 kB URL HTTP/2 cdn.optimizely.com/js/21287320532.js
IP 2.18.172.152:0
File type ASCII text, with very long lines (65468)
Hash ade621005e7334955bc9af95a2108092
b0a8a64bfaf043aee594cd8dab295a9f0302a073
36ca32f177e1404cf8c84af1429016f449406379332ddb27c7ec1891488c29ab
GET /js/21287320532.js HTTP/1.1
Host: cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: at78XnMoUc2HxF8KhMlOFe76Ae/M1Rc/rgV8XTAfZqe+DCAg2Dy29E8d09ert2x/mUMjjxlTnpZ5IIiTgQEhyw==
x-amz-request-id: 118Q31Y14459RAET
x-amz-replication-status: COMPLETED
last-modified: Wed, 01 Feb 2023 16:37:20 GMT
etag: "ade621005e7334955bc9af95a2108092"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 1019
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: cYa_A40ORCNDqTufEuJO6_0vcBtOTwRS
accept-ranges: bytes
content-type: text/javascript; charset=utf-8
server: AmazonS3
content-length: 96525
vary: Accept-Encoding
cache-control: max-age=120
date: Thu, 02 Feb 2023 18:39:14 GMT
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=13, origin; dur=109, cdn;desc="AkamaiION";dur=0,rtt;desc="2";dur=0,cdnip;desc="2.18.172.152";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 24205eaaeea350dcb7cc7e12f87a2ec7
d457624fe4ecef7a86167c954010ad66dd68771b
756c0fa1e647bc5a524dee0213168421e474e45de17ea76b31bea78bdf490b54
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=99779
Date: Thu, 02 Feb 2023 18:39:14 GMT
Etag: "63dadb80-1d7"
Expires: Fri, 03 Feb 2023 22:22:13 GMT
Last-Modified: Wed, 01 Feb 2023 21:37:04 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nsLD6dmayiSbKxuNN4lJEgljcgQHfm01biJZgsHep8KT8ntjIxd3rg==
Age: 2709
everfi.com/courses/k-12/smarteconomics/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Feb2_SmartEconomics_Announcement&utm_content=SmartEconomics:+Economics+for+Middle+School
141.193.213.21200 OK 113 kB URL HTTP/2 everfi.com/courses/k-12/smarteconomics/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Feb2_SmartEconomics_Announcement&utm_content=SmartEconomics:+Economics+for+Middle+School
IP 141.193.213.21:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size 113 kB (112568 bytes)
Hash 92268deb8742a5d5142a053282dba298
996961ee77457f21c65029f910d2345e250586e5
3c664e93ca19234ff01dda05df4b40a499856e5a44b3294315767085c75d7d05
GET /courses/k-12/smarteconomics/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Feb2_SmartEconomics_Announcement&utm_content=SmartEconomics:+Economics+for+Middle+School HTTP/1.1
Host: everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:12 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-powered-by: WP Engine
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
link: <https://everfi.com/wp-json/>; rel="https://api.w.org/", <https://everfi.com/wp-json/wp/v2/offering/1077075>; rel="alternate"; type="application/json", <https://everfi.com/?p=1077075>; rel=shortlink
x-pass-why: custom-args
permissions-policy: midi=(), camera=(), microphone=(), payment=()
referrer-policy: origin
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79350c558c11b4e8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7bbf5ccb7cc1703e5137ec7ad7997283
10a2bcc8818acca5f4b015d5295f4ff753974084
45bc5afffda345801685d734783c4381ef3b8ac6d8c93fcf83fba7d0c1fa56ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4588
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:14 GMT
Last-Modified: Thu, 02 Feb 2023 17:22:46 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
ob.healthroundprince.com/i/9ebca9e35a6781e1317f22e9acd57b94.js
54.230.111.85200 OK 33 kB URL HTTP/2 ob.healthroundprince.com/i/9ebca9e35a6781e1317f22e9acd57b94.js
IP 54.230.111.85:0
Hash 937aa398de74799b9e29fadbd29c21a7
a45976e814500f744aee9637905027b961d0c76d
70995cd8601feb7b54b8e0131ab93acc1c7815cf8b6b64c2d4c6ef74a3810e98
GET /i/9ebca9e35a6781e1317f22e9acd57b94.js HTTP/1.1
Host: ob.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 31911
content-encoding: gzip
server: Caddy
date: Thu, 02 Feb 2023 07:55:27 GMT
cache-control: max-age=43200
expires: Thu, 02 Feb 2023 19:52:58 GMT
etag: "15748-17mQF5sAW8oWOarnuBtfICDuWP8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h0jOKEGoAZkqTbY3cvIDt2FnbhJDxJvje4-BIGFdZf-h0wqZ8Y680g==
age: 38776
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541
2.18.173.203200 OK 1.2 kB URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541
IP 2.18.173.203:0
File type ASCII text, with very long lines (995)
Hash cfd5c0a066e7addbdc9778a134b80d9c
9d34e630d703b18e1d48f4dc0c7e2f048b0ec368
ce79520f243faec0d953a70f3ac392ecc8e7936ab7e80bc94212d54af1f5f464
GET /utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "4ff103aae37a4ed488af34613295b078:1655221329.681708"
last-modified: Tue, 14 Jun 2022 15:42:09 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 17 Feb 2023 18:39:14 GMT
date: Thu, 02 Feb 2023 18:39:14 GMT
content-length: 1150
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e35995be3adb0cf1c06e551c63319a4f
8c5d22358ab305f8df4c994358109e026ffa597e
7810821109ad1f519f613c8881c27e3303050848995b458bb3ae568e92f64eca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1342
Cache-Control: max-age=155628
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:14 GMT
Etag: "63dbbb00-1d7"
Expires: Sat, 04 Feb 2023 13:53:02 GMT
Last-Modified: Thu, 02 Feb 2023 13:30:40 GMT
Server: ECS (amb/6B7D)
X-Cache: HIT
Content-Length: 471
cdn.c212.net/c.min.js
54.230.111.61200 OK 747 B IP 54.230.111.61:0
File type ASCII text, with very long lines (747), with no line terminators
Hash 9f5634a151b9e5ecb2adec9462f783d6
3d6ac40aed2275277131d462168dac9d27a628f0
10fdc76cd92396525cf18941196d2251aa4d0c05ba2a0a5421e3af99c01503ae
GET /c.min.js HTTP/1.1
Host: cdn.c212.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 747
last-modified: Fri, 24 Jan 2020 19:12:36 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 01 Feb 2023 22:54:03 GMT
etag: "9f5634a151b9e5ecb2adec9462f783d6"
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: loDZeivJwzD1YtSLmMM47X8x8ja3gAL_feLUygOk1sHvLzy1frrxpA==
age: 71121
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=blackbaud/main/202301271918&cb=1675363181902
2.18.173.203200 OK 2 B URL HTTP/2 tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=blackbaud/main/202301271918&cb=1675363181902
IP 2.18.173.203:0
File type ASCII text, with no line terminators
Hash 7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
GET /utag/tiqapp/utag.v.js?a=blackbaud/main/202301271918&cb=1675363181902 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7bc0ee636b3b83484fc3b9348863bd22:1460653071"
last-modified: Thu, 14 Apr 2016 16:57:51 GMT
server: AkamaiNetStorage
content-length: 2
unused62: 8096267
cache-control: max-age=600
expires: Thu, 02 Feb 2023 18:49:14 GMT
date: Thu, 02 Feb 2023 18:39:14 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e4777c666cfbb7fb7089e340d27654f2
190005b8669d3c69d868aba3ee0363e6ad05862b
1c9b530a685f0a99b39252e3f0284be83b466d89a226f7c43cf8bfb21b68be73
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5163
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:14 GMT
Last-Modified: Thu, 02 Feb 2023 17:13:11 GMT
Server: ECS (amb/6B7D)
X-Cache: HIT
Content-Length: 279
cdn.optimizely.com/js/22133900366.js
2.18.172.152200 OK 83 kB URL HTTP/2 cdn.optimizely.com/js/22133900366.js
IP 2.18.172.152:0
File type ASCII text, with very long lines (65468)
Hash c20e5f273bcdb5423220d5f4855ca570
c2d1b70df6993064c9fcf810782d2d212fe39924
99b8f4f9bf46adda4d6f24d574045e73020a85a6e94ae487599b547589849a38
GET /js/22133900366.js HTTP/1.1
Host: cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ycjDAXOKFWnUEg/DXqKHuCCPB2yIwDxZyWaHu9U3222Vmaqzm1CEyga9azYgEPIeaXx2iM8wWjI=
x-amz-request-id: N5VX28M5BKX2AZ3A
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 18:09:24 GMT
etag: "c20e5f273bcdb5423220d5f4855ca570"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 8
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: zxXHkbanS0Al8Kk6PQ5fj52mV_qPPwri
accept-ranges: bytes
content-type: text/javascript; charset=utf-8
server: AmazonS3
content-length: 82615
vary: Accept-Encoding
cache-control: max-age=120
date: Thu, 02 Feb 2023 18:39:14 GMT
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=13, origin; dur=120, cdn;desc="AkamaiION";dur=0,rtt;desc="1";dur=0,cdnip;desc="2.18.172.152";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 8eaefdcdde6e4fa3c0ae641806e23d9b
81424d93e0805b2c586f583dd26cf510a7fd5899
73aa1cdd32a6690f9c7c6dd3817dd09d8e6eabb4b3e8fe81bb08a33dbacef5b8
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=164069
Date: Thu, 02 Feb 2023 18:39:14 GMT
Etag: "63dbd309-1d7"
Expires: Sat, 04 Feb 2023 16:13:43 GMT
Last-Modified: Thu, 02 Feb 2023 15:13:13 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SBONewcsEqRwWM8hlAHyoub-tu3jU7krnZcKEhrSfHSr2SAFQP07Ug==
Age: 3630
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq
23.36.79.17200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2298)
Hash 94f1dc4cc1374b308ca8afbfc5bcfd04
ab20fb9d8aaeba5e2881cd2c684d8ab032116803
0ba724f6982a11aa243b3faa3a9b2df1e46073323efd9025f0a1c528c6fc34a9
GET /i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230202183914805A6C3AC82001A382CC
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a9c60aa199257bc6ac9477f36dc6e39f179a4c0a4b25bf52a6d2dde185551f29226747f29e3a0896549884234f05a8534c63e13fc2ee01e27c2907275e2d5dfce
content-encoding: gzip
expires: Thu, 02 Feb 2023 18:39:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 18:39:14 GMT
content-length: 1134
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2LC7LXLnjsQFrzE8V4HWVzKMKIg; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=4, cdn-cache; desc=MISS, edge; dur=1, origin; dur=107
x-origin-response-time: 107,23.36.79.13
x-akamai-request-id: af2c250a
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 376568ad565582b9a012526b079e1d15
8a3d0933e4ad5e6b4942abc856e2b06bd518cb86
8638da6b826ab2e28955fa6963b3fbac2fb85c937e5eb0e629b8a10b3e029498
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3039
Cache-Control: max-age=130699
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:14 GMT
Etag: "63db52fe-1d7"
Expires: Sat, 04 Feb 2023 06:57:33 GMT
Last-Modified: Thu, 02 Feb 2023 06:06:54 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7bbf5ccb7cc1703e5137ec7ad7997283
10a2bcc8818acca5f4b015d5295f4ff753974084
45bc5afffda345801685d734783c4381ef3b8ac6d8c93fcf83fba7d0c1fa56ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4588
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:14 GMT
Last-Modified: Thu, 02 Feb 2023 17:22:46 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675363181926
52.51.133.63200 OK 312 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675363181926
IP 52.51.133.63:0
File type JSON data\012- , ASCII text, with very long lines (368), with no line terminators
Hash 157934886ba8258dbc73b4d18e2425ec
3c6a44940575474745c0d76d11e9a9c3124ace8f
bece02762755ff122f947c9a4c0251cf8339fee47a7218565e704a8fb01b7759
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675363181926 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://everfi.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-0a888e68a.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=03235809475749021622348934435694553380; Max-Age=15552000; Expires=Tue, 01 Aug 2023 18:39:14 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: C19cVFmoRUY=
Content-Length: 312
Connection: keep-alive
embed.formhq.net/v1/base.js
172.66.43.197200 OK 71 kB URL HTTP/2 embed.formhq.net/v1/base.js
IP 172.66.43.197:0
File type ASCII text, with very long lines (6384), with no line terminators
Hash 41fdaff68ec1fe45c66cc270dee386aa
5495cdc04c54b066a506e1a0b258569492c19e48
907ca66db80fa1a810782a4a31df5e1518609dbe501a526d20ab3cd1ed3676c8
GET /v1/base.js HTTP/1.1
Host: embed.formhq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:14 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=6385
etag: W/"63612f3e-18f1"
last-modified: Tue, 01 Nov 2022 14:37:50 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: max-age=1800
cf-cache-status: HIT
age: 2927
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XG93RqqjH8dcb9TNHqKvL4xWSk0wQVw2suaARwce0nqYKSVkY%2BFZO2O3qUAY7OVX0oILeLkDTGRZBDHHWZJc7N7%2FrIZ6rPpaPh%2FnGryPGUaPNEYRaEcxa7pp43%2BsrQLFyfLW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79350c647fb0b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
marketo.clearbit.com/assets/v1/marketo/forms.js
18.171.23.207200 OK 28 kB URL HTTP/2 marketo.clearbit.com/assets/v1/marketo/forms.js
IP 18.171.23.207:0
File type Unicode text, UTF-8 text, with very long lines (3400)
Hash bf6aa97d440b453e5d58cd5bcf2e585c
cd59575ea6262fa79890d53880697f82fb251cf0
4063e72c353fcac556ca10a2d6d26666e4b486aaefaa1872585b3f9e88b91adb
GET /assets/v1/marketo/forms.js HTTP/1.1
Host: marketo.clearbit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
last-modified: Fri, 06 Jan 2023 21:26:29 GMT
set-cookie: rack.session=BAh7CUkiD3Nlc3Npb25faWQGOgZFVG86HVJhY2s6OlNlc3Npb246OlNlc3Npb25JZAY6D0BwdWJsaWNfaWRJIkU1N2MzYjU1ODUxMWM0NjdkMTViODYyM2JhMTE0MDVmMTQ4ZGY4ZTMxMzg1MWI2ZmFiY2Q4ZjE3YTg2NjQxOWU1BjsARkkiCWNzcmYGOwBGSSIxeTBqOThvQWU2akM0bjVFTjEwN0I4RTlYUWFzNFNhOGQ3dTJ5cDE4MnprZz0GOwBGSSINdHJhY2tpbmcGOwBGewZJIhRIVFRQX1VTRVJfQUdFTlQGOwBUSSItMTFjZDFkMmEwOWFkM2NjMzM4ZWY4ZDY5NmY1NTdhYmNkZjNjMDNkMAY7AEZJIg5fX0ZMQVNIX18GOwBGewA%3D--1ca76abbad97e106864045c62d8b9306f38b007c; path=/; expires=Thu, 09 Feb 2023 18:39:14 GMT; secure; HttpOnly
content-length: 28086
date: Thu, 02 Feb 2023 18:39:14 GMT
server: envoy
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
X-Firefox-Spdy: h2
a20497791765.cdn.optimizely.com/client_storage/a20497791765.html
104.110.8.48200 OK 843 B URL HTTP/2 a20497791765.cdn.optimizely.com/client_storage/a20497791765.html
IP 104.110.8.48:0
File type HTML document, ASCII text, with very long lines (1371)
Hash c122a3cab7bc9bab0fed7f26b3334706
35877323b39ff4632ee735d8f8e29e71b4fc4aa9
6015474cec9d8aba396ffac0073f15bf6299ade9f00f709be8ace492388b8c10
GET /client_storage/a20497791765.html HTTP/1.1
Host: a20497791765.cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NduMiXxdTpPsR9FyUlfgfL5H43Sxp7r3B1F3dY0WbZm6HKm7Ou21AgoIIwX6DFuABzfnXHSe0e8=
x-amz-request-id: 1WEWYGV11Z80NKMN
x-amz-replication-status: COMPLETED
last-modified: Wed, 01 Feb 2023 16:37:16 GMT
etag: "e9adc335a180448df7ce2fa9be6c5923"
x-amz-server-side-encryption: AES256
x-amz-meta-pci_enabled: False
x-amz-version-id: y8KC4HeHZpUDiosJVtsEh6NMnjNpZGKW
accept-ranges: bytes
content-type: text/html; charset=utf-8
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=120
x-akamai-transformed: 9 - 0 pmb=mRUM,2
content-encoding: gzip
date: Thu, 02 Feb 2023 18:39:14 GMT
content-length: 843
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=11, origin; dur=108, cdn;desc="AkamaiION";dur=0,rtt;desc="2";dur=0,cdnip;desc="104.110.8.48";dur=0,cdnmap;desc="a4728.x.akamaiedge.net";dur=0,proto;desc="h2";dur=0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 85bd96a56a6a7f09e3e7dadc7980152e
37590c595abeb315046a293a9e53632ae2128ac4
c27be18eef006f48310fb2b0c456d6bcb1f3b0298dcb6e580724923323cb48a7
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: _ttp=2LC7LXLnjsQFrzE8V4HWVzKMKIg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825D19F86481431D6BBCCFF
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f827e6bc0806bd5a24cf0439744099e1e4bba0637571d8edb56c6009f69fe5018b8e38bd5b93708ee64c377fa97874d18ceefbea8a477a7fa2bec40c3b56c69b1
content-encoding: gzip
content-length: 30917
date: Thu, 02 Feb 2023 18:39:14 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: af2c2a83
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 949
Origin: https://everfi.com
Connection: keep-alive
Cookie: _ttp=2LC7LXLnjsQFrzE8V4HWVzKMKIg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230202183914BB03FD4E2839C54A1D9A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a333f8372ba90f9d51c3c78a238e426eccf8b2f6384389760eb401fbe99dd2a189fcb04d95aafdc4d5010103d5eb836ef5cfea1b7665fd2b39fb96f51017ec0a1
expires: Thu, 02 Feb 2023 18:39:15 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 18:39:15 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=16, cdn-cache; desc=MISS, edge; dur=5, origin; dur=115
x-origin-response-time: 115,23.36.79.13
x-akamai-request-id: af2c2b0c
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b9e4d21a0ca68cf6990a3b1e1f1190bf
ab58708eb4dd5d9b5b85344d2c5076c79c57caab
fc3b94a4e6e14f264ee49ab95fbda653e9aeec1c225451d9db4151dbaf7c55db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5950
Cache-Control: max-age=171080
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:15 GMT
Etag: "63dbe55d-118"
Expires: Sat, 04 Feb 2023 18:10:35 GMT
Last-Modified: Thu, 02 Feb 2023 16:31:25 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 280
obs.healthroundprince.com/ct?id=37830&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675363182070&hl=1&op=0&ag=1317291471&rand=230188097179156755022928015171229620207015668682587119161921951929682095109&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=B570ZdHU6I&pto=3309&ver=50&gac=-&mei=&ap=&duid=1.1675363182.NiilVsdK1AGfGQUk&suid=1.1675363182.PZZNpqv29a2leVpX&tuid=1.1675363182.1RxhZ7TtxcFloHF2&fbc=->m=W10%3D&it=81%2C2927%2C175&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
54.83.110.109200 OK 1.0 kB URL HTTP/2 obs.healthroundprince.com/ct?id=37830&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675363182070&hl=1&op=0&ag=1317291471&rand=230188097179156755022928015171229620207015668682587119161921951929682095109&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=B570ZdHU6I&pto=3309&ver=50&gac=-&mei=&ap=&duid=1.1675363182.NiilVsdK1AGfGQUk&suid=1.1675363182.PZZNpqv29a2leVpX&tuid=1.1675363182.1RxhZ7TtxcFloHF2&fbc=->m=W10%3D&it=81%2C2927%2C175&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 54.83.110.109:0
File type ASCII text, with very long lines (3199), with no line terminators
Hash 1e1db05540961b8615cd44215e120940
2d019c2f31b42ccc7d3b3fe5d1b7c8feccc74f8a
c209e8421179522d3398fcd4f18d72ea5cf9a182ec71e53935d88454a0c024d3
GET /ct?id=37830&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675363182070&hl=1&op=0&ag=1317291471&rand=230188097179156755022928015171229620207015668682587119161921951929682095109&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=B570ZdHU6I&pto=3309&ver=50&gac=-&mei=&ap=&duid=1.1675363182.NiilVsdK1AGfGQUk&suid=1.1675363182.PZZNpqv29a2leVpX&tuid=1.1675363182.1RxhZ7TtxcFloHF2&fbc=->m=W10%3D&it=81%2C2927%2C175&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Thu, 02 Feb 2023 18:39:15 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=d0c413ff1b7f81de4abb66cd764115b0; Max-Age=29030400; Path=/; Expires=Thu, 04 Jan 2024 18:39:15 GMT; HttpOnly; Secure; SameSite=None
content-length: 1028
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5524
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:15 GMT
Last-Modified: Thu, 02 Feb 2023 17:07:11 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.121200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=79670
date: Thu, 02 Feb 2023 18:39:15 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2
104.18.23.52200 OK 25 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 24800, version 331.-31196\012- data
Hash 4abe94f1746789f39110d3ebac7ebd96
bdc3b41f3cc3e5e3e87ca020eeddc2b288f0dd91
299dc8e16be2ab2214e279b5536efd387d17fd3d364f397ce9f1fed602384fea
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:15 GMT
content-type: font/woff2
content-length: 24800
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae357-60e0"
last-modified: Wed, 04 Aug 2021 18:58:31 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 83221
accept-ranges: bytes
server: cloudflare
cf-ray: 79350c685bef1c0a-OSL
X-Firefox-Spdy: h2
player.vimeo.com/api/player.js
162.159.138.60200 OK 6.3 kB URL HTTP/1.1 player.vimeo.com/api/player.js
IP 162.159.138.60:0
File type Unicode text, UTF-8 text, with very long lines (21087)
Hash be35514553399a516ec9a8a782341d76
cc471c8a2ad4a645656f72e0833a3cd1a9131b63
ab060007b859a933f8fb7bbc505c9c0a06eef5813ab909d9f09f9656c2d53505
GET /api/player.js HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 18:39:15 GMT
Content-Type: application/javascript;charset=utf-8
Content-Length: 6272
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: default-src 'none'; style-src 'unsafe-inline'
x-content-type-options: nosniff
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Thu, 02 Feb 2023 18:41:49 GMT
x-host: player-657676658b-r7pmf
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-3
x-backend-proxy: playproxy4
x-bapp-server: player-657676658b-r7pmf
Accept-Ranges: bytes
Age: 1645
X-Served-By: cache-cph2320046-CPH
X-Cache: HIT
X-Cache-Hits: 3985
X-Timer: S1675363155.254517,VS0,VE0
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=CV1s1lk43lBMNkbmyPjAipXEMqC7Ro44VymGVlHv4t0-1675363155-0-AWRk3oygVhrHBf/wd9LhtFBWzkuJu5Vzpp4RQ88VL5ifANbxLd2oQiZgrvC4dODmB9WVqBJ4g9gDKxVCgJYEugs=; path=/; expires=Thu, 02-Feb-23 19:09:15 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 79350c683dcc1c02-OSL
munchkin.marketo.net/munchkin.js
88.221.99.189200 OK 728 B URL HTTP/1.1 munchkin.marketo.net/munchkin.js
IP 88.221.99.189:0
File type ASCII text, with very long lines (521)
Hash 51a92d8c69733d719447dea0416ed039
69f4c1e0b7ebba812bc096708d57627927dff265
cb483c0ea4012ac512bcba6204b37622b388c1aefd4ae9028f60abb965f23d29
GET /munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "92b41a298690c047b0c4602dd843cba4:1662686319.691662"
Last-Modified: Fri, 09 Sep 2022 01:18:39 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 02 Feb 2023 18:39:15 GMT
Content-Length: 728
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 17:44:08 GMT
expires: Thu, 02 Feb 2023 19:44:08 GMT
cache-control: public, max-age=7200
age: 3307
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s.pinimg.com/ct/core.js
151.101.84.84200 OK 1.1 kB IP 151.101.84.84:0
File type ASCII text, with very long lines (1146), with no line terminators
Hash 91c4ea42bc7f1df938d8cd8de8d598db
ccecbe4405d83510ca1a6291c374ea8ab1da33d9
aacfea800a59766fdd3672fad8e5eba13abae2dab105014fc9214cb0c1409925
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "91c4ea42bc7f1df938d8cd8de8d598db"
content-type: application/javascript
fastly-restarts: 1
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Accept-Encoding, Origin
cache-control: max-age=7200
date: Thu, 02 Feb 2023 18:39:15 GMT
content-length: 1146
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 3wMGvX1CU0j86yBTTvmZuRG5KsimxMLRjTT3BEFCFBMnCOV44NWcha48+FkKWChU9XruXs5lUM6pXwDA17yocQ==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1904183273
date: Thu, 02 Feb 2023 18:39:15 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 12 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3A97C834DDB94B318EFDDDCD3214D99A Ref B: OSL30EDGE0220 Ref C: 2023-02-02T18:39:15Z
date: Thu, 02 Feb 2023 18:39:14 GMT
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2
104.18.23.52200 OK 20 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 19784, version 331.-31196\012- data
Hash c7682b8035fc1d1672d6455631813794
9e2955e5e55b3073e229c218724406425862d4a1
1b50aa1d36ea249991fb44f8f6ad2aa74fe360df9cc04c564b5edf3b053b739c
GET /releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:15 GMT
content-type: font/woff2
content-length: 19784
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35f-4d48"
last-modified: Wed, 04 Aug 2021 18:58:39 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 83036
accept-ranges: bytes
server: cloudflare
cf-ray: 79350c689c3e1c0a-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5524
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:15 GMT
Last-Modified: Thu, 02 Feb 2023 17:07:11 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6cd9c6aa6ae78cfd27a4a764ddbf9bd4
fca728aa38a8f39d16a6b5d7adf7396e5e63afe2
07ab2d406d329e2164caf162517c6bcbd06274d1d2a55a9ce7c129fc37c6d3d8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2540
Cache-Control: max-age=115445
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:15 GMT
Etag: "63db195c-1d7"
Expires: Sat, 04 Feb 2023 02:43:20 GMT
Last-Modified: Thu, 02 Feb 2023 02:01:00 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.godaddy.com/
192.124.249.23200 OK 1.7 kB IP 192.124.249.23:0
Hash d4d672f5b7be55bda852078dbc8156ae
045067a89eafbf7fb943e7d090772429aab4be08
e39dac817d9ae0ec8640513b810b0a769b31ea391bd35c23902e0b7aea997fc7
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 68
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 18:39:15 GMT
Content-Type: application/ocsp-response
Content-Length: 1731
Connection: keep-alive
X-Sucuri-ID: 15023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 20:23:17 GMT
Expires: Thu, 02 Feb 2023 20:23:17 GMT
ETag: "045067a89eafbf7fb943e7d090772429aab4be08"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
sjrtp-cdn.marketo.com/rtp-api/v1/rtp.js?aid=blackbaud1
104.85.188.19200 OK 0 B URL HTTP/1.1 sjrtp-cdn.marketo.com/rtp-api/v1/rtp.js?aid=blackbaud1
IP 104.85.188.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtp-api/v1/rtp.js?aid=blackbaud1 HTTP/1.1
Host: sjrtp-cdn.marketo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Jetty(9.4.45.v20220203)
Content-Type: application/x-javascript; charset=UTF-8
Content-Length: 0
Strict-Transport-Security: max-age=63113904
Date: Thu, 02 Feb 2023 18:39:15 GMT
Connection: keep-alive
obs.healthroundprince.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136debc433e9468f989225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5d16856e2717071a10acf9f29f671d82d08d062f694dff2a70528f3a8b37c3556257259501545833005ec7bb394f77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c224d710e58a58b2a617c05f2a94c7a8da3a62bc2e50973192bf9a6ac93c972b8cfc248b5038e523b64cbef86a7b376cccee879cf774a91bac3330743b1342dfec90a37b185e427d043bd05e7c7079952cacd60876564d4dd728b3ace8db5aadcacfc166ca36df2e2a9780d39c7d26186f106ee2a055e921f09d0ddaccbd1f58226c326d5bfbb856fe8386c228b452493929a59288fef7ca80ae9d75a8078927c414446cf3dba0183eefd2f9c80389721d680dfcb71a9584961f0511f526f745dcba06ea349d5cb8823a98821ea8623e783e4f26b88bcf10057718bf94863daba05570dffedf36cbf4fc9b502b0bd77e13fbb67ca11cf698efc689b4f3c87fdca396063721f385f0905a0e0907e9057e606111d3bf2b74edc840a5fecb2cdc4c37edeffb6ee8cfab3e30e1e2ef1439aa41b3bd516275982214f7b7ee467bd2541d0e1d330d2359621cbeb7fdfa41fc72a49787753384ac39ef6d12e2547860a12c4a085e2e594177ccaa2b76f8bdd6f698e80616030accf9d2f75a52d97428d06f17dc700d1a310e4b933e18795d498477ef2e33d67ef6ab4d9f5f2428e6626171b956e4455b2a55c8ee416d4e7c29108abc4d3480f4630e84aca60f147ae932ad36b17334b287c61e05c89843053ba6ec8a5eb55b3a533cc3535ad182d2ec3bdb74a32fc6de7ca558353230a58bd252d84a8d26bcd543f92870da0bd95a7ea45be191d7163ae285d249e82104ef87cb1eccb46e2cffe4c1925b060201416965429a6ebb24742cb3b2f84858d179888f99a14&cri=B570ZdHU6I&ts=528&cb=1675363182598
54.83.110.109200 OK 43 B URL HTTP/2 obs.healthroundprince.com/tracker/tc_imp.gif?e=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&cri=B570ZdHU6I&ts=528&cb=1675363182598
IP 54.83.110.109:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=37dfbd8ee84e00136debc433e9468f989225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5d16856e2717071a10acf9f29f671d82d08d062f694dff2a70528f3a8b37c3556257259501545833005ec7bb394f77be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c224d710e58a58b2a617c05f2a94c7a8da3a62bc2e50973192bf9a6ac93c972b8cfc248b5038e523b64cbef86a7b376cccee879cf774a91bac3330743b1342dfec90a37b185e427d043bd05e7c7079952cacd60876564d4dd728b3ace8db5aadcacfc166ca36df2e2a9780d39c7d26186f106ee2a055e921f09d0ddaccbd1f58226c326d5bfbb856fe8386c228b452493929a59288fef7ca80ae9d75a8078927c414446cf3dba0183eefd2f9c80389721d680dfcb71a9584961f0511f526f745dcba06ea349d5cb8823a98821ea8623e783e4f26b88bcf10057718bf94863daba05570dffedf36cbf4fc9b502b0bd77e13fbb67ca11cf698efc689b4f3c87fdca396063721f385f0905a0e0907e9057e606111d3bf2b74edc840a5fecb2cdc4c37edeffb6ee8cfab3e30e1e2ef1439aa41b3bd516275982214f7b7ee467bd2541d0e1d330d2359621cbeb7fdfa41fc72a49787753384ac39ef6d12e2547860a12c4a085e2e594177ccaa2b76f8bdd6f698e80616030accf9d2f75a52d97428d06f17dc700d1a310e4b933e18795d498477ef2e33d67ef6ab4d9f5f2428e6626171b956e4455b2a55c8ee416d4e7c29108abc4d3480f4630e84aca60f147ae932ad36b17334b287c61e05c89843053ba6ec8a5eb55b3a533cc3535ad182d2ec3bdb74a32fc6de7ca558353230a58bd252d84a8d26bcd543f92870da0bd95a7ea45be191d7163ae285d249e82104ef87cb1eccb46e2cffe4c1925b060201416965429a6ebb24742cb3b2f84858d179888f99a14&cri=B570ZdHU6I&ts=528&cb=1675363182598 HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: cg_uuid=d0c413ff1b7f81de4abb66cd764115b0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Thu, 02 Feb 2023 18:39:15 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
143.204.55.20200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
IP 143.204.55.20:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 8665e233ef6caaf010ca89793f27b6f8
5c593fa5f33e55b3081308b43e6e801b56c047f7
435a3ca7c1c49cbfac193647d056e46217e5c3f9c65c354974ad7acdfb8925ac
GET /box-2722367854ce9702c28ea74c51e2a23f.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "8665e233ef6caaf010ca89793f27b6f8"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -79A8Ul54Tj5uI1z9X5uRfUEh2GVkd2xeqIBPiF3jPq-raa2eKLtXQ==
age: 268389
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-W25X31S350>m=2oe210&_p=373746051&cid=94705511.1675363182&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%20Economics%20for%20Middle%20School&sid=1675363182&sct=1&seg=0&dt=SmartEconomics%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.25
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-W25X31S350>m=2oe210&_p=373746051&cid=94705511.1675363182&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%20Economics%20for%20Middle%20School&sid=1675363182&sct=1&seg=0&dt=SmartEconomics%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.25
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-W25X31S350>m=2oe210&_p=373746051&cid=94705511.1675363182&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%20Economics%20for%20Middle%20School&sid=1675363182&sct=1&seg=0&dt=SmartEconomics%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.25 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://everfi.com
date: Thu, 02 Feb 2023 18:39:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blackbaud.demdex.net/dest5.html?d_nsid=0
34.254.165.240200 OK 2.8 kB URL HTTP/1.1 blackbaud.demdex.net/dest5.html?d_nsid=0
IP 34.254.165.240:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: blackbaud.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Thu, 2 Feb 2023 18:39:15 GMT
DCS: dcs-prod-irl1-1-v045-024ef1325.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Fri, 28 Oct 2022 11:02:56 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: 4kGhC4esRu8=
Content-Length: 2791
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0693dc7da86b7adac34c3cf3e405d3e5
5c703d68419dd4cb2d6f0674cd480d7abbdcdbea
557e672b9d07508d937f7fbedc24e135d439742c9f838ec57077c93a1109d2eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=98851
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:15 GMT
Etag: "63dae276-1d7"
Expires: Fri, 03 Feb 2023 22:06:46 GMT
Last-Modified: Wed, 01 Feb 2023 22:06:46 GMT
Server: nginx
Content-Length: 471
metrics.blackbaud.com/b/ss/blackbaud-global-prod/1/JS-2.22.3/s63123436421530?AQB=1&ndh=1&pf=1&t=2%2F1%2F2023%2018%3A39%3A42%204%200&sdid=49AD09921C177F6E-0F4ACF24760EDDEA&mid=11056001589340131213148967459703779447&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Asmarteconomics&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12Feb2_SmartEconomics_Announcement%7CMarketingCloud%7Cemail%7Cno%20keyword%7CSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&events=event12%3D2155&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&v4=everfi%3Acourses%3Ak-12%3Asmarteconomics&v5=not%20available&v6=en-US&v7=courses&v9=2155&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Asmarteconomics&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1
13.37.25.97200 OK 43 B URL HTTP/2 metrics.blackbaud.com/b/ss/blackbaud-global-prod/1/JS-2.22.3/s63123436421530?AQB=1&ndh=1&pf=1&t=2%2F1%2F2023%2018%3A39%3A42%204%200&sdid=49AD09921C177F6E-0F4ACF24760EDDEA&mid=11056001589340131213148967459703779447&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Asmarteconomics&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12Feb2_SmartEconomics_Announcement%7CMarketingCloud%7Cemail%7Cno%20keyword%7CSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&events=event12%3D2155&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&v4=everfi%3Acourses%3Ak-12%3Asmarteconomics&v5=not%20available&v6=en-US&v7=courses&v9=2155&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Asmarteconomics&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1
IP 13.37.25.97:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/blackbaud-global-prod/1/JS-2.22.3/s63123436421530?AQB=1&ndh=1&pf=1&t=2%2F1%2F2023%2018%3A39%3A42%204%200&sdid=49AD09921C177F6E-0F4ACF24760EDDEA&mid=11056001589340131213148967459703779447&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Asmarteconomics&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12Feb2_SmartEconomics_Announcement%7CMarketingCloud%7Cemail%7Cno%20keyword%7CSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&events=event12%3D2155&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&v4=everfi%3Acourses%3Ak-12%3Asmarteconomics&v5=not%20available&v6=en-US&v7=courses&v9=2155&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Asmarteconomics&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1 HTTP/1.1
Host: metrics.blackbaud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Thu, 02 Feb 2023 18:39:15 GMT
expires: Wed, 01 Feb 2023 18:39:15 GMT
last-modified: Fri, 03 Feb 2023 18:39:15 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3597814979994091520-4619738298991886389
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
munchkin.marketo.net/162/munchkin.js
88.221.99.189200 OK 4.7 kB URL HTTP/1.1 munchkin.marketo.net/162/munchkin.js
IP 88.221.99.189:0
File type ASCII text, with very long lines (606)
Hash 3e9baed982956735f6e0a0e756d97ed9
9223be6a494a10959101a7942419df7b05b84d73
930a508ed0ea6b4861d19c0738360182514010913c4ebfe9352064ae5006f8a1
GET /162/munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "75daf56f6191efe42577301908659c29:1656637152.894482"
Last-Modified: Fri, 01 Jul 2022 00:59:12 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=8640000
Expires: Sat, 13 May 2023 18:39:15 GMT
Date: Thu, 02 Feb 2023 18:39:15 GMT
Content-Length: 4677
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
bat.bing.com/action/0?ti=25002257&tm=gtm002&Ver=2&mid=8a19c8e8-729b-4629-b2ee-363546027e74&sid=f5421ff0a32811ed8cb33716f1b06679&vid=f5422330a32811ed9ca1ff90b677f8cd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SmartEconomics%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&r=<=2617&evt=pageLoad&sv=1&rn=547725
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25002257&tm=gtm002&Ver=2&mid=8a19c8e8-729b-4629-b2ee-363546027e74&sid=f5421ff0a32811ed8cb33716f1b06679&vid=f5422330a32811ed9ca1ff90b677f8cd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SmartEconomics%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&r=<=2617&evt=pageLoad&sv=1&rn=547725
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25002257&tm=gtm002&Ver=2&mid=8a19c8e8-729b-4629-b2ee-363546027e74&sid=f5421ff0a32811ed8cb33716f1b06679&vid=f5422330a32811ed9ca1ff90b677f8cd&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SmartEconomics%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&r=<=2617&evt=pageLoad&sv=1&rn=547725 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1193F8CAABAF6BB10F15EA66AA5A6A84; domain=.bing.com; expires=Tue, 27-Feb-2024 18:39:15 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4CE868B138E44A9BBAEC183CAD8AE41E Ref B: OSL30EDGE0220 Ref C: 2023-02-02T18:39:15Z
date: Thu, 02 Feb 2023 18:39:14 GMT
X-Firefox-Spdy: h2
script.hotjar.com/modules.4b160a4831adaf5337e6.js
54.230.111.93200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.4b160a4831adaf5337e6.js
IP 54.230.111.93:0
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 3315b6999637291711ab85ba678211fa
d1bba723aa49e6276dfdb0f1313a9bf0b64be153
b3bd4f702044ae91c9227ce2d5c8411d3fec3abb82c9c1b7a9b69d2011c520e5
GET /modules.4b160a4831adaf5337e6.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68316
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "3315b6999637291711ab85ba678211fa"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G9R_-Y0XGVS9z5d7xittEAg0uv6fPIZamq0RzVgktiMnep709mMqEA==
age: 268389
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=25022015&tm=gtm002&Ver=2&mid=66fc78b6-1ff4-491b-a335-1470127db463&sid=f5421ff0a32811ed8cb33716f1b06679&vid=f5422330a32811ed9ca1ff90b677f8cd&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SmartEconomics%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&r=<=2617&evt=pageLoad&sv=1&rn=4720
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25022015&tm=gtm002&Ver=2&mid=66fc78b6-1ff4-491b-a335-1470127db463&sid=f5421ff0a32811ed8cb33716f1b06679&vid=f5422330a32811ed9ca1ff90b677f8cd&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SmartEconomics%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&r=<=2617&evt=pageLoad&sv=1&rn=4720
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25022015&tm=gtm002&Ver=2&mid=66fc78b6-1ff4-491b-a335-1470127db463&sid=f5421ff0a32811ed8cb33716f1b06679&vid=f5422330a32811ed9ca1ff90b677f8cd&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SmartEconomics%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&r=<=2617&evt=pageLoad&sv=1&rn=4720 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=10A8835E69766A6D05E191F268836B0F; domain=.bing.com; expires=Tue, 27-Feb-2024 18:39:15 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A7B552B1EE864A48AF49EDB6794A5B97 Ref B: OSL30EDGE0220 Ref C: 2023-02-02T18:39:15Z
date: Thu, 02 Feb 2023 18:39:14 GMT
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2584703.js?sv=7
54.230.111.8200 OK 4.1 kB URL HTTP/2 static.hotjar.com/c/hotjar-2584703.js?sv=7
IP 54.230.111.8:0
File type ASCII text, with very long lines (7535)
Hash 5518efc1d76afa282a2fc56907366588
6e00c736734359cf647b507301be4938687f88c2
bb000d9e91f3ea85496fa3e840af935494e706fb9a298baa36d9967fa6dcce8a
GET /c/hotjar-2584703.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Thu, 02 Feb 2023 18:39:15 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/c52f8358a56048915d8f8be8333a23a8
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MMLtMSYMQGDfbx4rzK7KBI6d7uZaf60MyqunP4_r9JiekevOcxubsA==
X-Firefox-Spdy: h2
bat.bing.com/p/action/25022015.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25022015.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25022015.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2E25EFD04A604DE2A19B497B6DD86357 Ref B: OSL30EDGE0220 Ref C: 2023-02-02T18:39:15Z
date: Thu, 02 Feb 2023 18:39:14 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash b8d97f753e14c9022c36e1d774a6835a
c155e767aecd98f93ce58ef12a6cfd60bfc963f3
c27aff00106a12833354c77c020da51c57886f6cabadd12ee0b0ebb6ce8a6c90
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 18:39:16 GMT
Last-Modified: Thu, 02 Feb 2023 16:50:32 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _YC7pmFRiMcDAr0mGIJsNL0NdN7a51YoESOSxDbb-j9aT9sHSswaCA==
Age: 6524
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 8c94c7e326283ffcf1579151b5f5091d
9d17acbbdac6431aa5f55ade4991614cfb404bf3
3b15a0cee8a7848e9ba91bf6aefdc79419d1f0502930e1206c5705b7c2ba1bc2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 18:39:16 GMT
Last-Modified: Thu, 02 Feb 2023 17:05:17 GMT
Server: ECS (nyb/1D04)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6YjxNUrSBWf2clvbC463ODNc9fV6HGzt7DMFGzOoOtAbOtUVF0XGIw==
Age: 5640
px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675363182640&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675363182640&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=285700&time=1675363182640&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675363182640%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsmarteconomics%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12Feb2_SmartEconomics_Announcement%2526utm_content%253DSmartEconomics%253A%252BEconomics%252Bfor%252BMiddle%252BSchool%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQI5XszCW3GSqQAAAYYTbQARLkJxvc5amc0Huii81mrlPVib2SEDF8PoSYID8VQttx3IgqpL37M6oQ; Max-Age=2592000; Expires=Sat, 04 Mar 2023 18:39:15 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQLbtk8GEIeOZAAAAYYTbQARWmDuVnQ2HLPeZ7RPGAzCdVAHGiLCe5qzyZ4RAAMEdjSugstAFEAF-7zbGmopaw; Max-Age=2592000; Expires=Sat, 04 Mar 2023 18:39:15 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&78984113-4a02-4a21-8f7d-52805bbf8ef6"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 02-Feb-2024 18:39:15 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2426:u=1:x=1:i=1675363155:t=1675449555:v=2:sig=AQHceNsldYMgUmjK92qU_7AM9SllznIl"; Expires=Fri, 03 Feb 2023 18:39:15 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXzu+HILptoeICxymIy0w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2A6CAE291B114CE285B915CFA69FEC16 Ref B: OSL30EDGE0407 Ref C: 2023-02-02T18:39:15Z
date: Thu, 02 Feb 2023 18:39:15 GMT
content-length: 0
X-Firefox-Spdy: h2
dx.mountain.com/spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&cb=95545953915527340term=value
44.240.152.58200 OK 3.9 kB URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&cb=95545953915527340term=value
IP 44.240.152.58:0
File type ASCII text, with very long lines (482)
Hash c8126a7c14d392af919493f2ba309314
3c5f0e441c7c28528704ccc19e8c69899de5c9e2
7ad0db30c68e7b342f88c4ec2d8012f16a4044f8b08b5cc21bd7362d379e2b7f
GET /spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&cb=95545953915527340term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Thu, 02 Feb 2023 18:39:15 GMT
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
transfer-encoding: chunked
match.prod.bidr.io/cookie-sync/demandbase
52.211.150.89303 See Other 0 B URL HTTP/1.1 match.prod.bidr.io/cookie-sync/demandbase
IP 52.211.150.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync/demandbase HTTP/1.1
Host: match.prod.bidr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Thu, 02 Feb 2023 18:39:16 GMT
location: https://match.prod.bidr.io/cookie-sync/demandbase?_bee_ppp=1
Server: gunicorn
set-cookie: checkForPermission=ok; Domain=bidr.io; expires=Thu, 02 Feb 2023 18:49:16 GMT; Path=/; SameSite=None; Secure
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive
cm.everesttech.net/cm/dd?d_uuid=03235809475749021622348934435694553380
18.201.4.185302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=03235809475749021622348934435694553380
IP 18.201.4.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=03235809475749021622348934435694553380 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Thu, 02 Feb 2023 18:39:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y9wDVAAAAJpxVgNx; Domain=.everesttech.net; Expires=Fri, 02-Feb-2024 18:39:16 GMT; Path=/
everest_session_v2=Y9wDVAAAAJpxVwNx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Y9wDVAAAAJpxVgNx
Server: AMO-cookiemap/1.1
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 18:39:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=500018,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79350c6ca87f0b61-OSL
id.rlcdn.com/464526.gif
35.244.174.68451 Unavailable For Legal Reasons 0 B IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /464526.gif HTTP/1.1
Host: id.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Thu, 02 Feb 2023 18:39:16 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=true&session_token=2df13346-a832-4be3-90da-1199d61fcbe2&token=7b73f9362c0ba1bd&visitor_token=6ad31905-e4da-4469-9007-f08194915f40
151.101.66.217200 OK 355 B URL HTTP/2 user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=true&session_token=2df13346-a832-4be3-90da-1199d61fcbe2&token=7b73f9362c0ba1bd&visitor_token=6ad31905-e4da-4469-9007-f08194915f40
IP 151.101.66.217:0
File type JSON data\012- , ASCII text, with very long lines (480), with no line terminators
Hash bc160318c3b1c2940ff2b07cb4b89c0e
867e3c55eb44439f6e09432063df70069cac1020
4ab3d1ab368e3d0db0aa96ea3cf2f45aa8b1c81bd94bbab18a16d83f6bdca106
GET /personalize/user_data/16919262ebbbde25.json?async=true&session_token=2df13346-a832-4be3-90da-1199d61fcbe2&token=7b73f9362c0ba1bd&visitor_token=6ad31905-e4da-4469-9007-f08194915f40 HTTP/1.1
Host: user-data.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: x-cache, x-cache-hits, age
access-control-max-age: 7200
cache-control: no-store
pragma: no-cache
x-visitor-token: 6ad31905-e4da-4469-9007-f08194915f40
x-async-user-data: true
etag: W/"f21f216d33ab693668a18762ae338a9a"
x-request-id: 8315bcc8-4148-4148-93aa-ae2a394a2c38
x-runtime: 0.325544
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
date: Thu, 02 Feb 2023 18:39:16 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1677-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675363155.484315,VS0,VE701
vary: X-Visitor-Token,X-Profile-Token,Fastly-Client-Ip,X-Async-User-Data,Origin,Accept-Encoding
x-connection-speed: broadband
x-continent-code: EU
x-country-code: NO
x-edge-datacenter: BMA
x-edge-region: EU-East
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 355
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 589912fa6ba849574a149a93c384c4ba
e176bd5d7d5dad6d93a85cf758ea3aaca9407126
96e239da049374c25039016840ce4d86d6c88160af81a1ca9a676afc900ff5a4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133369
Date: Thu, 02 Feb 2023 18:39:16 GMT
Etag: "63db6291-1d7"
Expires: Sat, 04 Feb 2023 07:42:05 GMT
Last-Modified: Thu, 02 Feb 2023 07:13:21 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ltIroRZiOUs00Cdk7ke32O62RIcE9gxc0WynoFSUv08LWyC4uQ8lXg==
Age: 1724
logx.optimizely.com/v1/events
54.167.180.110204 No Content 0 B URL HTTP/1.1 logx.optimizely.com/v1/events
IP 54.167.180.110:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/events HTTP/1.1
Host: logx.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 814
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://everfi.com
Access-Control-Expose-Headers: X-Results-Data-Source
Content-Type: text/plain
Date: Thu, 02 Feb 2023 18:39:16 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: c1dd98c0-dda5-443a-b97e-93dd579cc4fd
Connection: keep-alive
match.prod.bidr.io/cookie-sync/demandbase?_bee_ppp=1
52.211.150.89303 See Other 0 B URL HTTP/1.1 match.prod.bidr.io/cookie-sync/demandbase?_bee_ppp=1
IP 52.211.150.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync/demandbase?_bee_ppp=1 HTTP/1.1
Host: match.prod.bidr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Thu, 02 Feb 2023 18:39:16 GMT
location: https://segments.company-target.com/log?vendor=choca&user_id=
Server: gunicorn
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/ibs:dpid=411&dpuuid=Y9wDVAAAAJpxVgNx
52.51.133.63302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=Y9wDVAAAAJpxVgNx
IP 52.51.133.63:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=Y9wDVAAAAJpxVgNx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-061dae83e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y9wDVAAAAJpxVgNx
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=01203482502953214482764164445853569594; Max-Age=15552000; Expires=Tue, 01 Aug 2023 18:39:16 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: 3gMVDawCQNc=
Content-Length: 0
Connection: keep-alive
www.facebook.com/tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&rl=&if=false&ts=1675363183390&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&cs_est=true&fbp=fb.1.1675363183389.1732314772&it=1675363182700&coo=false&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&rl=&if=false&ts=1675363183390&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&cs_est=true&fbp=fb.1.1675363183389.1732314772&it=1675363182700&coo=false&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&rl=&if=false&ts=1675363183390&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&cs_est=true&fbp=fb.1.1675363183389.1732314772&it=1675363182700&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 18:39:16 GMT
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675363183212
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675363183212
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675363183212 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 4
referrer-policy: origin
x-pinterest-rid: 1624801616553566
date: Thu, 02 Feb 2023 18:39:16 GMT
akamai-grn: 0.274f2417.1675363156.6eb8e686
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675363183209&dep=2%2CPAGE_LOAD
23.38.200.197200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675363183209&dep=2%2CPAGE_LOAD
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (534), with no line terminators
Hash 6e63eb6af30db692485439f6687cfd3e
8b369c1b024c90a5646b8f7d36ff73e71a949bcd
a35f431d3eec1e88e5356fd6485190f4c4213276c1e046b072bfedb4f00dab19
GET /user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675363183209&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU9XRXpaalZpTVRJdFpHWm1PUzAwTW1Vd0xUZ3lNV0V0WldOaE5UaGtNemc1Tmpjeg
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://everfi.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 2117801000756966
date: Thu, 02 Feb 2023 18:39:16 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675363156.6eb8e6d2
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675363183210&dep=5%2CEVENT_TAGS_ABSENT
23.38.200.197200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675363183210&dep=5%2CEVENT_TAGS_ABSENT
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (534), with no line terminators
Hash 6e63eb6af30db692485439f6687cfd3e
8b369c1b024c90a5646b8f7d36ff73e71a949bcd
a35f431d3eec1e88e5356fd6485190f4c4213276c1e046b072bfedb4f00dab19
GET /user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675363183210&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU16Um1PVGRtTXpndFlqTXlPQzAwWWpjMkxUa3pZV1V0T1daaE1ETm1aR0ptTXpRMA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://everfi.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 1775334778627673
date: Thu, 02 Feb 2023 18:39:16 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675363156.6eb8e71c
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-68235542-1&cid=94705511.1675363182&jid=375079417&gjid=2012545433&_gid=132168042.1675363183&_u=YADAAUAAAAAAACgEK~&z=1720596114
64.233.165.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-68235542-1&cid=94705511.1675363182&jid=375079417&gjid=2012545433&_gid=132168042.1675363183&_u=YADAAUAAAAAAACgEK~&z=1720596114
IP 64.233.165.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-68235542-1&cid=94705511.1675363182&jid=375079417&gjid=2012545433&_gid=132168042.1675363183&_u=YADAAUAAAAAAACgEK~&z=1720596114 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://everfi.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 18:39:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 18:39:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=500018,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79350c6e5a820b61-OSL
obs.healthroundprince.com/mon
54.83.110.109200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP 54.83.110.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1680
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=d0c413ff1b7f81de4abb66cd764115b0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Thu, 02 Feb 2023 18:39:16 GMT
content-length: 0
X-Firefox-Spdy: h2
api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&page_title=SmartEconomics%20%7C%20EVERFI
54.230.111.101200 OK 641 B URL HTTP/2 api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&page_title=SmartEconomics%20%7C%20EVERFI
IP 54.230.111.101:0
File type JSON data\012- , ASCII text, with very long lines (3348), with no line terminators
Hash dd3369bd7efad53a269ce17baad4c67f
8aed4fe22139e1a37d2171fbd4aea9bc89f60f30
e6c354da522af72a1fa019843de6f95fe26184a5556b0fd4f74640f82d8007b8
POST /api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&page_title=SmartEconomics%20%7C%20EVERFI HTTP/1.1
Host: api.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 63
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Thu, 02 Feb 2023 18:39:15 GMT
server: nginx
access-control-allow-origin: https://everfi.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
api-version: v2
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
identification-source: CENTRAL
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Wed, 01 Feb 2023 18:39:15 GMT
vary: Accept-Encoding, Origin
content-encoding: gzip
request-id: 58750f5f-b566-4df5-bc3e-473e04d3b34a
x-cache: Miss from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rA2k1iMO0nLudtylYOc-m6cIepS5ec8J0LdXtlUwVYzcUS1e2XP6AA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675363182640%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsmarteconomics%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12Feb2_SmartEconomics_Announcement%2526utm_content%253DSmartEconomics%253A%252BEconomics%252Bfor%252BMiddle%252BSchool%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675363182640%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsmarteconomics%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12Feb2_SmartEconomics_Announcement%2526utm_content%253DSmartEconomics%253A%252BEconomics%252Bfor%252BMiddle%252BSchool%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675363182640%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsmarteconomics%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12Feb2_SmartEconomics_Announcement%2526utm_content%253DSmartEconomics%253A%252BEconomics%252Bfor%252BMiddle%252BSchool%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675363182640&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&6736a920-91d2-4cdb-86b9-17628de4ca35"; Domain=.linkedin.com; Expires=Fri, 02-Feb-2024 18:39:16 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20230202183916a816dbd9-3b3c-46f6-8342-e588c0f35d5bAQH8vcmgnXs0mORfigFDJnO5iWBCtFje"; Domain=.www.linkedin.com; Expires=Fri, 02-Feb-2024 18:39:16 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzUzNjMxNTY7MjswMjGRiouOKhAP6tRKYsPFgWcjGtin4QL6vWaM+NH0evgwlg==; Domain=.linkedin.com; Expires=Tue, 01 Aug 2023 18:39:16 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2426:u=1:x=1:i=1675363156:t=1675449556:v=2:sig=AQEVbRKxqpdedsuGAYwEeBgh1WKJhPTr"; Expires=Fri, 03 Feb 2023 18:39:16 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXzu+HOt7Os/eBM4Rnf1Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 6B4D825E028749A98D898AA0CE1B4AF9 Ref B: OSL30EDGE0407 Ref C: 2023-02-02T18:39:16Z
date: Thu, 02 Feb 2023 18:39:16 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 280141043257105b3595ff426d2273a0
1bf9128e4aa4c785f77853a5af50c18c1aee9485
e6da03e355cfad082f0fcee6351561ebe402304c35a327d287251229274e5470
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161974
Date: Thu, 02 Feb 2023 18:39:16 GMT
Etag: "63dbd5d6-1d7"
Expires: Sat, 04 Feb 2023 15:38:50 GMT
Last-Modified: Thu, 02 Feb 2023 15:25:10 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: b1bSEr1oFJYGk101tiPoKKTMC-S9Rl9d3EikCPsAAl1vYVIbZPCi2Q==
Age: 820
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8cdebd1ec6c0bfe7bdd9ea19995216a5
4edc89e604e7909dfbb161033a885fcdff88867b
1d40003c572ee7cbc589a38ddc2319da86d97bf6f8f2073a982c435e4478f156
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2918
Cache-Control: max-age=155053
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:16 GMT
Etag: "63dbb29b-1d7"
Expires: Sat, 04 Feb 2023 13:43:29 GMT
Last-Modified: Thu, 02 Feb 2023 12:54:51 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y9wDVAAAAJpxVgNx
52.51.133.63200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y9wDVAAAAJpxVgNx
IP 52.51.133.63:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y9wDVAAAAJpxVgNx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v045-0333db6ef.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: whzWpeGlSwo=
Content-Length: 59
Connection: keep-alive
ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675363183771&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%2C%22pin_unauth%22%3A%22dWlkPU9XRXpaalZpTVRJdFpHWm1PUzAwTW1Vd0xUZ3lNV0V0WldOaE5UaGtNemc1Tmpjeg%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675363183771&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%2C%22pin_unauth%22%3A%22dWlkPU9XRXpaalZpTVRJdFpHWm1PUzAwTW1Vd0xUZ3lNV0V0WldOaE5UaGtNemc1Tmpjeg%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675363183771&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%2C%22pin_unauth%22%3A%22dWlkPU9XRXpaalZpTVRJdFpHWm1PUzAwTW1Vd0xUZ3lNV0V0WldOaE5UaGtNemc1Tmpjeg%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1240853324635946
date: Thu, 02 Feb 2023 18:39:16 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZlWEgybTNOZ2tHeXlWa2t1SldCMkt6MHg0TUdiS0x4dVZKQTNVeWhFVGtoSFlpa3ZEeUpzK3E0V3pTTVNRNWFNY2EvcHBOUzN5bUkrZGxMaXliWjVKRHY5RHBHTkowS1JabHZVYTQyejJKYz0mejVPWDBVZjFGM2pjazM5aVJLdDhzTUxPTkQwPQ=="; Expires=Fri, 02 Feb 2024 18:39:16 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1675363156.6eb8ef43
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=94705511.1675363182&jid=375079417&_u=YADAAUAAAAAAACgEK~&z=1637220873
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=94705511.1675363182&jid=375079417&_u=YADAAUAAAAAAACgEK~&z=1637220873
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=94705511.1675363182&jid=375079417&_u=YADAAUAAAAAAACgEK~&z=1637220873 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 18:39:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=94705511.1675363182&jid=375079417&_u=YADAAUAAAAAAACgEK~&z=1637220873
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=94705511.1675363182&jid=375079417&_u=YADAAUAAAAAAACgEK~&z=1637220873
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=94705511.1675363182&jid=375079417&_u=YADAAUAAAAAAACgEK~&z=1637220873 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 18:39:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675363182640&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675363182640&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=285700&time=1675363182640&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&5acf3a84-2d19-4793-8ee5-9b15930103dc"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 02-Feb-2024 18:39:16 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675363156:t=1675449556:v=2:sig=AQEvC75uSPpMwLnBM4enUprIYahVR3QF"; Expires=Fri, 03 Feb 2023 18:39:16 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzu+HSKQXIIZ1WyQ44ww==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A60BF6E650FB43DFB6EE49ED8570F127 Ref B: OSL30EDGE0407 Ref C: 2023-02-02T18:39:16Z
date: Thu, 02 Feb 2023 18:39:16 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
segments.company-target.com/log?vendor=choca&user_id=
54.230.111.34303 See Other 0 B URL HTTP/1.1 segments.company-target.com/log?vendor=choca&user_id=
IP 54.230.111.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /log?vendor=choca&user_id= HTTP/1.1
Host: segments.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Content-Length: 0
Connection: keep-alive
Date: Thu, 02 Feb 2023 18:39:16 GMT
trace-id: c199cfbe8e05a8cf
Vary: Origin
Location: /validateCookie?vendor=choca&user_id=&verifyHash=6f61ca41794a9edda9f97ce4e2f4a21a60def1a3
Set-Cookie: tuuid=9cb52b1f-ab62-4687-a97d-f1769c54c38c; Max-Age=63072000; Expires=Sat, 01 Feb 2025 18:39:16 GMT; SameSite=None; Path=/; Domain=.company-target.com; Secure; HTTPOnly
tuuid_lu=1675363156; Max-Age=63072000; Expires=Sat, 01 Feb 2025 18:39:16 GMT; SameSite=None; Path=/; Domain=.company-target.com; Secure; HTTPOnly
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Yq0Kzl93_owMxeK192Izj3IVxxU9CrpsqTQXSoCijkLG05aNxGrFWA==
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 18:39:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 28936f063ca937e4fcdfe8cad09d71e1
8f96e3b4dd1d2d093c8a3871ba132872c59750b3
445dcde9b68e15a8753ba9da08a30e5d50eb60bf11683625c6c3dd3bf01b9f21
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 18:39:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 13:02:14 GMT
Expires: Mon, 06 Feb 2023 13:02:13 GMT
Etag: "8f96e3b4dd1d2d093c8a3871ba132872c59750b3"
Cache-Control: max-age=324776,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79350c6fbc6c0b61-OSL
410-ycz-984.mktoresp.com/webevents/visitWebPage?_mchNc=1675363183214&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675363183213-83471&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Fsmarteconomics%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=42915A04609D99C00A495C11%40AdobeOrg%3A6%3A11056001589340131213148967459703779447&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12Feb2_SmartEconomics_Announcement__-__utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool
192.28.147.68200 OK 28 B URL HTTP/1.1 410-ycz-984.mktoresp.com/webevents/visitWebPage?_mchNc=1675363183214&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675363183213-83471&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Fsmarteconomics%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=42915A04609D99C00A495C11%40AdobeOrg%3A6%3A11056001589340131213148967459703779447&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12Feb2_SmartEconomics_Announcement__-__utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool
IP 192.28.147.68:0
File type ASCII text, with no line terminators
Hash 9dafc521bd59955b4986f0fc3777f77a
5a572b4730d4a2bce2fa35597a0993c649f26c74
e4e90a7b8bacdfe395361149a9fd42f9192b68bdf1497e4454d0ab4c4917f746
POST /webevents/visitWebPage?_mchNc=1675363183214&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675363183213-83471&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Fsmarteconomics%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=42915A04609D99C00A495C11%40AdobeOrg%3A6%3A11056001589340131213148967459703779447&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12Feb2_SmartEconomics_Announcement__-__utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool HTTP/1.1
Host: 410-ycz-984.mktoresp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 02 Feb 2023 18:39:16 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Request-Id: 68650a15-a82c-48cf-a410-d7fced550f90
Content-Encoding: gzip
Access-Control-Allow-Origin: *
segments.company-target.com/validateCookie?vendor=choca&user_id=&verifyHash=6f61ca41794a9edda9f97ce4e2f4a21a60def1a3
54.230.111.34204 No Content 0 B URL HTTP/1.1 segments.company-target.com/validateCookie?vendor=choca&user_id=&verifyHash=6f61ca41794a9edda9f97ce4e2f4a21a60def1a3
IP 54.230.111.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /validateCookie?vendor=choca&user_id=&verifyHash=6f61ca41794a9edda9f97ce4e2f4a21a60def1a3 HTTP/1.1
Host: segments.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Connection: keep-alive
Date: Thu, 02 Feb 2023 18:39:16 GMT
trace-id: 08ca34f996c5bfd8
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CYqiDsMoRqvbn_v1T7l7jU_ZFdnJbROjnDvfxd3e6bexyyoZkG37Fw==
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash d7e53a44feeb5ecfcc2d01c718bb2e58
bc960411d596db6a1dd9b96905315214359c752c
ff695f61592e175fd3f4e409eb3b28f31b08f0fe50bb64d6ac3689a8727aaf14
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 02 Feb 2023 18:39:16 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 15023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 02 Feb 2023 04:30:40 GMT
Expires: Fri, 03 Feb 2023 04:30:40 GMT
ETag: "bc960411d596db6a1dd9b96905315214359c752c"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=94705511.1675363182&shpt=SmartEconomics%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%2294705511.1675363182%22%2C%22shpt%22%3A%22SmartEconomics%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675363182.1%22%2C%22dcm_gid%22%3A%22132168042.1675363183%22%2C%22ga_utm_campaign%22%3A%22K12Feb2_SmartEconomics_Announcement%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7C11056001589340131213148967459703779447%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675363182.1&dcm_gid=132168042.1675363183&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&cb=95545953915527340term%3Dvalue
52.42.124.195200 OK 1.3 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=94705511.1675363182&shpt=SmartEconomics%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%2294705511.1675363182%22%2C%22shpt%22%3A%22SmartEconomics%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675363182.1%22%2C%22dcm_gid%22%3A%22132168042.1675363183%22%2C%22ga_utm_campaign%22%3A%22K12Feb2_SmartEconomics_Announcement%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7C11056001589340131213148967459703779447%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675363182.1&dcm_gid=132168042.1675363183&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&cb=95545953915527340term%3Dvalue
IP 52.42.124.195:0
File type ASCII text, with very long lines (2493)
Hash 6a109a3fcd241673094fbe20f13a1174
8e7dc89a20ed36100838b635f50d702b2249aa11
020fb4f249c0ee5490bf0db0d89b24e5364ed31ac1ba2458dfc5465b8373526c
GET /st?ga_tracking_id=UA-68235542-1&ga_client_id=94705511.1675363182&shpt=SmartEconomics%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%2294705511.1675363182%22%2C%22shpt%22%3A%22SmartEconomics%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675363182.1%22%2C%22dcm_gid%22%3A%22132168042.1675363183%22%2C%22ga_utm_campaign%22%3A%22K12Feb2_SmartEconomics_Announcement%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7C11056001589340131213148967459703779447%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675363182.1&dcm_gid=132168042.1675363183&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&cb=95545953915527340term%3Dvalue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Thu, 02 Feb 2023 18:39:17 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=e617c4ff-a328-11ed-9b34-872db985e740;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
transfer-encoding: chunked
gs.mountain.com/gs
34.212.4.35200 OK 144 B IP 34.212.4.35:0
File type ASCII text, with no line terminators
Hash e8effeede767b9bf229699f3dd995912
3588071cdc7addf0de492fc15fc5c1d3c3cc79b7
a274b2b11ff4f08ca0764779f5f25452689f366af0335d820d1449b2fe7f025c
GET /gs HTTP/1.1
Host: gs.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: guid=e617c4ff-a328-11ed-9b34-872db985e740
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Thu, 02 Feb 2023 18:39:17 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
obs.healthroundprince.com/mon
54.83.110.109200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP 54.83.110.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1675
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=d0c413ff1b7f81de4abb66cd764115b0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Thu, 02 Feb 2023 18:39:18 GMT
content-length: 0
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=94705511.1675363182&shpt=SmartEconomics%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%2294705511.1675363182%22%2C%22shpt%22%3A%22SmartEconomics%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675363182.1%22%2C%22dcm_gid%22%3A%22132168042.1675363183%22%2C%22ga_utm_campaign%22%3A%22K12Feb2_SmartEconomics_Announcement%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7C11056001589340131213148967459703779447%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675363182.1&dcm_gid=132168042.1675363183&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&cb=1675363157269252&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675363157993
52.42.124.195200 OK 450 B URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=94705511.1675363182&shpt=SmartEconomics%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%2294705511.1675363182%22%2C%22shpt%22%3A%22SmartEconomics%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675363182.1%22%2C%22dcm_gid%22%3A%22132168042.1675363183%22%2C%22ga_utm_campaign%22%3A%22K12Feb2_SmartEconomics_Announcement%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7C11056001589340131213148967459703779447%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675363182.1&dcm_gid=132168042.1675363183&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&cb=1675363157269252&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675363157993
IP 52.42.124.195:0
File type ASCII text, with very long lines (1555), with no line terminators
Hash c19529dbd697e469e767194d6631106e
3a76c12cc04c085b983c2c6467046f38dfab2e6f
480b88f9edad2ca12053a09a8145c6de9a42c5369b8c585839abae56f03e0563
GET /st?ga_tracking_id=UA-68235542-1&ga_client_id=94705511.1675363182&shpt=SmartEconomics%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%2294705511.1675363182%22%2C%22shpt%22%3A%22SmartEconomics%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675363182.1%22%2C%22dcm_gid%22%3A%22132168042.1675363183%22%2C%22ga_utm_campaign%22%3A%22K12Feb2_SmartEconomics_Announcement%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7C11056001589340131213148967459703779447%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A5%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675363182.1&dcm_gid=132168042.1675363183&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&cb=1675363157269252&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675363157993 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: guid=e617c4ff-a328-11ed-9b34-872db985e740
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Thu, 02 Feb 2023 18:39:18 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt=H4sIAAAAAAAAAKtWKlOyMqoFAP609q8HAAAA;Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=e617c4ff-a328-11ed-9b34-872db985e740;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 15
server: istio-envoy
connection: close
transfer-encoding: chunked
ct.pinterest.com/ct.html
23.38.200.197200 OK 323 B IP 23.38.200.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 1267164895164312
date: Thu, 02 Feb 2023 18:39:18 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675363158.6eb94652
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/285700/domain/everfi.com/token
54.230.111.8200 OK 533 B URL HTTP/2 cdn.linkedin.oribi.io/partner/285700/domain/everfi.com/token
IP 54.230.111.8:0
Hash 3c175208abc804c1a61e719afc769a2c
5f83a83afe89e15af22c71935787038c3546e6ed
29761f67eb96c2e099d6eeb16fa7c99b76b8e66aa520b95c0f2bbf86775c5b39
GET /partner/285700/domain/everfi.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Thu, 02 Feb 2023 17:48:36 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2PjF2feP8P4FG1Y-NYqJon35rvaD40VBEa7ys4ClkADfUtXweUBOPA==
age: 3039
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/17.22abfce0.chunk.css
54.230.111.67200 OK 24 B URL HTTP/2 js.driftt.com/core/assets/css/17.22abfce0.chunk.css
IP 54.230.111.67:0
File type ASCII text, with no line terminators
Hash 0c5dad92482d9a7c7c253510f5082465
534b458f99b4d0bb90c2cf2c4bb3703ef44a52bf
5dbaf0a4ff0f8ac8c1b67550eee84390b089604ffaf71183e417636c7e183ac5
GET /core/assets/css/17.22abfce0.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 24
server: istio-envoy
date: Thu, 26 Jan 2023 20:13:51 GMT
last-modified: Tue, 11 Oct 2022 19:09:27 GMT
etag: "0c5dad92482d9a7c7c253510f5082465"
x-amz-server-side-encryption: AES256
x-amz-version-id: eR0JFDWwyA3gsnd_XajqmmtDUbC85CBL
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: C3Zla5ZmPoD3u1z3NmDR8A5gA8YP55UD3UVWpMODlPJR061KJyTJDA==
age: 599128
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/runtime~main.ac7930e9.js
54.230.111.67200 OK 39 kB URL HTTP/2 js.driftt.com/core/assets/js/runtime~main.ac7930e9.js
IP 54.230.111.67:0
Hash 3ef4a264413f8833bf462442b2b20e03
9e6a4cbc1989e8dc98beaf5cef9bcc4b3ea6ff8a
9993f366815c9684c2f4165d6155453671a62f33cf3fba0bea441f667306227d
GET /core/assets/js/runtime~main.ac7930e9.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Thu, 02 Feb 2023 17:46:52 GMT
last-modified: Thu, 02 Feb 2023 17:19:21 GMT
etag: W/"c066ff097c75e52735ab581248399374"
x-amz-server-side-encryption: AES256
x-amz-version-id: gZ4iNeidu6mtzfJmtz05qciPWxrK7fSQ
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4a9HZe9ikKTJ4AgLZnIp9N4GE6O1TuyQzftKyGgKLk9Sf0C7QZX-Jg==
age: 3146
X-Firefox-Spdy: h2
embed.formhq.net/v1/platforms/bWFya2V0bw.js
172.66.43.197200 OK 10 kB URL HTTP/2 embed.formhq.net/v1/platforms/bWFya2V0bw.js
IP 172.66.43.197:0
File type ASCII text, with very long lines (422), with no line terminators
Hash 529eb62ba0a8999ec94be20579362d75
bac0c505fa0d00a1bebba8e26f0bc7e9a6b6b40f
46daf40037090c3116a6b65e411f5181ef1234b36b94f4234457c18b00985d25
GET /v1/platforms/bWFya2V0bw.js HTTP/1.1
Host: embed.formhq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:14 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=423
etag: W/"62e92e06-1a7"
last-modified: Tue, 02 Aug 2022 14:00:38 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: max-age=1800
cf-cache-status: HIT
age: 5383
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=byTidUSVm8OSLOET7B%2FDCYVv6mOIaYmhixzA%2FJbenpY9VQJ6%2Bl1aYjDWkZsfmQ4m8RgS0tGYaqrSjUr79MhBeQh8OvhoTj8DGcwKjU7nc0B4eVme5TbfDoPQe0tfZWtALmT8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79350c65691eb500-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 3786c26262b42394b4cde6e8463cb7a2
1dbe867db2b48972eded803111be4ea70fc64d79
20a9ae52bb0610e82b56599f6d90585796c76dd9e4dabcff3436df186d4770c4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 18:39:20 GMT
Last-Modified: Thu, 02 Feb 2023 17:27:08 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7WL6KkcPQTNAKG8Io-ejo7tsR1yayAFT60LiEJOk7OyDpelRLi4l8A==
Age: 4332
api-v2.mutinyhq.io/v2/b
3.210.59.203201 Created 20 kB IP 3.210.59.203:0
Hash 24612bb4f9438c4f4ff9a812b2a90955
79781975be1edf3212b5ef0dd260c7c1a33f9bbb
68db7d1eb66cd96a5f0c81bb44a2fae9a3c99057cfea3248589a52d22a35a9c1
POST /v2/b HTTP/1.1
Host: api-v2.mutinyhq.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 4185
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Thu, 02 Feb 2023 18:39:18 GMT
content-type: text/plain
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: x-cache, x-cache-hits, age
access-control-max-age: 7200
vary: Origin,Accept-Encoding
etag: W/"565339bc4d33d72817b583024112eb7f"
cache-control: max-age=0, private, must-revalidate
x-request-id: 65776ac1-c58d-443b-83ae-c6b35443ded1
x-runtime: 0.007315
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
54.230.111.67200 OK 70 kB URL HTTP/2 js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
IP 54.230.111.67:0
Hash f3a1237ad7f2d91dfccb57ffc595c04a
9ebd355676fdd4e09103f2b8a8db3ebd6dd29c4e
19837f77bed7bb99b24bc4647e61fcbf532db1ebce15d8c08f98a72457b83539
GET /core/assets/js/9.4a3e9801.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:22 GMT
etag: W/"c6f58dd3d60f07462254b842dd4f9ca1"
x-amz-server-side-encryption: AES256
x-amz-version-id: hzm2Healt7ZjvNDM3nYQ47BRwWjFuLrw
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vEGZ1PvLL9p5QuicFbLlwcu5dDneqL4XREfOxcdov8C2ryv9ivF9lQ==
age: 522862
X-Firefox-Spdy: h2
obs.healthroundprince.com/mon
54.83.110.109200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP 54.83.110.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1675
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=d0c413ff1b7f81de4abb66cd764115b0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Thu, 02 Feb 2023 18:39:20 GMT
content-length: 0
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/25.22647a55.chunk.js
54.230.111.67200 OK 16 kB URL HTTP/2 js.driftt.com/core/assets/js/25.22647a55.chunk.js
IP 54.230.111.67:0
Hash fc2d501bafffeb6580379f2e8dc93ad1
ba257ad249d92abdfa069d3820fd77b9c7246227
01ea2cdea563eb719d34aca157be104d0b76cacf3b1f96e998c39e9f7b95644b
GET /core/assets/js/25.22647a55.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"2ce6c446f71a395ff41647c9ba4b9c19"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3Dq5XEj76miHFBtzwx_L1gh4_UbdDQYk
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -2wb_uthU3v90vRVxLCCfVjfAoNZYBgaBYB2zRbntNLX9iaPiwdAaw==
age: 522862
X-Firefox-Spdy: h2
js.driftt.com/include/1675363200000/ebs64edsgr5y.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/include/1675363200000/ebs64edsgr5y.js
IP 54.230.111.67:0
GET /include/1675363200000/ebs64edsgr5y.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
last-modified: Thu, 02 Feb 2023 17:47:11 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 3xWqR5DkgEuy6guPZHaBH8EtWU71frWm
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
x-envoy-upstream-service-time: 21
content-encoding: gzip
date: Thu, 02 Feb 2023 18:39:18 GMT
cache-control: no-cache
etag: W/"8ead115aa6b8dd4cf82dbba47b818130"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bWLcLeWiu3wmpSNTVtYT15MHSeIhdpClC8rgR08x0OLhQRfrkwQs-w==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/main~493df0b3.bfaa8bf7.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/main~493df0b3.bfaa8bf7.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/main~493df0b3.bfaa8bf7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:22 GMT
etag: W/"f380dbfcbb0e3e9e079d70231be1cff3"
x-amz-server-side-encryption: AES256
x-amz-version-id: tVIOQ5knB_pnUIzARn2A1QNlFnrQ08ww
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Afee-p_2xKAZ3dXhcpveS2xjhR5JV6LVCQ3-LNjcpsw7p2Yw9UES0g==
age: 522862
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2584703/visit-data?sv=7
99.80.223.252200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/2584703/visit-data?sv=7
IP 99.80.223.252:0
POST /api/v2/client/sites/2584703/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain; charset=UTF-8
Content-Length: 128
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:16 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&page_title=SmartEconomics%20%7C%20EVERFI
54.230.111.101200 OK 0 B URL HTTP/2 api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&page_title=SmartEconomics%20%7C%20EVERFI
IP 54.230.111.101:0
POST /api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsmarteconomics%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Feb2_SmartEconomics_Announcement%26utm_content%3DSmartEconomics%3A%2BEconomics%2Bfor%2BMiddle%2BSchool&page_title=SmartEconomics%20%7C%20EVERFI HTTP/1.1
Host: api.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 63
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Thu, 02 Feb 2023 18:39:15 GMT
server: nginx
access-control-allow-origin: https://everfi.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
api-version: v2
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
identification-source: CENTRAL
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Wed, 01 Feb 2023 18:39:15 GMT
vary: Accept-Encoding, Origin
content-encoding: gzip
request-id: 78038838-f7cc-4837-9244-47c55e30812a
x-cache: Miss from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GvZcazcRgjhK5xYt4E-tLLLsOOQBIFYll0lpY8q5Nnzy0O7PmDP-Yg==
X-Firefox-Spdy: h2
tag.demandbase.com/89bf928e3008d78e.min.js
54.230.111.54200 OK 0 B URL HTTP/2 tag.demandbase.com/89bf928e3008d78e.min.js
IP 54.230.111.54:0
GET /89bf928e3008d78e.min.js HTTP/1.1
Host: tag.demandbase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Thu, 19 Jan 2023 13:25:04 GMT
x-amz-version-id: ahOAKTBGm9q9mczOXGCMjSddE5423kHo
server: AmazonS3
content-encoding: gzip
date: Thu, 02 Feb 2023 18:39:15 GMT
cache-control: public, max-age=3600
etag: W/"d0a5a21e27ee444ce67d582534bc4b66"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dlneK5Wj1T2X_mSQ5PkrXL3R5SSqDICpvFrn2ArVEuluoToLClbryw==
age: 2994
strict-transport-security: max-age=63072000; includeSubDomains; preload
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Firefox-Spdy: h2
js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
IP 54.230.111.67:0
GET /core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Thu, 02 Feb 2023 17:46:52 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 1BX2KgD7Sb1DxvdgoYFGKuaH2zyxYg4V
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 22
date: Thu, 02 Feb 2023 18:39:18 GMT
cache-control: no-cache
etag: W/"789d9907e240b6db9fb8c05f182d898c"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KJJcY7GrIK_SlVUtec47ztz4Likx85r9icL3KOpAGBnINDY95lSbHw==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/30.57dfb56c.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/30.57dfb56c.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/30.57dfb56c.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"b8addee34a5cd2241740a2e3094039b3"
x-amz-server-side-encryption: AES256
x-amz-version-id: PRu.RNHym52TA_hlIcQB1Vv5VUA1vVKS
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XxiVuQrQQrhJ8tgFrOmODNO7iBEi9voXpLV3oG4NxsbvbvnZxKv45g==
age: 522863
X-Firefox-Spdy: h2
kit.fontawesome.com/655ccfc4f9.js?ver=6.1.1
104.18.22.52200 OK 0 B URL HTTP/2 kit.fontawesome.com/655ccfc4f9.js?ver=6.1.1
IP 104.18.22.52:0
GET /655ccfc4f9.js?ver=6.1.1 HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:13 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FzlzA0Wly4PKVLnujNbB
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 79350c5b78910b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A700&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A700&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Lato%3A700&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 18:39:13 GMT
date: Thu, 02 Feb 2023 18:39:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/27.f44ab9c1.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/27.f44ab9c1.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/27.f44ab9c1.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"768714622a8a2db20ece85777ba47642"
x-amz-server-side-encryption: AES256
x-amz-version-id: wrgwLo8Ut7GsYvCwhzW617Km3EuBTw6K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v7Zujmli73AR0emvQPiGscTXRTbW_6p14iTVjtpRCjtebh7szdGPEw==
age: 522862
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/15.699b0dc7.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/15.699b0dc7.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/15.699b0dc7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"43d1442a9d30453da9eaeb12b9daafff"
x-amz-server-side-encryption: AES256
x-amz-version-id: jUF4GGgcG34JdLv0MHXRHyWvmwH3OQeO
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _bO0Tt07SoOaskTkzsYFSw9Dxhhnu_Gofb-wfqnGVfMpXSLJn2UDmA==
age: 522861
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/20.2ffef383.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/20.2ffef383.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/20.2ffef383.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"ec6e94b6cea3a27506634867a8009ded"
x-amz-server-side-encryption: AES256
x-amz-version-id: Sl_LzJMe7m6MkWEK9Fxqk3gRf.6SeAYu
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 26
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ofhl89DyDFQcHmVzk2__NfQGPYme00X5no4ZaEjGkGhZP0ByAiYPdQ==
age: 522862
X-Firefox-Spdy: h2
my.hellobar.com/edcdff19ac78bb7a167b2e3617e196453f5eaefa.js
104.22.14.23200 OK 0 B URL HTTP/2 my.hellobar.com/edcdff19ac78bb7a167b2e3617e196453f5eaefa.js
IP 104.22.14.23:0
GET /edcdff19ac78bb7a167b2e3617e196453f5eaefa.js HTTP/1.1
Host: my.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:14 GMT
content-type: text/javascript
x-amz-id-2: 3cuPOaFbITTr0WE6pooo41ap0gjHv3X90gdd40ZBne+f9wKSPrIBg+DzVN88ACR7snAGAzHsz6g=
x-amz-request-id: HED47AY2DTHYC5HR
last-modified: Thu, 02 Feb 2023 16:35:27 GMT
etag: W/"f6cd467d3f72ced7bf6f4184c8d5861a"
cache-control: max-age=86400, must-revalidate, proxy-revalidate, s-maxage=10
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 79350c63d9fb1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/26.8ad2c789.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/26.8ad2c789.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/26.8ad2c789.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Thu, 02 Feb 2023 17:46:52 GMT
last-modified: Thu, 02 Feb 2023 17:19:18 GMT
etag: W/"75661712253ed1de462ddd525108c2b7"
x-amz-server-side-encryption: AES256
x-amz-version-id: vGS0ZgOIjR2BAgr6fsq7fNINKxSECxxa
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -BdCOPdQwtv1XgpiQ2YVWjj7Z1Fhq3ErfZNLXtOXUGHT0pWzXP_m-A==
age: 3147
X-Firefox-Spdy: h2
ws.zoominfo.com/pixel/uaPMNNWAvRE9GecQvShh
104.16.168.82200 OK 0 B URL HTTP/2 ws.zoominfo.com/pixel/uaPMNNWAvRE9GecQvShh
IP 104.16.168.82:0
GET /pixel/uaPMNNWAvRE9GecQvShh HTTP/1.1
Host: ws.zoominfo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 18:39:14 GMT
content-type: text/javascript
vary: Accept-Encoding
x-powered-by: Express
x-content-type-options: nosniff
access-control-allow-headers: Content-Type,cf-ipcountry,service-version,x-appengine-user-ip,x-forwarded-for, x-ws-collect-type
access-control-allow-credentials: true
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: visitorId=537f0f8509bb28a16bac8a12e55c9a45698028450938781bb3350c9e2dfb0a8f; Max-Age=31536000; Domain=ws.zoominfo.com; Path=/; Expires=Fri, 02 Feb 2024 18:39:14 GMT; Secure; SameSite=None
__cf_bm=kyFoUT7wxzuT1BH5IJli4Kgpe5ELYJwrx2IcGsXjnhc-1675363154-0-AdwK8Nvcefcaed4eOkmo4LIegAv1XQpSw74SVEOKghtCu9tWpJDkZnUfd1HcbyL05DvuWg23sd3yYOc8A55v3qc=; path=/; expires=Thu, 02-Feb-23 19:09:14 GMT; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
_cfuvid=rIMK5lYpyymptnwiWoOvp.Wqz9q7xTAT.fr6lxY2haA-1675363154720-0-604800000; path=/; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 79350c63ef46b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/41.a1867ad4.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/41.a1867ad4.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/41.a1867ad4.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"299dd262bf32831c99dc78a9c5b5ca43"
x-amz-server-side-encryption: AES256
x-amz-version-id: X151O2if9SUzZhsBRIHlOqKUakbFDRo_
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IM-HE_ZejenCEe3zABesdwnIjL3Mjq4bRkiKiVi_qRcCiWUso5Q-Cg==
age: 522863
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/10.18bfca70.chunk.css
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/10.18bfca70.chunk.css
IP 54.230.111.67:0
GET /core/assets/css/10.18bfca70.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"dd670379de64b0621ee84574f3b8e73d"
x-amz-server-side-encryption: AES256
x-amz-version-id: W.Ed7skdAN0dSG59eVgsVvIsNBx.BMsL
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 20
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NNzETKn_DURCUojYcxUtE9o9JxyFI8MOLMqdQOGzHujliC4A2z-IpA==
age: 522862
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/10.4b732e6a.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/10.4b732e6a.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/10.4b732e6a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675363180230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:19 GMT
etag: W/"fc993533bc5bb380c865a5164f1a76c0"
x-amz-server-side-encryption: AES256
x-amz-version-id: 6IO_iuOmrg_MhTuR.qaW7MVxfukyk3VL
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6NbTomxo1Mlban5tE73blpdB3dVsF_DTGvbp65ID4jCgWy3aexLjnA==
age: 522861
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.js
2.18.173.203200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.js
IP 2.18.173.203:0
GET /utag/blackbaud/main/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "756b906f5860754dfb13a61226ee7d16:1674847152.238375"
last-modified: Fri, 27 Jan 2023 19:19:12 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Thu, 02 Feb 2023 18:44:13 GMT
date: Thu, 02 Feb 2023 18:39:13 GMT
X-Firefox-Spdy: h2