Report - mx.technolutions.net/ss/c/7Byna_zJWzbUKCnhLM-SCTM9XTZUu0GXICnF_LaILvQ/3uw/XitCEh3lQmqHChs1mrGtTQ/h2/JCap7d1-7G55YAuu5VGmdY-x6gaAZEmUsa

Report Overview

Submitted URL
mx.technolutions.net/ss/c/7Byna_zJWzbUKCnhLM-SCTM9XTZUu0GXICnF_LaILvQ/3uw/XitCEh3lQmqHChs1mrGtTQ/h2/JCap7d1-7G55YAuu5VGmdY-x6gaAZEmUsa_Td4U1dc0
IP
143.204.55.72
ASN
#16509 AMAZON-02
Submitted
2023-03-29 17:25:58
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
assets.website-files.com	13552	2020-11-01T16:14:58Z	2023-03-29T19:33:15Z	534 B	645 B	54.230.111.28
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T18:14:38Z	782 B	2.4 kB	35.241.9.150
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-29T18:15:42Z	382 B	78 kB	142.250.74.168
www.clarity.ms	1404	2018-08-22T09:41:57Z	2023-03-29T18:12:55Z	757 B	131 kB	13.107.238.53
d.agkn.com	524	2012-05-21T03:51:27Z	2023-03-29T18:22:26Z	493 B	537 B	54.171.219.155
assets-global.website-files.com	14027	2020-11-01T16:14:58Z	2023-03-29T17:25:32Z	8.6 kB	1.6 MB	54.230.111.99
pixel.mathtag.com	1199	2012-05-22T07:36:42Z	2023-03-29T18:16:10Z	1.4 kB	3.5 kB	23.38.200.207
pixel.rubiconproject.com	314	2012-10-09T05:17:38Z	2023-03-29T18:12:08Z	466 B	333 B	69.173.144.165
c.clarity.ms	803	2021-02-04T00:22:47Z	2023-03-29T18:12:57Z	853 B	1.2 kB	68.219.88.97
12542078.fls.doubleclick.net	unknown			623 B	1.0 kB	142.250.74.70
um.simpli.fi	744	2012-05-22T07:45:01Z	2023-03-29T18:14:40Z	8.1 kB	19 kB	35.204.158.49
ib.adnxs.com	241	2012-05-20T21:01:49Z	2023-03-29T18:12:02Z	890 B	2.0 kB	185.89.210.20
ocsp.godaddy.com	698	2012-05-20T21:28:57Z	2023-03-29T18:14:34Z	680 B	4.6 kB	192.124.249.23
fei.pro-market.net	2658	2012-10-30T07:46:59Z	2023-03-29T19:58:26Z	922 B	1.4 kB	107.178.240.89
use.typekit.net	494	2012-07-05T03:42:39Z	2023-03-29T18:12:09Z	19 kB	1.1 MB	23.36.76.186
snap.licdn.com	1044	2014-10-06T10:43:45Z	2023-03-29T18:12:13Z	382 B	5.1 kB	23.36.76.210
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-29T23:08:26Z	676 B	2.0 kB	216.58.211.2
www.googleadservices.com	107	2012-06-26T16:53:06Z	2023-03-29T22:31:57Z	515 B	838 B	142.250.74.130
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-29T22:31:06Z	680 B	1.9 kB	104.18.32.68
bcp.crwdcntrl.net	699	2012-05-21T03:51:26Z	2023-03-29T18:44:07Z	443 B	367 B	54.171.168.204
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T18:12:03Z	2.4 kB	6.2 kB	95.101.11.115
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-29T18:12:02Z	4.5 kB	9.1 kB	142.250.74.131
adservice.google.no	96969	2018-06-20T01:38:38Z	2023-03-29T18:12:03Z	617 B	837 B	142.250.74.98
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	615 B	349 B	31.13.72.36
analytics.tiktok.com	1182	2020-02-29T14:09:05Z	2023-03-29T18:13:30Z	2.3 kB	104 kB	95.101.10.113
sync.bfmio.com	1205	2017-01-30T05:50:02Z	2023-03-29T18:20:58Z	433 B	314 B	44.207.189.182
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T18:37:20Z	606 B	238 B	34.117.65.55
tr.snapchat.com	978	2017-04-26T08:25:03Z	2023-03-29T18:12:13Z	1.5 kB	2.0 kB	35.190.43.134
us-u.openx.net	357	2013-08-30T21:43:55Z	2023-03-29T18:13:53Z	442 B	406 B	35.244.159.8
cdn.jetboost.io	57077	2020-08-11T16:01:41Z	2023-03-29T09:25:46Z	363 B	541 B	54.230.111.63
simplifi.partners.tremorhub.com	7073	2019-08-12T17:15:44Z	2023-03-29T21:01:58Z	443 B	201 B	52.6.16.146
ocsp.r2m01.amazontrust.com	unknown	2022-10-12T22:43:53Z	2023-03-29T21:37:48Z	1.8 kB	4.9 kB	54.230.80.227
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T22:30:19Z	3.2 kB	51 kB	34.120.237.76
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-29T18:55:09Z	656 B	641 B	142.250.74.163
loadm.exelator.com	1042	2012-05-22T09:59:51Z	2023-03-29T18:12:40Z	449 B	385 B	54.78.254.47
oneocsp.microsoft.com	1473	2020-08-13T08:58:55Z	2023-03-29T18:12:27Z	349 B	2.3 kB	204.79.197.203
status.geotrust.com	3662	2017-12-01T09:55:31Z	2023-03-29T18:14:08Z	1.0 kB	2.4 kB	192.229.221.95
stags.bluekai.com	471	2012-06-27T21:59:37Z	2023-03-29T18:12:33Z	433 B	598 B	184.24.45.23
ce.lijit.com	812	2012-05-22T07:45:01Z	2023-03-29T18:18:54Z	431 B	309 B	216.52.2.30
c.bing.com	247	2012-05-22T12:26:32Z	2023-03-29T18:12:33Z	480 B	1.0 kB	13.107.21.200
mx.technolutions.net	11218	2018-03-27T09:36:26Z	2023-03-29T09:47:40Z	1.0 kB	5.5 kB	143.204.55.13
p.typekit.net	620	2012-05-23T16:28:57Z	2023-03-29T18:12:10Z	663 B	390 B	23.36.76.186
pixel.tapad.com	400	2012-10-01T09:23:01Z	2023-03-29T18:17:10Z	958 B	2.0 kB	34.111.113.62
ocsp.r2m02.amazontrust.com	unknown	2022-10-12T16:01:39Z	2023-03-29T22:50:32Z	350 B	946 B	54.230.80.227
sync.intentiq.com	1476	2020-05-06T12:01:11Z	2023-03-29T18:41:05Z	483 B	1.4 kB	143.204.55.7
go.pennwest-grad.org	unknown	2022-07-19T14:55:29Z	2023-03-28T15:25:13Z	1.5 kB	29 kB	174.129.6.84
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-29T22:52:50Z	3.8 kB	8.7 kB	192.229.221.95
tag.simpli.fi	5216	2016-08-25T23:56:15Z	2023-03-29T14:12:19Z	406 B	4.1 kB	34.90.223.176
px.ads.linkedin.com	522	2018-06-15T13:29:56Z	2023-03-29T21:22:49Z	954 B	2.1 kB	13.107.42.14
y.clarity.ms	unknown	2023-02-13T18:09:57Z	2023-03-29T21:49:53Z	1.3 kB	882 B	104.211.35.148
sc-static.net	1183	2017-09-05T20:35:04Z	2023-03-29T18:12:13Z	364 B	14 kB	54.230.82.240
www.clickcease.com	12756	2015-03-25T16:12:10Z	2023-03-29T18:46:16Z	370 B	910 B	54.230.111.16
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T18:24:36Z	413 B	5.9 kB	34.160.144.191
pennwest.edu	unknown	2022-01-26T14:33:53Z	2023-03-06T02:39:34Z	786 B	674 B	99.83.190.102
idsync.rlcdn.com	305	2012-05-22T18:37:38Z	2023-03-29T18:12:33Z	441 B	192 B	35.244.174.68
ocsp.usertrust.com	899	2012-05-21T17:43:18Z	2023-03-29T18:12:09Z	342 B	1.0 kB	104.18.32.68
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T18:13:46Z	333 B	391 B	34.117.237.239
www.google.com	7	2015-05-10T13:11:19Z	2023-03-29T23:33:41Z	657 B	641 B	216.58.207.228
cdn.linkedin.oribi.io	unknown	2022-10-19T16:36:39Z	2023-03-29T18:12:14Z	427 B	621 B	54.230.111.8
www.linkedin.com	608	2015-06-18T18:10:03Z	2023-03-29T18:30:06Z	575 B	2.6 kB	13.107.42.14
adm.calu.edu	unknown	2019-04-09T14:16:06Z	2022-09-10T12:34:07Z	353 B	392 B	158.83.25.49
adm.pennwest.edu	unknown	2022-09-10T12:34:08Z	2023-03-27T08:04:38Z	357 B	1.3 kB	34.198.122.35
i.simpli.fi	3482	2012-05-30T02:30:03Z	2023-03-29T21:01:57Z	400 B	1.2 kB	34.90.79.92
adservice.google.com	76	2021-02-20T17:10:48Z	2023-03-29T22:04:16Z	626 B	792 B	142.250.74.66
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-29T18:12:13Z	374 B	29 kB	31.13.72.12
cm.g.doubleclick.net	202	2012-05-22T11:58:28Z	2023-03-29T22:56:45Z	895 B	1.8 kB	142.250.74.34
eb2.3lift.com	402	2014-09-24T17:03:42Z	2023-03-29T18:14:01Z	445 B	206 B	13.248.245.213
aa.agkn.com	431	2017-01-30T06:01:07Z	2023-03-29T18:21:49Z	468 B	736 B	3.77.83.108
www.pennwest.edu	unknown	2022-01-26T15:09:50Z	2023-03-06T02:38:24Z	446 B	7.8 kB	34.251.201.224
d3e54v103j8qbb.cloudfront.net	unknown	2016-03-11T23:08:14Z	2023-03-29T20:23:54Z	460 B	61 kB	54.230.245.192
adp.eab.com	unknown	2022-11-11T00:16:54Z	2023-03-13T12:36:59Z	361 B	678 B	54.230.111.49
sync.search.spotxchange.com	523	2012-05-22T10:29:33Z	2023-03-29T18:14:42Z	968 B	1.2 kB	185.94.180.126

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-29	medium	go.pennwest-grad.org/mtc.js	Phishing
2023-03-29	medium	go.pennwest-grad.org/mtc/event	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (35)

	URL	Size	First Seen	Last Seen
	pixel.mathtag.com/sync/iframe?mt_uuid=0a546424-749b-4400-a56f-e0c4eadc778e&no_iframe=1&mt_adid=254523&source=mathtag	607 B	2023-03-13	2023-04-05
Pretty URL pixel.mathtag.com/sync/iframe?mt_uuid=0a546424-749b-4400-a56f-e0c4eadc778e&no_iframe=1&mt_adid=254523&source=mathtag IP 23.38.200.207 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:30:08 Last Seen2023-04-05 02:02:50 Times Seen107 Hash 8dc3e1d8a3f3b6dd9938fc5f5c835937 a9dd2e38c2722bbb9ceaec8fbfe6dee25399d77b 64ff666c09d2b39ac2d1bbc2fd160254f1b24c20bbb43fa587c3059bf27afeab Loading...

	sc-static.net/scevent.min.js	31 kB	2023-03-13	2023-04-06
Pretty URL sc-static.net/scevent.min.js IP 54.230.82.240 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:06:46 Last Seen2023-04-06 21:54:21 Times Seen47 Hash df51987fa9937f440bd7f5a3466932ca ca293b2a2eb6b4b97af418be78373becea1b1f95 47f33d5a14c3605b73594a767736041df110457fcf1bb09322620fb8e537e8c6 Loading...

	analytics.tiktok.com/i18n/pixel/events.js?sdkid=CF8PUC3C77U208RT4Q70&lib=ttq	3.2 kB	2023-03-29	2023-03-29
Pretty URL analytics.tiktok.com/i18n/pixel/events.js?sdkid=CF8PUC3C77U208RT4Q70&lib=ttq IP 95.101.10.113 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen1 Hash 61fa605e251d89d83176e1928c0e0272 15161ee8ba6497206380a4dc5644395838e425de 63df00e66cb0f3ba730038aaff9fc64ffc4cda21860e9bde70bc74dc76b196b8 Loading...

	www.pennwest.edu/	887 B	2023-03-29	2023-08-02
Pretty URL www.pennwest.edu/ IP 34.251.201.224 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-08-02 18:44:58 Times Seen5 Hash e5936264474f2a3f328135d604c3acfb e6b6796401054b1a117f227af6cf7d5fcb7ba9d4 180bf7a01fad7765eb4599329efb5a9bfb3ad073aae97162b6496fc5add11114 Loading...

	www.pennwest.edu/	212 B	2023-03-07	2024-04-18
Pretty URL www.pennwest.edu/ IP 34.251.201.224 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:52 Last Seen2024-04-18 14:49:31 Times Seen1389 Hash 1565f27b5585b85df21c7b37826727c0 fd3c616a8ee607281a2df6b00709bfbe1b86bfcc 55f4d09cc0381167f7c8667dd3703dd7f857dee09ef78e0f5b03112a6dd2d51c Loading...

	tr.snapchat.com/config/edu/a845eb19-57fe-448b-9652-bc5371bdd115.js	149 B	2023-03-29	2023-03-29
Pretty URL tr.snapchat.com/config/edu/a845eb19-57fe-448b-9652-bc5371bdd115.js IP 35.190.43.134 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen2 Hash 9081d3ce7eee3c6776ef3312cedd3b9a 344926df5aa256dd79b14e443b7c164847b06429 4c6a7d7b1c3ecf076b11b0b4b44cbb2407594fdb1ccc51e0ad5b6cf7bb948c22 Loading...

	www.pennwest.edu/	30 B	2023-03-07	2024-04-18
Pretty URL www.pennwest.edu/ IP 34.251.201.224 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:57 Last Seen2024-04-18 15:46:06 Times Seen3508 Hash c87d02e7372c6e84060d7bcf881b3dec 7be6f1e4003b5f4fc1509041afbbee9e6bebf0a7 d71b6207a995d6220a6798b3f42c40e651277c483c7745c41f714bf4bf0d06aa Loading...

	www.pennwest.edu/	435 B	2023-03-29	2023-08-02
Pretty URL www.pennwest.edu/ IP 34.251.201.224 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-08-02 18:44:58 Times Seen5 Hash 5872ee72f96f3b8c5f5eae1301d07cfc 8245b1a16b4d2ede83674f86d195a8c32f94b2b0 7c03acc7d3b74b5d27a1ebbfc10de6f5ddf108d240e195df0292652b54a99526 Loading...

	www.pennwest.edu/	422 B	2023-03-29	2023-08-02
Pretty URL www.pennwest.edu/ IP 34.251.201.224 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-08-02 18:44:58 Times Seen5 Hash e2825c7b76cb054f20d201a0a3d8c0db 54056117d7c52250f51c7f6095038598b555eb74 f5daa65d9892c9585db77e6326858e55201bc5306bf8180e240da535e8dbfb69 Loading...

	www.pennwest.edu/	341 B	2023-03-29	2023-08-02
Pretty URL www.pennwest.edu/ IP 34.251.201.224 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-08-02 18:44:58 Times Seen6 Hash 9063f9f5e0c0eb788bad0d8be08b8851 9f6563154f7096abd982b8cfd7c9a72149ed47e4 94d8f6a8b03f7840d94bd1913b89f9593507bbca1387423c504c1ecc8fbe331d Loading...

	www.clarity.ms/tag/ftns9gnosj	624 B	2023-03-29	2023-03-29
Pretty URL www.clarity.ms/tag/ftns9gnosj IP 13.107.238.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen2 Hash eacfb8991953db88f137ebbe0c58959a d29231bc56bbc27cf154312eb391206c5e3cef48 15f79edc6759e654200ac2e353074f966815a41ab2da909a996e375806a8080e Loading...

	pixel.mathtag.com/event/js?mt_id=1595286&mt_adid=254523&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3=	1.4 kB	2023-03-29	2023-03-29
Pretty URL pixel.mathtag.com/event/js?mt_id=1595286&mt_adid=254523&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3= IP 23.38.200.207 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen1 Hash 395b1608ef9516964bd3b28767abab67 09f8b11e0ba94143b29be30e1de941aebfeea1b3 a58369e195f73878c7eed470a380e06221844c81ec4ba0269c3b9f64db3d5a9e Loading...

	connect.facebook.net/en_US/fbevents.js	110 kB	2023-03-29	2024-01-01
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:21:14 Last Seen2024-01-01 20:32:51 Times Seen5908 Hash 16a85e90ff4a7f49fb83743f7e338b4f c6ef02e6771407f89b4eb7efccf9efc08b4ca242 dbf060c555e91a539d9cb849f4aa0c656db9b0a1da32c99aafb12d7c508c6849 Loading...

	adm.calu.edu/ping	623 B	2023-03-29	2023-03-29
Pretty URL adm.calu.edu/ping IP 158.83.25.49 ASN #398655 CALU-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen1 Hash fa4698a29b59d7d00aacbc123384a874 dd645396fba585d44e880797e75548a46f7dcfda ad517f8b8014ff4c36d465b5e7ac7a616609e74cba8b6e59c776db11748c1423 Loading...

	adp.eab.com/js/adp.min.js	98 B	2023-03-10	2023-07-11
Pretty URL adp.eab.com/js/adp.min.js IP 54.230.111.49 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 03:24:45 Last Seen2023-07-11 20:06:18 Times Seen13 Hash 80c22bb2195eadcf3bc1a714bb8f7506 403254ca85b271ff9662d18de0c5a0c18f1883ff a810b5e9577106a78132037cc757b069dbf38f52cbca94eb370820aed1389aef Loading...

	go.pennwest-grad.org/mtc.js	101 kB	2023-03-29	2023-03-29
Pretty URL go.pennwest-grad.org/mtc.js IP 174.129.6.84 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen2 Hash 31dc07356b9edde41ceca48329e73ee7 c7302b7971577a7717594f75907edb7a1a482756 1b9613dc04446a1f1c7e83f70592e5b2c97406aacc5788c6687ee1d1d0c4272c Loading...

	www.pennwest.edu/	230 B	2023-03-29	2023-05-22
Pretty URL www.pennwest.edu/ IP 34.251.201.224 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-05-22 04:45:02 Times Seen2 Hash a483fe61f09ade9a4bd4c67de1948a4f fc08047d35d5b4d3e30800b18913ea25cca1c7b2 4e41af6a56b60223a9a634897833a510ebf00da86687fb8d7107a3a52a48c7c8 Loading...

	cdn.jetboost.io/jetboost.js	10 kB	2023-03-12	2023-07-03
Pretty URL cdn.jetboost.io/jetboost.js IP 54.230.111.63 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:41:04 Last Seen2023-07-03 23:29:25 Times Seen34 Hash 8022976e92cc4e3292d84657a4b64e33 001e77fb678e6a0337010cc35b2ca74df48b46d3 2c434f9316de89e674854eb10bba8a3c7d41f6d0d3195a63e5ff7223ae18a143 Loading...

	analytics.tiktok.com/i18n/pixel/static/identify_08840.js	117 kB	2023-03-12	2024-03-25
Pretty URL analytics.tiktok.com/i18n/pixel/static/identify_08840.js IP 95.101.10.113 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:31:23 Last Seen2024-03-25 05:07:26 Times Seen3174 Hash 14e351c2e5ec7005a4b1821aa4d09f45 c709759b868dcd322174ef4c62356b5271cbecc0 cef0a3ffb6993fc1ec7b5b67a16377ec1ec0a858b3cabb834033d7458ff0e4bc Loading...

	www.googletagmanager.com/gtag/js?id=G-RZ49GVD539&l=dataLayer&cx=c	245 kB	2023-03-29	2023-03-29
Pretty URL www.googletagmanager.com/gtag/js?id=G-RZ49GVD539&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen1 Hash f246e2c5f42a6c8e88306f5885484b38 835f6da2a4d0388fcba376cdfc9f51634c2daa3c 47bdbfe6e470f0e570ec68b871d7f40cb8dd32e781149ffa0cd454167245e949 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/10931943220/?random=1680110771170&cv=11&fst=1680110771170&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.pennwest.edu%2F&hn=www.googleadservices.com&frm=0&tiba=Pennsylvania%20Western%20University%20%7C%20PennWest&auid=935549528.1680110771&rfmt=3&fmt=4	2.5 kB	2023-03-29	2023-03-29
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/10931943220/?random=1680110771170&cv=11&fst=1680110771170&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.pennwest.edu%2F&hn=www.googleadservices.com&frm=0&tiba=Pennsylvania%20Western%20University%20%7C%20PennWest&auid=935549528.1680110771&rfmt=3&fmt=4 IP 216.58.211.2 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen1 Hash ff15a86187bdbf6a8b2593f04a033237 896024f503efefeaa1535dd7abc4feaf18618548 ad8dfff87fab169fa24a3518435b4a6b499a792da3d00ba974d9587718962e56 Loading...

	snap.licdn.com/li.lms-analytics/insight.min.js	13 kB	2023-03-12	2024-03-30
Pretty URL snap.licdn.com/li.lms-analytics/insight.min.js IP 23.36.76.210 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:01:01 Last Seen2024-03-30 11:38:49 Times Seen5925 Hash b846c9d158853dd4aa95d3d7407ed8bb 2cf0eb02a22e8bd80d19a50a84593420d777d5db f56ccb2db87aacedd9415232e40f80bff9939703df2f9c3f9ec8a092e545349f Loading...

	www.pennwest.edu/	303 B	2023-03-29	2023-05-22
Pretty URL www.pennwest.edu/ IP 34.251.201.224 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-05-22 04:45:02 Times Seen3 Hash 0f419af055934bbf81a3c81aa9c232c9 bb42073c1601e26c3c185d6ecec9f83a1167a43f a379a63580e41f1b09f89adc7b2a8a5726e3c6716ec9e7419aed4cd5f6014174 Loading...

	tag.simpli.fi/sifitag/42b60f80-2881-013b-a52f-0cc47abd0334	3.1 kB	2023-03-29	2023-03-29
Pretty URL tag.simpli.fi/sifitag/42b60f80-2881-013b-a52f-0cc47abd0334 IP 34.90.223.176 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen2 Hash 1a0146a1baca4fee3a14c206a17bee7e e6694f45fe4c5a0f989d60f89c11a433374c1a22 126f0885fe3ef5594a33b6d0001d67aab8122cfc73bb659fd5646117636c3fe9 Loading...

	i.simpli.fi/p?cid=392317&cb=sifi_att_83026871684._hp	756 B	2023-03-29	2023-03-29
Pretty URL i.simpli.fi/p?cid=392317&cb=sifi_att_83026871684._hp IP 34.90.79.92 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen1 Hash ad6b82ffa86cd4719dae17ded467087a 270dc48f96dd0adc51ac642b1d812618fa1c5332 509c9c5dd43b5ad5420e62247e647cdd356f75dda15fcdc98b37cfd5782ffbd6 Loading...

	mx.technolutions.net/ping?id=668532cd-f0fe-96d1-5807-f130d2ad7f86&sid=9gxUpuFJUVlJ1YrKZw9cOn4fPaf9bLHVKW4xXKX2-sZHYHPyRrTsGDYsq7vYp4w1fhzyfnID9InQxG4HQv5VYrcdPiLrQvkxI1ZPGkf-W4A&hid=949f7f12-b9fc-ae82-5d31-14580a22b9b0	4.4 kB	2023-03-29	2023-03-29
Pretty URL mx.technolutions.net/ping?id=668532cd-f0fe-96d1-5807-f130d2ad7f86&sid=9gxUpuFJUVlJ1YrKZw9cOn4fPaf9bLHVKW4xXKX2-sZHYHPyRrTsGDYsq7vYp4w1fhzyfnID9InQxG4HQv5VYrcdPiLrQvkxI1ZPGkf-W4A&hid=949f7f12-b9fc-ae82-5d31-14580a22b9b0 IP 143.204.55.128 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen1 Hash 30e4e3906c61380c7a6970a959683b6a a0eedc13d1ddb0c0254ffb0e79e316e9dc3ed422 00e0b3fe9bdd755670d5b949d15e6ef0d011cc9e9c1c961943fc8e825293b329 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 10:11:07 Times Seen36956136 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.clarity.ms/eus-f-sc/s/0.7.5/clarity.js	57 kB	2023-03-26	2023-04-01
Pretty URL www.clarity.ms/eus-f-sc/s/0.7.5/clarity.js IP 13.107.238.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:41:56 Last Seen2023-04-01 10:38:55 Times Seen342 Hash fd4821572207b64610b72cf7ac032a4d 9349d0d5a6364f9959637373668e2b02407f6420 6e899f48eacbd0c3e68dc8b16f71148b60b6794872922db69f74a80556998876 Loading...

	www.pennwest.edu/	181 B	2023-03-07	2024-04-19
Pretty URL www.pennwest.edu/ IP 34.251.201.224 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:43 Last Seen2024-04-19 09:10:40 Times Seen3721 Hash 0e9e3ad57abeefde87342864450cc232 4dc8676bf3417d597053d5f253fce034007f63da 9a37601d1f5a5f2fba3b000694d4bf5e035c606d5485dd94e2997cbe2efe5c26 Loading...

	www.pennwest.edu/	266 B	2023-03-29	2023-08-02
Pretty URL www.pennwest.edu/ IP 34.251.201.224 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-08-02 18:44:58 Times Seen5 Hash 72820da5712737f11859eac34e0b56c2 8952074c78546ce5eb0bdc8453cd764bdf0983e0 609fc94ce8daef071621d61af9cd7c43fee3b410f5795681b2b4b7e728690962 Loading...

	analytics.tiktok.com/i18n/pixel/events.js?sdkid=CF8PUC3C77U208RT4Q70&lib=ttq	3.2 kB	2023-03-29	2023-03-29
Pretty URL analytics.tiktok.com/i18n/pixel/events.js?sdkid=CF8PUC3C77U208RT4Q70&lib=ttq IP 95.101.10.113 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen1 Hash 03a0801c7994a7a6db91f4af062d6720 93e8e2b2dd07c40fe462db046cf17bb26ca215a3 78a6b8c26665b98d23b50760632082b52e0703f32a81cb783663ada0e1523325 Loading...

	connect.facebook.net/signals/config/506484311553224?v=2.9.100&r=stable	386 kB	2023-03-29	2023-03-29
Pretty URL connect.facebook.net/signals/config/506484311553224?v=2.9.100&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen1 Hash 9a0a1210cbfca3c2f0bf8edbb4d39111 83ddaf7c43c0ddabb59f185b5619950b02b33eb4 6ac7521f1fc36b982a48a44ae2f3288f20d119ab867cf22e597057f35b1b5efa Loading...

	use.typekit.net/dav7wbi.js	30 kB	2023-03-29	2023-08-02
Pretty URL use.typekit.net/dav7wbi.js IP 23.36.76.186 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-08-02 18:44:58 Times Seen8 Hash 4666b7c4002688e8cf7b20509b95d5d3 00f54cf7bde2e726fb36a79e57b0fec8af563054 b563e3251fd70f71cf5352e5ff496f905e20115e62dc783885187819015e15f6 Loading...

	d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=61d6fd0e48b8c90ff2b291b8	90 kB	2023-03-07	2024-04-19
Pretty URL d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=61d6fd0e48b8c90ff2b291b8 IP 54.230.245.192 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-19 09:19:45 Times Seen138263 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/js/pennwest.71f692098.js	319 kB	2023-03-29	2023-03-29
Pretty URL assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/js/pennwest.71f692098.js IP 54.230.111.99 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:59:53 Last Seen2023-03-29 23:59:53 Times Seen1 Hash 71f69209825e7cbcd50a6366f84115c8 efa472fdddc7d35805e2b9c7db8c81e5a6d70244 8416e06c1b41464f2f5a69aa47fc53999d18981cdd10c58421531cdf1c141c63 Loading...

HTTP Transactions (204)

URL IP Response Size

mx.technolutions.net/ss/c/7Byna_zJWzbUKCnhLM-SCTM9XTZUu0GXICnF_LaILvQ/3uw/XitCEh3lQmqHChs1mrGtTQ/h2/JCap7d1-7G55YAuu5VGmdY-x6gaAZEmUsa_Td4U1dc0

143.204.55.13

302 Found

42 B

URL HTTP/1.1
mx.technolutions.net/ss/c/7Byna_zJWzbUKCnhLM-SCTM9XTZUu0GXICnF_LaILvQ/3uw/XitCEh3lQmqHChs1mrGtTQ/h2/JCap7d1-7G55YAuu5VGmdY-x6gaAZEmUsa_Td4U1dc0
IP
143.204.55.13:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text
Size
42 B (42 bytes)
Hash
ff6164213420d651b4c97941ae19ca6d
f0593a8a244856e53425eb2fa62fe3d86e0f5c8c
b9fb2a4506dd2b5140070147e4534144209fb35faa896e4a0d73cd3d3ea92788

HTTP Headers

GET /ss/c/7Byna_zJWzbUKCnhLM-SCTM9XTZUu0GXICnF_LaILvQ/3uw/XitCEh3lQmqHChs1mrGtTQ/h2/JCap7d1-7G55YAuu5VGmdY-x6gaAZEmUsa_Td4U1dc0 HTTP/1.1
Host: mx.technolutions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Content-Length: 42
Connection: keep-alive
Server: nginx
Date: Wed, 29 Mar 2023 17:25:45 GMT
Location: http://pennwest.edu
X-Robots-Tag: noindex, nofollow
Set-Cookie: _hash=f2ae9716-3441-4ac5-b540-89008a505a42; expires=Mon, 27 Mar 2028 17:25:45 GMT; HttpOnly
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: nG7M_zfkdf9OrmJGS0MSUv0Ctpr26xepFh2moB5S9Zx42B2oWtMHAw==

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11498
Expires: Wed, 29 Mar 2023 20:37:23 GMT
Date: Wed, 29 Mar 2023 17:25:45 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b93010cbf31ba3ec785b4088e5d0f529
c0f1ab8a2aae3c445a8f24959a4eea433a345caf
2cc1a5865dee7636b82a68deddd3aff8b697e846e37789a694cc3c7c47340590

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC1A5865DEE7636B82A68DEDDD3AFF8B697E846E37789A694CC3C7C47340590"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20157
Expires: Wed, 29 Mar 2023 23:01:42 GMT
Date: Wed, 29 Mar 2023 17:25:45 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Retry-After, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 29 Mar 2023 17:15:58 GMT
content-type: application/json
age: 587
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5ad3eec59bebbf969f175627757507c1
b176af3a70db378c9e1f219bab24d9d446070d6f
704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7627
Expires: Wed, 29 Mar 2023 19:32:52 GMT
Date: Wed, 29 Mar 2023 17:25:45 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: RgoS/U+xnofl99lrpEjEe+EwU3y63INPMqBtMSdzyT3/rFZbecNFhK2zuoOhEs4RQf0LPPhafsg=
x-amz-request-id: 848XFPTZPYM46NS8
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 29 Mar 2023 17:02:35 GMT
age: 1390
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 17:25:45 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

pennwest.edu/

99.83.190.102

301 Moved Permanently

166 B

URL HTTP/1.1
pennwest.edu/
IP
99.83.190.102:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
166 B (166 bytes)
Hash
3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691

HTTP Headers

GET / HTTP/1.1
Host: pennwest.edu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Wed, 29 Mar 2023 17:25:46 GMT
Content-Type: text/html
Content-Length: 166
Connection: keep-alive
Location: https://pennwest.edu/

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a740252e7b24892a3e34f6dfed6e3bde
d44d21abb95edd1ccc775632254f11ee94fb585e
e289995a2b4b340364dd7dfa32c79c7722ece6cc4b893b38fc68bbce680d2f94

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E289995A2B4B340364DD7DFA32C79C7722ECE6CC4B893B38FC68BBCE680D2F94"
Last-Modified: Mon, 27 Mar 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9146
Expires: Wed, 29 Mar 2023 19:58:12 GMT
Date: Wed, 29 Mar 2023 17:25:46 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c467bc5b3a4904403c0dd7891f39d8d6
36e75a79b037c36737c1d65c397619872257b0e1
6d765f7adc433e6070ecf33087a378741a968270ee4ec2dae28020d367d8bb13

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D765F7ADC433E6070ECF33087A378741A968270EE4EC2DAE28020D367D8BB13"
Last-Modified: Tue, 28 Mar 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 29 Mar 2023 23:25:46 GMT
Date: Wed, 29 Mar 2023 17:25:46 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, ETag, Alert, Last-Modified, Retry-After, Content-Length, Pragma, Backoff, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 29 Mar 2023 17:14:36 GMT
age: 670
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.117.65.55

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.117.65.55:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: c0UoKkz+PI993EHN5MAixQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Sxu9jiPZ1sHxe7b2bualV8mW6XY=
Date: Wed, 29 Mar 2023 17:25:46 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

pennwest.edu/

75.2.70.75

301 Moved Permanently

166 B

URL HTTP/2
pennwest.edu/
IP
75.2.70.75:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
166 B (166 bytes)
Hash
3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691

HTTP Headers

GET / HTTP/1.1
Host: pennwest.edu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
date: Wed, 29 Mar 2023 17:25:46 GMT
content-type: text/html
content-length: 166
location: https://www.pennwest.edu/
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6da15a25e3303d20278d0e3f3c2ddfa2
201eeaac11264ea1a5591ffc770bf4861f9540e4
0e063448f067794579792106e36219f6755fdacf0edcd48f8762ea9815df2754

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E063448F067794579792106E36219F6755FDACF0EDCD48F8762EA9815DF2754"
Last-Modified: Mon, 27 Mar 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21555
Expires: Wed, 29 Mar 2023 23:25:01 GMT
Date: Wed, 29 Mar 2023 17:25:46 GMT
Connection: keep-alive

www.pennwest.edu/

34.251.201.224

200 OK

7.4 kB

URL HTTP/2
www.pennwest.edu/
IP
34.251.201.224:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20517)
Size
7.4 kB (7358 bytes)
Hash
be970ae19e55abee988cd1fd80d0ea78
0f5603643ef80d95d10cb221b9c4d3fb5cee8880
e8b64e74a3a0696a9ce43b60e713d1db516d1bbe2c2fd6388ce34a572fd84b61

HTTP Headers

GET / HTTP/1.1
Host: www.pennwest.edu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:46 GMT
content-type: text/html
content-length: 7358
content-encoding: gzip
accept-ranges: bytes
age: 631
x-served-by: cache-iad-kiad7000060-IAD, cache-dub4333-DUB
x-cache: HIT, HIT
x-cache-hits: 62, 1
x-timer: S1680110747.851741,VS0,VE1
vary: Accept-Encoding,x-wf-forwarded-proto
x-cluster-name: eu-west-1-prod-edge-blue
X-Firefox-Spdy: h2

use.typekit.net/dav7wbi.js

23.36.76.186

200 OK

7.7 kB

URL HTTP/2
use.typekit.net/dav7wbi.js
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (11980)
Size
7.7 kB (7671 bytes)
Hash
be66d2a1c075ae5afdeb2c9a2856f52c
e87ebd6fef4dd06a89c428e99fd9f7273ffe5fbd
e56e7e02a59b6158b63332292454308bf261b5d27db061f59d9cb6be896e285f

HTTP Headers

GET /dav7wbi.js HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 7671
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/css/pennwest.b09fea035.min.css

54.230.111.99

200 OK

42 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/css/pennwest.b09fea035.min.css
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
42 kB (41591 bytes)
Hash
3c282c2cac7537cd2b3433306937b169
136a566aaa344abeaf424adec880780612d2860d
5dc794f90fc60fddd125b550b3594659c7a8aa97dac030b6dd09e59f611e6841

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/css/pennwest.b09fea035.min.css HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
content-length: 41591
date: Tue, 28 Mar 2023 19:42:53 GMT
last-modified: Tue, 28 Mar 2023 19:30:59 GMT
etag: "3c282c2cac7537cd2b3433306937b169"
x-amz-server-side-encryption: AES256
cache-control: max-age=84600, must-revalidate
content-encoding: gzip
x-amz-version-id: JfeTUvf.VKrfcZdCmWhZUsHEEzXZUdu3
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 78175
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2ce8uS59PiuONbO6VjiIYHp5zwimXm6BWaMsI4a_Uhn32htNodKc4g==
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/js/pennwest.71f692098.js

54.230.111.99

200 OK

70 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/js/pennwest.71f692098.js
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (56423)
Size
70 kB (70294 bytes)
Hash
f00ab8c449f7fe8290ac0e444ab925e4
7e80099c02882ba27a2ce475178b5ae89c3d2b50
58a5c00e2e9baa2ff618abca810051a47478fa96629392e21ac0c25ef48cf6ba

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/js/pennwest.71f692098.js HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript
content-length: 70294
last-modified: Fri, 24 Mar 2023 15:47:25 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: G0W2TvKv3M67DTVT2hVFTPn8Est6Bz51
accept-ranges: bytes
server: AmazonS3
date: Wed, 29 Mar 2023 17:25:47 GMT
cache-control: max-age=84600, must-revalidate
etag: "f00ab8c449f7fe8290ac0e444ab925e4"
vary: Accept-Encoding
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 33822
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ve1CMfp1iD1-BE9q03OLv179SuKyIfJX8_HvkZmIFrRk9oQDtUzVwg==
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61eebd6ae8e2870a5db98bdf_campus-california-tower.jpg

54.230.111.99

200 OK

100 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61eebd6ae8e2870a5db98bdf_campus-california-tower.jpg
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x639, components 3\012- data
Size
100 kB (99883 bytes)
Hash
053d8634c75f02cda57bb1e17dc12f40
f28a85948cc25d303e168f39db3ae151cf13a61a
9b0cd1f1eb0d8701a080f445b33e31160464c371b834b9dd072400ccc6931e87

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/61eebd6ae8e2870a5db98bdf_campus-california-tower.jpg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/css/pennwest.b09fea035.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 99883
date: Wed, 29 Mar 2023 11:20:03 GMT
last-modified: Mon, 24 Jan 2022 14:53:31 GMT
etag: "053d8634c75f02cda57bb1e17dc12f40"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: Fv38UW7EL11RkWh_DSQ8biQrJz49kGD0
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 21945
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5CmAqnbcZxFnwbAivBZZ-ZX5UKhW0vhtYQxqf7QfI5IjAg_Na6Z54Q==
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61fbfb31309b3e43ef47d252_edinboro-hp-campus.jpg

54.230.111.99

200 OK

413 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61fbfb31309b3e43ef47d252_edinboro-hp-campus.jpg
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x830, components 3\012- data
Size
413 kB (412839 bytes)
Hash
2e350b81a0bf525d9d12733549b12769
fc2712d601593333db8dd75bc76135fe40899685
a2fe8ca3898706f2d9fa48a583e5c7f1f26157321e68c330865a5705ee388647

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/61fbfb31309b3e43ef47d252_edinboro-hp-campus.jpg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/css/pennwest.b09fea035.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 412839
date: Sun, 26 Mar 2023 14:15:26 GMT
last-modified: Thu, 03 Feb 2022 15:56:34 GMT
etag: "2e350b81a0bf525d9d12733549b12769"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: uv2NxZI5mOJKs2VI1RU.t_2pxiLCTHYE
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 270622
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: e-s777tKTrgXWkKhCMvbHjqBhkDySwgscPwmUmKOLGXQ9egcYqyF-Q==
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f1a59b41523c20c7099330_hphero.jpg

54.230.111.99

200 OK

660 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f1a59b41523c20c7099330_hphero.jpg
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=\302\251 davidkelly.co, all rights reserved.], baseline, precision 8, 2000x1177, components 3\012- data
Size
660 kB (659852 bytes)
Hash
2ab5f3876de21b34af58c1e59fa28d86
c97269a89361d458a1a8196e735efafb3a084c7d
c652023b0149b43b8fc18cc8179e0794e0d265447eb2204544fa28327dbbde3a

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/61f1a59b41523c20c7099330_hphero.jpg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/css/pennwest.b09fea035.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 659852
date: Wed, 15 Mar 2023 10:20:38 GMT
last-modified: Wed, 26 Jan 2022 19:48:44 GMT
etag: "2ab5f3876de21b34af58c1e59fa28d86"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: GbRrlg3tvF2zYnKpck3mIYe8VaBDfSmk
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 1235109
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Oe1o4qVpwZXfVCqlGcSzZnh6uXPwIKmVI24ZmNP2IIeHkSRBUCD3eA==
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61eebd6ab4daa7b1670b8bf7_campus-clarion.jpg

54.230.111.99

200 OK

88 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61eebd6ab4daa7b1670b8bf7_campus-clarion.jpg
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x667, components 3\012- data
Size
88 kB (88093 bytes)
Hash
4c079d83b4fe2d36eab2d7fa3ef56a39
ca2e37b0fff79c518dc2de5f90751d9008be7b14
402ba7285b9f19be3533125cb775af2b5faea0859c06a660d1d8193e3d538bd0

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/61eebd6ab4daa7b1670b8bf7_campus-clarion.jpg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/css/pennwest.b09fea035.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 88093
date: Sun, 26 Mar 2023 14:15:26 GMT
last-modified: Mon, 24 Jan 2022 14:53:31 GMT
etag: "4c079d83b4fe2d36eab2d7fa3ef56a39"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: ms5wRwdRbBRKzV6ZsfSaGuQEw1YL028B
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 270622
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J8CMad2d92uucqndg6Uq8O171-IwtLcBqcbQcJM9JreOxoi1IRWPdg==
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/6393469e6d8df42e349e4378_icons8-search-more-30%20(1).png

54.230.111.99

200 OK

493 B

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/6393469e6d8df42e349e4378_icons8-search-more-30%20(1).png
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
493 B (493 bytes)
Hash
62442cb4b3074de6d25413f5a3858e7d
d92ae05195431ff151b7102cc83d277ab4ed3a8f
11703120ba35b1e39d3a0dc95c1456a1162426d35b73c118536b14349c4224c4

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/6393469e6d8df42e349e4378_icons8-search-more-30%20(1).png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 493
date: Tue, 21 Mar 2023 08:25:00 GMT
last-modified: Fri, 09 Dec 2022 14:30:55 GMT
etag: "62442cb4b3074de6d25413f5a3858e7d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: b80LLvuQkCbIELod_M_CzYBr3Xj_AGhm
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 723648
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: U92sFsx-QMKUAtY8gstnWJzKtWQEznpwivV3XnQsY4zm5Gn1VYp60A==
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f6b3bb903e6f7394985c0ae662919208
ee3cb0fbd0017ed3a001ce195bc0cfa386979567
c6b84721f8ea52808c9884b612ffeaa16fe1e14345d9561135fbcf738a56dd2b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f2f7be82487099d9e7117d_logo-pw.png

54.230.111.99

200 OK

11 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f2f7be82487099d9e7117d_logo-pw.png
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
PNG image data, 500 x 163, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10611 bytes)
Hash
fefdcb95586afc4688c1e49f159fc25d
b680e6b65e55963f9bf105b603343fc33ab34723
6d46363fbaa5ee61ac992413ab744176f0da4c8b23d7c5ac347b6771bbd7aa4e

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/61f2f7be82487099d9e7117d_logo-pw.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 10611
date: Wed, 22 Mar 2023 01:10:14 GMT
last-modified: Thu, 27 Jan 2022 19:51:27 GMT
etag: "fefdcb95586afc4688c1e49f159fc25d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: MlepacewXU6XCl8jtzLzlAxMtMEfHTpi
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 663334
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: W4rYzv5ebdvrstnx6D38NSghPKi6ckiFDDRITK2Vm-Wj0iHvuE7jTw==
X-Firefox-Spdy: h2

use.typekit.net/af/2555e1/00000000000000007735e603/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3

23.36.76.186

200 OK

31 kB

URL HTTP/2
use.typekit.net/af/2555e1/00000000000000007735e603/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 30704, version 1.0\012- data
Size
31 kB (30704 bytes)
Hash
cbae49bae5cbc8469c1a53a6bfbd5b15
a9fd98171826997827d0d02dab92318be2d7d639
a33128c94dd3c425bc3f4a9ba389a1f3d7a75233e8cb788ea80f8f43a3d68423

HTTP Headers

GET /af/2555e1/00000000000000007735e603/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 30704
etag: "09d1a94c81035c62708e0a513ee76d7886d15a25"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=61d6fd0e48b8c90ff2b291b8

54.230.245.192

200 OK

60 kB

URL HTTP/2
d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=61d6fd0e48b8c90ff2b291b8
IP
54.230.245.192:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65451)
Size
60 kB (60534 bytes)
Hash
456c999fc29fef2adcbba7986673c77c
7c0ca5f2ea51c3ae31b931b1bd61bc35ba07746f
03fe757d743708c725b6962d875800d930006ff6e67c9d627139df46a807c882

HTTP Headers

GET /js/jquery-3.5.1.min.dc5e7f18c8.js?site=61d6fd0e48b8c90ff2b291b8 HTTP/1.1
Host: d3e54v103j8qbb.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 20 Jul 2020 17:53:02 GMT
server: AmazonS3
content-encoding: br
date: Tue, 28 Mar 2023 18:47:20 GMT
cache-control: max-age=84600, must-revalidate
etag: W/"dc5e7f18c8d36ac1d3d4753a87c98d0a"
vary: Accept-Encoding
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
age: 81513
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CU0ZfpxfEHkpO3zz2b-7uG-RmB9p-u6Y6VglwVd33r86NJ3x1gVNZQ==
X-Firefox-Spdy: h2

use.typekit.net/af/efe4a5/00000000000000007735e609/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3

23.36.76.186

200 OK

30 kB

URL HTTP/2
use.typekit.net/af/efe4a5/00000000000000007735e609/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 29820, version 1.0\012- data
Size
30 kB (29820 bytes)
Hash
22f210f896c47ca032dee5d32edfee1d
18a0f2b6d98fe442047fa2b232705b1587b407cd
c4d04d2b6a041dde11c80d8332f983a58c1031c663ab4f42230899cb82adf4a7

HTTP Headers

GET /af/efe4a5/00000000000000007735e609/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 29820
etag: "6aeae62b893768150f3460329dc461358e8ab2f5"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/1600bb/00000000000000007735bd60/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3

23.36.76.186

200 OK

33 kB

URL HTTP/2
use.typekit.net/af/1600bb/00000000000000007735bd60/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 32956, version 1.0\012- data
Size
33 kB (32956 bytes)
Hash
072c0e102fb00f583f4b72d9e81f6608
9de113854db2220fdbf55938af1e3bc52998d49a
a53bd19cb0133bb488008f2b32de389e63b5cd5b581bd6707b646d247dd89a2a

HTTP Headers

GET /af/1600bb/00000000000000007735bd60/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 32956
etag: "663edeba7bc32f282cf5739ac42424d2ccd6e720"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f2f7bef100f1af8bf5dd04_logo-pw-edinboro.png

54.230.111.99

200 OK

12 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f2f7bef100f1af8bf5dd04_logo-pw-edinboro.png
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
PNG image data, 500 x 168, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (11989 bytes)
Hash
b72a56e4f7d23498f7e23b6abb6db30c
e374a959cf341007b713b9eaf7c550fc529627fd
a97b4dd822c818611aa6682460610c4995920584753b9aae3cc2028b6e40e90e

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/61f2f7bef100f1af8bf5dd04_logo-pw-edinboro.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 11989
date: Wed, 29 Mar 2023 11:20:02 GMT
last-modified: Thu, 27 Jan 2022 19:51:27 GMT
etag: "b72a56e4f7d23498f7e23b6abb6db30c"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: 6xYgNWQhvFeS6fbVneBT41tb7kCW4n7.
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 21946
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: g7zhdy_RsERSxGXhG9c311cx-nL5_Gcj9iVkTx7m4NGHcb3VK0yrIg==
X-Firefox-Spdy: h2

use.typekit.net/af/bc8dce/00000000000000007735bd54/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3

23.36.76.186

200 OK

35 kB

URL HTTP/2
use.typekit.net/af/bc8dce/00000000000000007735bd54/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 34924, version 1.0\012- data
Size
35 kB (34924 bytes)
Hash
029138dfe7b1cfea364a9eb52f168505
9e2c974ef7ffdbdd426d22a1045f6c26b3d5595c
92ba9edf0711650be5b11667d4b3c84b7b70df24a761f21546d2662fb4e5a113

HTTP Headers

GET /af/bc8dce/00000000000000007735bd54/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 34924
etag: "f758ab037009fb1bba5369edc34be8ca58b3645b"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/23e139/00000000000000007735e605/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3

23.36.76.186

200 OK

30 kB

URL HTTP/2
use.typekit.net/af/23e139/00000000000000007735e605/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 30440, version 1.0\012- data
Size
30 kB (30440 bytes)
Hash
275e628fe5e7a868673dc5eeba0c4a6b
60433a218a516fdce2e85635bf068bfad3345a0e
38e9ade7cb9f7a31a4525f2a70c4bdd2529340926202641bbbda8d655df8c0c3

HTTP Headers

GET /af/23e139/00000000000000007735e605/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 30440
etag: "a21f48c40e7bf9dfada3e63deed3f84d0cf8b79b"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/8738d8/00000000000000007735e611/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n8&v=3

23.36.76.186

200 OK

31 kB

URL HTTP/2
use.typekit.net/af/8738d8/00000000000000007735e611/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n8&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 30712, version 1.0\012- data
Size
31 kB (30712 bytes)
Hash
7a759f76d8081794466d462b1d162606
6b7cf2dfd19ba7d69a1d59a93b6abb728d7858b4
9d3f83f03093cf759bab6ae85f0a6c38effa5926c3480464891d66e57bf971e9

HTTP Headers

GET /af/8738d8/00000000000000007735e611/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n8&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 30712
etag: "14ee8fe0efb856359935300cf808b5802a96c438"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/78aca8/00000000000000007735e60d/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3

23.36.76.186

200 OK

30 kB

URL HTTP/2
use.typekit.net/af/78aca8/00000000000000007735e60d/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 29764, version 1.0\012- data
Size
30 kB (29764 bytes)
Hash
1c31738f70804d3751315aa4e84f9ca7
c9bd6470521b8539beb3a836e256549bb1dbdcb3
b07871da02311868c31ab6ac5a4e78cc877f118acd854857f6f51519f3ddbbc9

HTTP Headers

GET /af/78aca8/00000000000000007735e60d/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 29764
etag: "1d1aed9a298449b26ef6d57c78caa88b6b5de306"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f2f7bfae1b3418ce12ee39_logo-pw-california.png

54.230.111.99

200 OK

12 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f2f7bfae1b3418ce12ee39_logo-pw-california.png
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
PNG image data, 500 x 163, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12100 bytes)
Hash
407ece7e60dd962c54c5d3889ebfc5d0
74e45f0d771c435807965dfc1d4f8ee6b9c60375
0833b864b96884c873e21d8298df6a55e6fe1d50a5595f71704521764e99b744

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/61f2f7bfae1b3418ce12ee39_logo-pw-california.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 12100
date: Sun, 26 Mar 2023 14:15:25 GMT
last-modified: Thu, 27 Jan 2022 19:51:28 GMT
etag: "407ece7e60dd962c54c5d3889ebfc5d0"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: oKeeBOIcrxRfigWuTXK8T3n7NhTjirwz
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 270623
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T03uaf2C-jlbKP0VH6KmXCxWDx8rFNlAyT8o4E8GthLXVXVYZgd2Xg==
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f2f7be181a65ef26067c48_logo-pw-clarion.png

54.230.111.99

200 OK

12 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f2f7be181a65ef26067c48_logo-pw-clarion.png
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
PNG image data, 500 x 164, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (11565 bytes)
Hash
d68ee20841df8ee6423bbcf7339846a3
11ad311a2e09ad9c8f28b9a711f92bcf2d760b77
9261376b4d00dc7a834860591ef7ac646bf8cf258ffcf11996f751d5bd0c49f4

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/61f2f7be181a65ef26067c48_logo-pw-clarion.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 11565
date: Wed, 29 Mar 2023 11:20:03 GMT
last-modified: Thu, 27 Jan 2022 19:51:27 GMT
etag: "d68ee20841df8ee6423bbcf7339846a3"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: HEmgyJIvJRHohkfnoBcv8P0ujw16WhGc
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 21945
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5qD14TKcy7llUovELVjaIRqYVSwkL68whD1b6M8DUFvTTZlK5CX7dw==
X-Firefox-Spdy: h2

use.typekit.net/af/d83550/00000000000000007735e60a/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3

23.36.76.186

200 OK

31 kB

URL HTTP/2
use.typekit.net/af/d83550/00000000000000007735e60a/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 30984, version 1.0\012- data
Size
31 kB (30984 bytes)
Hash
538750e0205513eade51b115746a3716
fd676684c405e127d295ee43b13e43e17f40e81c
ce0f356d592d02152f2081d33706426e3e734a75a08410c7f0a9c4cb659461ad

HTTP Headers

GET /af/d83550/00000000000000007735e60a/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 30984
etag: "c42780d819255cb2c5023f52550f9fa66711c340"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f2f7be9d538b5d94f4bcca_logo-pw-go.png

54.230.111.99

200 OK

13 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f2f7be9d538b5d94f4bcca_logo-pw-go.png
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
PNG image data, 500 x 162, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12860 bytes)
Hash
4e076a2c5544f57394fb6fc6f49ff344
12d892bca3532a45301bb036df38a9b870d58c20
fb6573ffcb53b5d1f220e34eb8f5d55dd4ab225f2519bd5760f795df1c3cd966

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/61f2f7be9d538b5d94f4bcca_logo-pw-go.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 12860
date: Sun, 26 Mar 2023 14:15:25 GMT
last-modified: Thu, 27 Jan 2022 19:51:27 GMT
etag: "4e076a2c5544f57394fb6fc6f49ff344"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: 0yKqu9XCPEnAKFJ69CtQy0Jk_kR6gq.I
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 270623
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mYSm_SNBSyWItHcoLuACqL5GrMfTt0jLV1IgEyDWcIOGVKf0xuWPaw==
X-Firefox-Spdy: h2

use.typekit.net/af/4de20a/00000000000000007735e604/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3

23.36.76.186

200 OK

32 kB

URL HTTP/2
use.typekit.net/af/4de20a/00000000000000007735e604/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 32312, version 1.0\012- data
Size
32 kB (32312 bytes)
Hash
5ff1cf50b03d3ceee57220b225bd14b9
85ea6fb539442c9f36c5c2954c9f7a5e2734c82f
9e68a48da384399ceeff9848067071cd266d829ae02bd9ca97f3f5f3d6a9fa3c

HTTP Headers

GET /af/4de20a/00000000000000007735e604/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 32312
etag: "59a4b2c03f9b7609599aab6c503269f21dd7d06e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/6260ad6dd227dd7fddbb6b74_pw-student-california.jpg

54.230.111.99

200 OK

24 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/6260ad6dd227dd7fddbb6b74_pw-student-california.jpg
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 356x767, components 3\012- data
Size
24 kB (23790 bytes)
Hash
a7261220004cb49de04482a80b5b95ec
ff06c06f88595b4ecebd16e6bb420ddc83fd72ec
25d958f49d00864e42b228875053c0745b3ac8e8c368466b81725c6e53f5c3b5

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/6260ad6dd227dd7fddbb6b74_pw-student-california.jpg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 23790
date: Sun, 26 Mar 2023 14:15:25 GMT
last-modified: Thu, 21 Apr 2022 01:03:43 GMT
etag: "a7261220004cb49de04482a80b5b95ec"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: 2u7DOiZIFdQLUtK549_Kt9UyvADshH9e
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 270623
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wzAiGZ6sETeLN3JMC4b3pZew7BxpEclTL1ao817CoYONPhUlB_U7tw==
X-Firefox-Spdy: h2

use.typekit.net/af/58acf5/00000000000000007735e622/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i8&v=3

23.36.76.186

200 OK

32 kB

URL HTTP/2
use.typekit.net/af/58acf5/00000000000000007735e622/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i8&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 32092, version 1.0\012- data
Size
32 kB (32092 bytes)
Hash
0532168a4e3fd8a192e70cd895ba2dc8
13c0434b940d90e550eba36393a22dab1c215e95
c200479f51e1ed73ecd8db49b4f9432e007b5d4a0a31d2f953822568ea2b5c97

HTTP Headers

GET /af/58acf5/00000000000000007735e622/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i8&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 32092
etag: "57a6809df81933e0a47c2106fc05b45cfea880eb"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/6260ad6d80ad3596744e9a6b_pw-student-clarion.jpg

54.230.111.99

200 OK

27 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/6260ad6d80ad3596744e9a6b_pw-student-clarion.jpg
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 356x767, components 3\012- data
Size
27 kB (26652 bytes)
Hash
1acb6bdb22b7874be161088733fd437b
5498dd5a48afc10a57209e6367292fd06ef7d00b
a25b8639f138473b9b41778cd788bd1214a8e626a18aff061c1858ebfccdc42d

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/6260ad6d80ad3596744e9a6b_pw-student-clarion.jpg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 26652
date: Sun, 26 Mar 2023 14:15:25 GMT
last-modified: Thu, 21 Apr 2022 01:03:43 GMT
etag: "1acb6bdb22b7874be161088733fd437b"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: _wu.5ThXeFGmB.ipRq1K6S1m8GZbTDMK
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 270623
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: shu0SubdpCOrqRMHCbBLhOsV6TRSrHIGxYMiE2R99ZUNx8MVDe197w==
X-Firefox-Spdy: h2

use.typekit.net/af/154cda/00000000000000007735e601/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n1&v=3

23.36.76.186

200 OK

29 kB

URL HTTP/2
use.typekit.net/af/154cda/00000000000000007735e601/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n1&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 28764, version 1.0\012- data
Size
29 kB (28764 bytes)
Hash
46444d3011ed4d27a42c3c07da7cf343
e4aabfe359c882a3f66e7bcb8902c136fe35d438
c862e09dc14a6d0ba890b78cb2f57a6e1df993395106e91bf95d202fc33c4b60

HTTP Headers

GET /af/154cda/00000000000000007735e601/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n1&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 28764
etag: "bb527db1d82be3f299f746453df8abe5f2b6ac67"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/6260ad6d9e472569af8f8caf_pw-student-edinboro.jpg

54.230.111.99

200 OK

27 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/6260ad6d9e472569af8f8caf_pw-student-edinboro.jpg
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 356x767, components 3\012- data
Size
27 kB (26597 bytes)
Hash
b83d8328fe8054849b281e41d19268cb
49ad638dd1d8c6940a866aa4a5f3a11578c9233e
b7d1412312eb80ee7ee96592068230badf975ea7e4562cd2a94114cf19bce757

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/6260ad6d9e472569af8f8caf_pw-student-edinboro.jpg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 26597
date: Tue, 14 Mar 2023 12:05:28 GMT
last-modified: Thu, 21 Apr 2022 01:03:43 GMT
etag: "b83d8328fe8054849b281e41d19268cb"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: dRvydQDA3Zhsr50AzvaSlKrBaf_llUYS
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 1315220
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qtzvSa9c66JK-pwEHjp1sOY74xX3jyas5n5GjG1l-se7M1qZP3P3Yw==
X-Firefox-Spdy: h2

use.typekit.net/af/7283cd/00000000000000007735e608/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i1&v=3

23.36.76.186

200 OK

30 kB

URL HTTP/2
use.typekit.net/af/7283cd/00000000000000007735e608/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i1&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 30244, version 1.0\012- data
Size
30 kB (30244 bytes)
Hash
3340b995af6ea3da91d4cf4ea651e983
1db3fb78031f64dc712669144699ad348e7cd1eb
22ad3fbc37b5eda2d488eb0d75b3f9d67d327ba4c21e4bd0c0caf3e03bb99fa0

HTTP Headers

GET /af/7283cd/00000000000000007735e608/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i1&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 30244
etag: "fc85207db6e91703a4278329beefdaa4d7ef92f0"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61eebd6afd771729b950bf83_academics-p-1600.jpeg

54.230.111.99

200 OK

89 kB

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61eebd6afd771729b950bf83_academics-p-1600.jpeg
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 1600x1066, components 3\012- data
Size
89 kB (88675 bytes)
Hash
6770ca521dc7b1979d0e092f8f89489e
f80bb4c977e049f59226046fd63e8228738524c6
8a1b07fc18aecc689e35c50b70fe32999650ddd75fc0e5f17a18e81ad87c5825

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/61eebd6afd771729b950bf83_academics-p-1600.jpeg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 88675
date: Mon, 20 Mar 2023 06:05:34 GMT
last-modified: Mon, 24 Jan 2022 14:53:36 GMT
etag: "6770ca521dc7b1979d0e092f8f89489e"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: p2bD3iolWdFyRxgFcudFgFKM1CaelWON
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 818414
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2soTkQHXvI3Vzman9TI5z2pXRLu0YKqcewKYvyNwtPDBup8SIQy0kg==
X-Firefox-Spdy: h2

use.typekit.net/af/144da4/00000000000000007735e619/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i6&v=3

23.36.76.186

200 OK

31 kB

URL HTTP/2
use.typekit.net/af/144da4/00000000000000007735e619/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i6&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 30992, version 1.0\012- data
Size
31 kB (30992 bytes)
Hash
1afbe6ed81de0e7bd4fec2ae0982d7b2
1ce70b4c58428f48c73fc67a58c5e6de1438994e
a74ee265f5a490c09bdc8c45acbe58543a11971d63b9c8de6f6b709fbd79e681

HTTP Headers

GET /af/144da4/00000000000000007735e619/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 30992
etag: "b3c4560c9c21c17e860a7847836a63e08d8c1f46"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/3322cc/00000000000000007735e616/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3

23.36.76.186

200 OK

32 kB

URL HTTP/2
use.typekit.net/af/3322cc/00000000000000007735e616/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 31620, version 1.0\012- data
Size
32 kB (31620 bytes)
Hash
76bb0b958a918b4d270df75ecf0be2fe
0144c98769bddbfd91ed23a0d0b1d5d86b6b6465
19be36b532c3147a005317cbc940c69b7137c7980a462525055393d3cfd20b30

HTTP Headers

GET /af/3322cc/00000000000000007735e616/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 31620
etag: "45b6acdd85bc39b5dfc108ace1ad2dbe5fca28ba"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/1be3c2/00000000000000007735e606/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3

23.36.76.186

200 OK

30 kB

URL HTTP/2
use.typekit.net/af/1be3c2/00000000000000007735e606/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 30008, version 1.0\012- data
Size
30 kB (30008 bytes)
Hash
87134cfe780ff70f856859728fd83d50
608fc48bf1d3bdf918f273ed6150a438a030bfc6
34983ec5da74c95f7b9aba9e7abd42ca76b95cde4c06f476f6bfeb5547bd85ef

HTTP Headers

GET /af/1be3c2/00000000000000007735e606/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 30008
etag: "174f4ede5c586799404565373f175cfaf1562181"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/40d372/00000000000000007735e607/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i3&v=3

23.36.76.186

200 OK

32 kB

URL HTTP/2
use.typekit.net/af/40d372/00000000000000007735e607/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i3&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 31652, version 1.0\012- data
Size
32 kB (31652 bytes)
Hash
e0bbde16beedb8998dd18628b778bc34
299e963a4fa21cb7293684e630f15f739947c732
4902549b48d7ff4f031ae6460e12dd960510ada7e1dfca654b8beb117b0ddff3

HTTP Headers

GET /af/40d372/00000000000000007735e607/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 31652
etag: "01c852f9fa366dcbc0e5f55fac36fa3969f7f517"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/79862c/00000000000000007735e60e/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i5&v=3

23.36.76.186

200 OK

32 kB

URL HTTP/2
use.typekit.net/af/79862c/00000000000000007735e60e/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i5&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 31808, version 1.0\012- data
Size
32 kB (31808 bytes)
Hash
663c4dd70d612b6c28ac59554e55f0a0
74b9f44968c27c844fb1be78552e4be14f604ca2
2517eb1a7ae21f813fe2b074dd0ba1091bc5ad60356750b04de79a6328960c71

HTTP Headers

GET /af/79862c/00000000000000007735e60e/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 31808
etag: "3052a163916f5fec8bb4e0e05e0626f98e630ac0"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-WS9K3WB

142.250.74.168

200 OK

77 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-WS9K3WB
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (19933)
Size
77 kB (77228 bytes)
Hash
62fb40d58a8a1a77bafa23cfbc382499
637244d062c17451fb36bbb2701af10c13a6d0c0
c1d1a78ac9003449703170a3e93e273ed288a0288576913d505ca013facc35cf

HTTP Headers

GET /gtm.js?id=GTM-WS9K3WB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 29 Mar 2023 17:25:47 GMT
expires: Wed, 29 Mar 2023 17:25:47 GMT
cache-control: private, max-age=900
last-modified: Wed, 29 Mar 2023 16:28:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77228
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

use.typekit.net/af/2bf1e0/00000000000000007735bd30/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n1&v=3

23.36.76.186

200 OK

32 kB

URL HTTP/2
use.typekit.net/af/2bf1e0/00000000000000007735bd30/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n1&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 32148, version 1.0\012- data
Size
32 kB (32148 bytes)
Hash
e1967cc440ee83ec2b086c522eaa099f
a1b37d93d6de3e451b1e42f5105abaf0949fe8b6
27753fd0d48d23f6b2a520104c1c2c00fc68da3daad6dad4a9b0d1e25c7ef60e

HTTP Headers

GET /af/2bf1e0/00000000000000007735bd30/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n1&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 32148
etag: "91529f056e52aed69ac55a5c1ce1a609320b3eec"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/531077/00000000000000007735bd33/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i1&v=3

23.36.76.186

200 OK

34 kB

URL HTTP/2
use.typekit.net/af/531077/00000000000000007735bd33/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i1&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 34204, version 1.0\012- data
Size
34 kB (34204 bytes)
Hash
1a039c2a84bdfacddc4c495a2939ba01
5f9a912eb02284c2b73505fc41c750c5961bdac3
ee01a3ccca0c7f393e1267af2983d2fb1a22101904efc577d703d855bb47b61e

HTTP Headers

GET /af/531077/00000000000000007735bd33/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i1&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 34204
etag: "19d1a7d6e0e475af10657bfc5990e31170b99a6c"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/02b240/00000000000000007735bd36/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n2&v=3

23.36.76.186

200 OK

34 kB

URL HTTP/2
use.typekit.net/af/02b240/00000000000000007735bd36/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n2&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 34188, version 1.0\012- data
Size
34 kB (34188 bytes)
Hash
5e8b09c836809c268f60508402219ebc
a8966993bd859398458f32da4edc0e9730d7bc94
e3f38474e81dbd12c13d90a2ad58b3cf2d8b4e441bfb3c839854675e4eb394c8

HTTP Headers

GET /af/02b240/00000000000000007735bd36/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n2&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 34188
etag: "91c8fcfc996ba76d8addfdc860f1b57a27943d51"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/8b60e2/00000000000000007735bd39/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i2&v=3

23.36.76.186

200 OK

35 kB

URL HTTP/2
use.typekit.net/af/8b60e2/00000000000000007735bd39/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i2&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 35188, version 1.0\012- data
Size
35 kB (35188 bytes)
Hash
fd71f902a28c211c211c11814e2de5a6
a419e29b2c3447c3a91a3be50ad019d69c8c2e44
f7fd0f5b507259980ee0c1d7c8c94a833e44709da532ef24336d75f8a438f4b1

HTTP Headers

GET /af/8b60e2/00000000000000007735bd39/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i2&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 35188
etag: "797613f046c28cb80969a123c2e60aceb97a6493"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/b7e35e/00000000000000007735bd3d/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3

23.36.76.186

200 OK

35 kB

URL HTTP/2
use.typekit.net/af/b7e35e/00000000000000007735bd3d/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 34616, version 1.0\012- data
Size
35 kB (34616 bytes)
Hash
8154615490664b710eac5768e3da9db2
995635d4e99943a2b767cefda3976cc59d3580c5
531f7ca988388e6733388339eb139e19df750e00398a49febee76b36d7958d91

HTTP Headers

GET /af/b7e35e/00000000000000007735bd3d/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 34616
etag: "c006a251aad61f92292f514ce5a64284c514937c"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/9b3784/00000000000000007735bd42/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3

23.36.76.186

200 OK

35 kB

URL HTTP/2
use.typekit.net/af/9b3784/00000000000000007735bd42/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 34908, version 1.0\012- data
Size
35 kB (34908 bytes)
Hash
76043a9a707a78a03947c796a7a03bf4
95681f15b315d800f397ac79410dee96b1fc29b6
713f8445e09eb9798d4f5e6ac2f26e3c074d83d374db789dd17ae2814458b4fd

HTTP Headers

GET /af/9b3784/00000000000000007735bd42/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 34908
etag: "ff194ac4953492d30136ea02b98cd5ce025d81b7"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/d1b2b6/00000000000000007735bd40/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i3&v=3

23.36.76.186

200 OK

36 kB

URL HTTP/2
use.typekit.net/af/d1b2b6/00000000000000007735bd40/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i3&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 35968, version 1.0\012- data
Size
36 kB (35968 bytes)
Hash
4099f8bb99b6de653d35bd41db595e0d
95210f4843269209de9f2d22f25877aa6540251e
934ec43c366401990f638a188d7895c5c6e16040d36082d902f1621c2e39098f

HTTP Headers

GET /af/d1b2b6/00000000000000007735bd40/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 35968
etag: "63349df156c8514f222c68bc8acac359c5e3328c"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/8c2f3e/00000000000000007735bd45/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3

23.36.76.186

200 OK

36 kB

URL HTTP/2
use.typekit.net/af/8c2f3e/00000000000000007735bd45/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 36200, version 1.0\012- data
Size
36 kB (36200 bytes)
Hash
0dbe03bbd54a09d98ba9f93361c31bec
bad382fe1cff65f069c3f54fece361d3bb1a768d
f03c4eb52b95247413ad9ed86587d0fac5fbe9389fde51dfbb84786fc89abc50

HTTP Headers

GET /af/8c2f3e/00000000000000007735bd45/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 36200
etag: "b7c8da3f72c376eeed34ca6e144141f95f31cc93"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/09a118/00000000000000007735bd48/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3

23.36.76.186

200 OK

35 kB

URL HTTP/2
use.typekit.net/af/09a118/00000000000000007735bd48/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 35336, version 1.0\012- data
Size
35 kB (35336 bytes)
Hash
7fbc771aa84951ac21fb8f57b42bd7af
168f4d05cc4bdea2513073ec08adc3ceb16faa62
0bfc2fd332acaecc6cdb3f43e9d25b8b4287962206253d0dce76602bc6dafdfd

HTTP Headers

GET /af/09a118/00000000000000007735bd48/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 35336
etag: "adaafa080782f715728ea91365081d4a54a65f3c"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/fcc3ec/00000000000000007735bd4b/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i5&v=3

23.36.76.186

200 OK

37 kB

URL HTTP/2
use.typekit.net/af/fcc3ec/00000000000000007735bd4b/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i5&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 37388, version 1.0\012- data
Size
37 kB (37388 bytes)
Hash
709e6a5b92aa64f26fefa0cf7e5d8cf7
17e1c0997f61797dcf4dfc6fa2d96d0c6d8d191a
e5bccea6bf0848e501768289c9a06ad84bb725d2a598cddd202c7397e1e702ea

HTTP Headers

GET /af/fcc3ec/00000000000000007735bd4b/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 37388
etag: "694ca4ac9e2acffad317ebe73f504212e31f7a3f"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/87c529/00000000000000007735bd4e/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3

23.36.76.186

200 OK

35 kB

URL HTTP/2
use.typekit.net/af/87c529/00000000000000007735bd4e/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 35064, version 1.0\012- data
Size
35 kB (35064 bytes)
Hash
d99b5e47b96651a37f96dcf4b47552e7
3d6361e3f67afe0ab5ef4ef8f2fe78d3f292c03b
04e9f2c747ffd94fbd038e3642ba75c924844c7ef007d5e8c2a685ca573dfe85

HTTP Headers

GET /af/87c529/00000000000000007735bd4e/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 35064
etag: "259b006823490729577d2f98bbc331980708e355"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/b4b599/00000000000000007735bd51/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i6&v=3

23.36.76.186

200 OK

37 kB

URL HTTP/2
use.typekit.net/af/b4b599/00000000000000007735bd51/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i6&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 37232, version 1.0\012- data
Size
37 kB (37232 bytes)
Hash
47fa04298eb83ab336d27e0d3b9c2b49
faf8872954ca0687562a59790cd6b16f0bc825cf
51301741582adf953753d49b73e80d1e6e355256508c8751385c145013e3ee08

HTTP Headers

GET /af/b4b599/00000000000000007735bd51/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 37232
etag: "405e72ed70d65de9c7f36474859ccc0f86e42851"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/2ae4d5/00000000000000007735bd57/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3

23.36.76.186

200 OK

37 kB

URL HTTP/2
use.typekit.net/af/2ae4d5/00000000000000007735bd57/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 36796, version 1.0\012- data
Size
37 kB (36796 bytes)
Hash
dc3a0dc0b8558cc327e96126a1dbe5c1
7d708c91b8a2d5afaf492e112adf4e71c7fca39c
9dccbf9b3800a1be3e10e89bb0d8d8ee6aeee19f3992997954e197782755d370

HTTP Headers

GET /af/2ae4d5/00000000000000007735bd57/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 36796
etag: "7e80506911faf46c6736dd4105024ad2126410ac"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/709a07/00000000000000007735bd5d/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i8&v=3

23.36.76.186

200 OK

37 kB

URL HTTP/2
use.typekit.net/af/709a07/00000000000000007735bd5d/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i8&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 37068, version 1.0\012- data
Size
37 kB (37068 bytes)
Hash
76f6647bf3424e92e3934a54b9a79945
23396d4e0b34c9f2b1c74a8fc11f0b31fc12be1e
aa5dd1895144555a9ff7a15363e962284302414fb20eeebeef9c38b780ce833e

HTTP Headers

GET /af/709a07/00000000000000007735bd5d/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i8&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 37068
etag: "40012c3c81aab03956261f99e26c20e96469b645"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/721561/00000000000000007735bd63/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3

23.36.76.186

200 OK

37 kB

URL HTTP/2
use.typekit.net/af/721561/00000000000000007735bd63/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 36696, version 1.0\012- data
Size
37 kB (36696 bytes)
Hash
d78515516a7fa1b22db9315a742fcab7
0b9ad8dbbfbb8b73900b112215ac269d9b523edf
6c4745d0dc33bba097dea7cb0059cbd0c02dc073eddb1355d02eddbdcd4128cf

HTTP Headers

GET /af/721561/00000000000000007735bd63/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 36696
etag: "36a0c2735cc2f29512e57b492cba5c17859473ea"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

assets-global.website-files.com/img/webclip.png

54.230.111.99

200 OK

3.3 kB

URL HTTP/2
assets-global.website-files.com/img/webclip.png
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3290 bytes)
Hash
5d19a6dc030c169dc83ff100058d12a5
02f70c0b4d6b80ad0c381dae2e040085cecaedae
de999a1af9a15f2946d2eaf8ce3221dc848b15511aefa6498202fb94b3814f06

HTTP Headers

GET /img/webclip.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 3290
last-modified: Fri, 14 Nov 2014 04:58:50 GMT
x-amz-version-id: a2V.5KwLNHT8tEDSKVEss5eY8w0r7A6w
accept-ranges: bytes
server: AmazonS3
date: Wed, 29 Mar 2023 03:15:56 GMT
cache-control: max-age=84600, must-revalidate
etag: "5d19a6dc030c169dc83ff100058d12a5"
vary: Accept-Encoding
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 52709
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lUfYrVuuMHWJYYlXzm5r4GzC9MFWccyC4fUfXQ49kvF7WRjmyEgXSQ==
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f6b3bb903e6f7394985c0ae662919208
ee3cb0fbd0017ed3a001ce195bc0cfa386979567
c6b84721f8ea52808c9884b612ffeaa16fe1e14345d9561135fbcf738a56dd2b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f03f2e82744861cb0b19be_faviconpw.png

54.230.111.99

200 OK

373 B

URL HTTP/2
assets-global.website-files.com/61d6fd0e48b8c90ff2b291b8/61f03f2e82744861cb0b19be_faviconpw.png
IP
54.230.111.99:0
ASN
#16509 AMAZON-02

File type
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Size
373 B (373 bytes)
Hash
e45312c4b904c159bcf90d7609d1501c
8d24afaa4f0612d1b75a190a555b3e73c8f8d248
6d00dbd6cd8a085de14a8861b27529d850af2750751a0e718843813a717ceecb

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/61f03f2e82744861cb0b19be_faviconpw.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 373
date: Wed, 22 Mar 2023 04:12:53 GMT
last-modified: Tue, 25 Jan 2022 18:19:27 GMT
etag: "e45312c4b904c159bcf90d7609d1501c"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: rvfFWib1Q4XdAreUvuvfrTOMEmGEs_k7
accept-ranges: bytes
server: AmazonS3
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
age: 652375
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bH03OOfdh435-srn2OQs9StsNBJjhH_7lgf7iKvL7iOXB4G0A_VK4Q==
X-Firefox-Spdy: h2

p.typekit.net/p.gif?s=1&k=dav7wbi&ht=tk&h=www.pennwest.edu&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.38543.38544.38597.38598.38653.38654.38722.38723.38784.38785.38844.38845.38898.38899.38952.38953.38998.38999&a=17537499&js=1.21.0&app=typekit&e=js&_=1680110771138

23.36.76.186

200 OK

35 B

URL HTTP/2
p.typekit.net/p.gif?s=1&k=dav7wbi&ht=tk&h=www.pennwest.edu&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.38543.38544.38597.38598.38653.38654.38722.38723.38784.38785.38844.38845.38898.38899.38952.38953.38998.38999&a=17537499&js=1.21.0&app=typekit&e=js&_=1680110771138
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
81144d75b3e69e9aa2fa3e9d83a64d03
f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc
9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39

HTTP Headers

GET /p.gif?s=1&k=dav7wbi&ht=tk&h=www.pennwest.edu&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.38543.38544.38597.38598.38653.38654.38722.38723.38784.38785.38844.38845.38898.38899.38952.38953.38998.38999&a=17537499&js=1.21.0&app=typekit&e=js&_=1680110771138 HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: image/gif
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
unused62: 8096267
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a92794d4ab181fd340bf04cb81f1fae3
08a1bf8fdf8a30d5286aa515383a82c50c1af195
33f302c09d765b0496306dcfe6c1647fd6de1aaf86f7513a48515ea3c2575529

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

12542078.fls.doubleclick.net/activityi;src=12542078;type=pennw0;cat=pennw0;ord=8068770545232;gtm=45He33r0;auiddc=935549528.1680110771;~oref=https%3A%2F%2Fwww.pennwest.edu%2F?

142.250.74.70

200 OK

228 B

URL HTTP/2
12542078.fls.doubleclick.net/activityi;src=12542078;type=pennw0;cat=pennw0;ord=8068770545232;gtm=45He33r0;auiddc=935549528.1680110771;~oref=https%3A%2F%2Fwww.pennwest.edu%2F?
IP
142.250.74.70:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (449), with no line terminators
Size
228 B (228 bytes)
Hash
e6be62a0d7181df0020f507ffa39545b
01e6bad9466b3a3fd18870cd7d1afcbca8921d4b
5477df8033eed78ff07372a945cd9387536fcfdb20370257ec6906b3a014bbed

HTTP Headers

GET /activityi;src=12542078;type=pennw0;cat=pennw0;ord=8068770545232;gtm=45He33r0;auiddc=935549528.1680110771;~oref=https%3A%2F%2Fwww.pennwest.edu%2F? HTTP/1.1
Host: 12542078.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 29 Mar 2023 17:25:47 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 228
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 29-Mar-2023 17:40:47 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sc-static.net/scevent.min.js

54.230.82.240

200 OK

13 kB

URL HTTP/2
sc-static.net/scevent.min.js
IP
54.230.82.240:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (30981), with no line terminators
Size
13 kB (13297 bytes)
Hash
cb0afffb4c4b06c93995b261abbbe1d8
6ff098c288fb55945087edf7949669c54a34214b
50ed9c0888e6b8e2b969d7c28bfa069aec377523ca7ea7435d2d160f9add08c4

HTTP Headers

GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13297
server: CloudFront
date: Wed, 29 Mar 2023 17:25:47 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=f4d067c8635448ef8b9c0316e8cd77da;max-age=86400;expires=Thu, 30 Mar 2023 17:13:56 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0coUCgOUMJIqfLlo-fnFW8_lYGBjvw7jitH6kk0hgcYG4eL4kmIrtg==
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a92794d4ab181fd340bf04cb81f1fae3
08a1bf8fdf8a30d5286aa515383a82c50c1af195
33f302c09d765b0496306dcfe6c1647fd6de1aaf86f7513a48515ea3c2575529

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

analytics.tiktok.com/i18n/pixel/events.js?sdkid=CF8PUC3C77U208RT4Q70&lib=ttq

95.101.10.113

200 OK

1.3 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CF8PUC3C77U208RT4Q70&lib=ttq
IP
95.101.10.113:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (2698)
Size
1.3 kB (1330 bytes)
Hash
701fddd19c3394bc855326d757fb1e1e
123c7c4c9fdcad29e7b2db222a49052436648668
df84a5b562b634d4b1f83929245ebc73956e1b08d17dc01e14b0c78401e7e33c

HTTP Headers

GET /i18n/pixel/events.js?sdkid=CF8PUC3C77U208RT4Q70&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230329172547E705BEC0DFEECBFFF6C2
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb616c037d177ce59e2a29555d6813ad6333233865f31b27648effab0cad71da1963072a3d6cbe148a82c8adc490de679b8f8b30a1b646ebd2a10bdac8af7cf6619b425f1d2fc751db19445042686524ffc
content-encoding: gzip
expires: Wed, 29 Mar 2023 17:25:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 29 Mar 2023 17:25:47 GMT
content-length: 1330
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
vary: Accept-Encoding
set-cookie: _ttp=2NhKCg51kEiwnM8Fpd8TnwvSEM1; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=1, origin; dur=95
x-origin-response-time: 95,95.101.10.109
x-akamai-request-id: 1d014a5d
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
381f9138e94627dde5e0507aed831eba
80ef9676c6ca078a78ffd32af0c461ad7dec3d93
45b931cbc440229c33b9106440f3736b0a8c79887b29efc33763d282da2d0eb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 29 Mar 2023 17:25:47 GMT
Etag: "6422e7d1-1d7"
Last-Modified: Wed, 29 Mar 2023 15:47:30 GMT
Server: ECAcc (dcb/7E9A)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: o8-heqMRDI0Z_pZwHU-rmT-lBZ0sym1V2fF96wEK9yAyZOiGtP4OEA==
Age: 5897

pixel.mathtag.com/event/js?mt_id=1595286&mt_adid=254523&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3=

23.38.200.207

200 OK

1.4 kB

URL HTTP/1.1
pixel.mathtag.com/event/js?mt_id=1595286&mt_adid=254523&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3=
IP
23.38.200.207:0
ASN
#16625 AKAMAI-AS

File type
ASCII text
Size
1.4 kB (1439 bytes)
Hash
395b1608ef9516964bd3b28767abab67
09f8b11e0ba94143b29be30e1de941aebfeea1b3
a58369e195f73878c7eed470a380e06221844c81ec4ba0269c3b9f64db3d5a9e

HTTP Headers

GET /event/js?mt_id=1595286&mt_adid=254523&mt_exem=&mt_excl=&v1=&v2=&v3=&s1=&s2=&s3= HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 1439
Access-Control-Allow-Origin: *
Server: MT3 668 4401257 master ord-pixel-x15 config_version:"unknown"
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Wed, 29 Mar 2023 17:25:46 GMT
Date: Wed, 29 Mar 2023 17:25:47 GMT
Connection: keep-alive
Set-Cookie: uuid=0a546424-749b-4400-a56f-e0c4eadc778e; domain=.mathtag.com; path=/; expires=Thu, 25-Apr-2024 17:25:47 GMT; SameSite=None; Secure

analytics.tiktok.com/i18n/pixel/static/main.MTU1Nzk2ZDUwMA.js

95.101.10.113

200 OK

66 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/static/main.MTU1Nzk2ZDUwMA.js
IP
95.101.10.113:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (21931)
Size
66 kB (66519 bytes)
Hash
d3166642d0a5f1e237d4bd67bb57deb9
0d128f46a0f9924138ddaf20874a4de4f9698e0e
6abc11c1cf32e64ec6ba834866ca0eb449066a0c845c67bfbe2c0d8f5fb4cdd1

HTTP Headers

GET /i18n/pixel/static/main.MTU1Nzk2ZDUwMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Cookie: _ttp=2NhKCg51kEiwnM8Fpd8TnwvSEM1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202303281506520C28F957835DDF7C735C
x-tt-trace-host: 01e9b3dc8e3c0089b207cf07e1e2eea856e326e803fe81b0e5910dba33e5b58af000fef5da2465929fc2479df02071a372831001dad34e6f28d1fb6fde71cc2df8552ba0f49645c561cafa935734c43f1d617c9eb933cafdd9d1904ebc5c0bab4e
content-encoding: gzip
content-length: 66519
date: Wed, 29 Mar 2023 17:25:47 GMT
x-cache: TCP_HIT from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 1d014ad4
X-Firefox-Spdy: h2

adp.eab.com/js/adp.min.js

54.230.111.49

200 OK

98 B

URL HTTP/2
adp.eab.com/js/adp.min.js
IP
54.230.111.49:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
98 B (98 bytes)
Hash
80c22bb2195eadcf3bc1a714bb8f7506
403254ca85b271ff9662d18de0c5a0c18f1883ff
a810b5e9577106a78132037cc757b069dbf38f52cbca94eb370820aed1389aef

HTTP Headers

GET /js/adp.min.js HTTP/1.1
Host: adp.eab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 98
last-modified: Tue, 25 Oct 2022 20:44:11 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 29 Mar 2023 17:25:47 GMT
cache-control: no-store
expires: Thu, 01 Jan 1970 00:00:00 GMT
etag: "80c22bb2195eadcf3bc1a714bb8f7506"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: COvKvJyXxE3dL8zmNqAil-oYQgKryAJR75im_gUdZ95W4U8XZOuJUw==
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5b3b1b69280a057786439792600d8c2a
43c759cd1439b8ea383c6d36c2792eaa20f710de
0c482c6e9941b42ff416dad6bed99a36e17363a84e1c0b7a888a9254d310d113

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 245
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:47 GMT
Last-Modified: Wed, 29 Mar 2023 17:21:43 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dc0cf0275c44e5495e8f323c00b9d588
f7f19e521a439f85915f7582797a060629b879c6
abc856a823e0d89a87f6a4d3b2a48f5dcb99cdd94ce5d3b8cb8d51e665a74c4e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5b3b1b69280a057786439792600d8c2a
43c759cd1439b8ea383c6d36c2792eaa20f710de
0c482c6e9941b42ff416dad6bed99a36e17363a84e1c0b7a888a9254d310d113

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 245
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:47 GMT
Last-Modified: Wed, 29 Mar 2023 17:21:43 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5b3b1b69280a057786439792600d8c2a
43c759cd1439b8ea383c6d36c2792eaa20f710de
0c482c6e9941b42ff416dad6bed99a36e17363a84e1c0b7a888a9254d310d113

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 244
Cache-Control: max-age=131250
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:47 GMT
Etag: "6423d159-1d7"
Expires: Fri, 31 Mar 2023 05:53:17 GMT
Last-Modified: Wed, 29 Mar 2023 05:49:13 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471

adservice.google.com/ddm/fls/i/src=12542078;type=pennw0;cat=pennw0;ord=8068770545232;gtm=45He33r0;auiddc=935549528.1680110771;~oref=https%3A%2F%2Fwww.pennwest.edu%2F

142.250.74.66

200 OK

228 B

URL HTTP/2
adservice.google.com/ddm/fls/i/src=12542078;type=pennw0;cat=pennw0;ord=8068770545232;gtm=45He33r0;auiddc=935549528.1680110771;~oref=https%3A%2F%2Fwww.pennwest.edu%2F
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (448), with no line terminators
Size
228 B (228 bytes)
Hash
94f4e2c9acd1c8942dc1706716b5e242
9e179b93933904a2fd467b91076cb4ba9ab3eb95
2586c0b3e736e5eefe98f930ce536fd45ef8bb05baf316af074b1ca1d4e4c2a9

HTTP Headers

GET /ddm/fls/i/src=12542078;type=pennw0;cat=pennw0;ord=8068770545232;gtm=45He33r0;auiddc=935549528.1680110771;~oref=https%3A%2F%2Fwww.pennwest.edu%2F HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 29 Mar 2023 17:25:47 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 228
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

tr.snapchat.com/cm/i?pid=a845eb19-57fe-448b-9652-bc5371bdd115&u_scsid=b23a6c4f-d836-4fd4-837b-7778233989b4&u_sclid=6e5d9c08-dd81-408f-ac98-7a9ab300ab8c

35.190.43.134

200 OK

0 B

URL HTTP/2
tr.snapchat.com/cm/i?pid=a845eb19-57fe-448b-9652-bc5371bdd115&u_scsid=b23a6c4f-d836-4fd4-837b-7778233989b4&u_sclid=6e5d9c08-dd81-408f-ac98-7a9ab300ab8c
IP
35.190.43.134:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cm/i?pid=a845eb19-57fe-448b-9652-bc5371bdd115&u_scsid=b23a6c4f-d836-4fd4-837b-7778233989b4&u_sclid=6e5d9c08-dd81-408f-ac98-7a9ab300ab8c HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:47 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

analytics.tiktok.com/i18n/pixel/events.js?sdkid=CF8PUC3C77U208RT4Q70&lib=ttq

95.101.10.113

200 OK

1.3 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CF8PUC3C77U208RT4Q70&lib=ttq
IP
95.101.10.113:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (2698)
Size
1.3 kB (1329 bytes)
Hash
87e9654541387796bb061a70eb41f344
b09408995a7c82423b9f2c139786cd09df100bde
e8494d05df23051f1e9d2b394abaad5c7acb90318d5be74bf6ddda20975bc149

HTTP Headers

GET /i18n/pixel/events.js?sdkid=CF8PUC3C77U208RT4Q70&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230329172547404F62215AC1ABCDFBFA
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb616c037d177ce59e2a29555d6813ad633c2a98e75a7e8cde260f9a5de69db7d009173c62450c670ea198781a37006c1099f8aaf0426d90cc7719519c54ad6b18c329a486c7cab617a7e0ea43c890f277c
content-encoding: gzip
expires: Wed, 29 Mar 2023 17:25:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 29 Mar 2023 17:25:47 GMT
content-length: 1329
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
vary: Accept-Encoding
set-cookie: _ttp=2NhKCeCeU78GAbcbpRFZHVH8su9; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=2, cdn-cache; desc=MISS, edge; dur=1, origin; dur=93
x-origin-response-time: 94,95.101.10.109
x-akamai-request-id: 1d014ac7
X-Firefox-Spdy: h2

tr.snapchat.com/p

35.190.43.134

200 OK

68 B

URL HTTP/2
tr.snapchat.com/p
IP
35.190.43.134:0
ASN
#15169 GOOGLE

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11

HTTP Headers

POST /p HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 459
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:47 GMT
access-control-allow-origin: https://www.pennwest.edu
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBhxEAIAgEsIm4A30p41hgCoY3ORwr1JIEtQlAkpcOKuz17k1NzG5RZxE2WPMHhUMBgzIAAAA=;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 5
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5b3b1b69280a057786439792600d8c2a
43c759cd1439b8ea383c6d36c2792eaa20f710de
0c482c6e9941b42ff416dad6bed99a36e17363a84e1c0b7a888a9254d310d113

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6063
Cache-Control: max-age=137069
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:47 GMT
Etag: "6423d159-1d7"
Expires: Fri, 31 Mar 2023 07:30:16 GMT
Last-Modified: Wed, 29 Mar 2023 05:49:13 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
dc0cf0275c44e5495e8f323c00b9d588
f7f19e521a439f85915f7582797a060629b879c6
abc856a823e0d89a87f6a4d3b2a48f5dcb99cdd94ce5d3b8cb8d51e665a74c4e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

analytics.tiktok.com/i18n/pixel/static/identify_08840.js

95.101.10.113

200 OK

31 kB

URL HTTP/2
analytics.tiktok.com/i18n/pixel/static/identify_08840.js
IP
95.101.10.113:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30616 bytes)
Hash
b638549310f9fa7c551c832cf6367679
6729fef9be19ba25038bdc8f1988d3a8f37b2a9b
34d86c5f082f540cf905e90ca4577357a77acb6d87799188abcb92a616b2f9e5

HTTP Headers

GET /i18n/pixel/static/identify_08840.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Cookie: _ttp=2NhKCeCeU78GAbcbpRFZHVH8su9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202303281506462CB5149419CF7A5630CF
x-tt-trace-host: 014ee04bc3b7bbba901d3d50b857ab37ddfad910a198a15549d8d2ba1a5b9aae95586f31d5aa7b91eb08fb3f70a3f4e8dfe09d2a4160ccc89a8938bf986db9fd998b030931be4b3aade7e7092d8a4f9a34e79646de739aa869716dbf44d2bb3294
content-encoding: gzip
content-length: 30616
date: Wed, 29 Mar 2023 17:25:47 GMT
x-cache: TCP_MEM_HIT from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=11
x-akamai-request-id: 1d014b5b
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefde0954-487c-4823-9114-65bb559deff5.jpeg

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefde0954-487c-4823-9114-65bb559deff5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6760 bytes)
Hash
d84646702004ad2c911a68dfac90d6f1
445039f25191cf86c79423ffa04e2bffa7f2085e
632d6d1600d08a15e72dd12324ffa5792e948db9694dc2fa826f3c76be651931

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefde0954-487c-4823-9114-65bb559deff5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6760
x-amzn-requestid: 592000fe-a490-4139-8eb4-877935019797
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguKFFgOoAMF5Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d73-6f980246043a8f746441b0d5;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:43 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: TumC2WcIbdifBNgIvJ1PZ31IO9uz14ix2ZoHxnmFbpGzNZlBZDundQ==
via: 1.1 ee32c7a76e2727d565413cc6c352ef48.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:44:28 GMT
age: 70880
etag: "445039f25191cf86c79423ffa04e2bffa7f2085e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8745 bytes)
Hash
ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: LAAUFZcFBIpdMUkaDQXGW1sdwLK9c_uhQQHLiJHGF7dEvfJ0KX7MaA==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:37:00 GMT
age: 71328
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (6049 bytes)
Hash
253f48aa7cbf667d52cb37fda10cdb1f
e29478b866f90402b48d2b516d01d60a863c9cf9
b4a73ab71250b9e4a3f95e28dbf50dd000e1f338c7c3ac9f3351c1f6d6d3bfff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6049
x-amzn-requestid: 2d1a2a66-8b63-44f0-83ec-10628a5fcac6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CgvBFFMGIAMFhCg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235ed3-2a90bf0365925acb3b348489;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:40:35 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: bXiCIy2ZqOyLvougeQikdsmaIJ9BfMPpOO4oU-3nEGY33FQGCm0ZoQ==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:44:35 GMT
age: 70873
etag: "e29478b866f90402b48d2b516d01d60a863c9cf9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7605 bytes)
Hash
fd1bc71c7e9eed7c086d752ea8b4b992
02a74cf88501d65b3dfcceb5adc79fd93ce785ed
a9a423d347533322d4d3ba90ee5fca5ca32f8d540f744ea2621deeda46df89f3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7605
x-amzn-requestid: b7628073-4eb3-4ef6-b7d0-0224e0a75601
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguY8GFPoAMFebQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dd2-445041c74356c54053f772a1;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: npXnMYBUM1bcf7FQIJEHng73EkILWwM0Jvey0QDUvmln0kAJUG_Rpw==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:43:57 GMT
age: 70911
etag: "02a74cf88501d65b3dfcceb5adc79fd93ce785ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6722 bytes)
Hash
d0a85ec27ed4f7910e26b4ff023ab1fb
f35a6c0c18a7c25a5f644ed9bebef0d38f8c6ac0
fc31409ba6db565d4861a35ee6f74b7436eea5e5169bc1283f63cf6dfdb03764

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6722
x-amzn-requestid: a6de82bd-5b03-4ffd-90dd-9bd03331d123
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguY8GG2IAMFuzQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dd2-7cb1c8187fe3d2b0283fb3a0;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: lZBspmi0Dku2a7jY39WyiBC3wu5F4eAvbTwHF6_8pgHfw21XSW_NbA==
via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:43:58 GMT
age: 70910
etag: "f35a6c0c18a7c25a5f644ed9bebef0d38f8c6ac0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a2aaf12-7288-4e10-bed8-65836cbed913.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8316 bytes)
Hash
2394b226089edf57c8c93fc84a8ff22a
2355df6a75778a70b2d02c7ee2d0a806ea853c9b
740427ed96cddadf8ae6ed0870fdb1539e9a0acddcfa23a3d2b380bf6d527e38

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a2aaf12-7288-4e10-bed8-65836cbed913.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8316
x-amzn-requestid: 92761f26-4140-4d25-aa3f-077a57af32e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CYJXGEA_IAMFuQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641fef60-08d1f401009579c10eb1ffe7;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 07:08:16 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: BaispgHU5-kNaJT-ZEKFy8zR4yY7vHjCbqZweafYyYSFsanQZ7LEbA==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 07:52:17 GMT
age: 34411
etag: "2355df6a75778a70b2d02c7ee2d0a806ea853c9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

analytics.tiktok.com/api/v2/pixel

95.101.10.113

200 OK

0 B

URL HTTP/2
analytics.tiktok.com/api/v2/pixel
IP
95.101.10.113:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 766
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Cookie: _ttp=2NhKCeCeU78GAbcbpRFZHVH8su9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230329172548B3F64CE9F7FEB6D79F95
x-tt-trace-host: 01250e51f4d5abc0e156abb7e367bacbb616c037d177ce59e2a29555d6813ad6332703b99db3d940a20f182fdf60e32df10f786bca8336b674a6fd9b1b9f60233f9f4a8c84c754fdc6cc7709837157385892a6041298ece3059b68d43891a0849c
expires: Wed, 29 Mar 2023 17:25:48 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 29 Mar 2023 17:25:48 GMT
x-cache: TCP_MISS from a95-101-10-109.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=19, cdn-cache; desc=MISS, edge; dur=5, origin; dur=112
x-origin-response-time: 112,95.101.10.109
x-akamai-request-id: 1d014b7c
X-Firefox-Spdy: h2

snap.licdn.com/li.lms-analytics/insight.min.js

23.36.76.210

200 OK

4.8 kB

URL HTTP/2
snap.licdn.com/li.lms-analytics/insight.min.js
IP
23.36.76.210:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (13351)
Size
4.8 kB (4777 bytes)
Hash
74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c

HTTP Headers

GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=80184
date: Wed, 29 Mar 2023 17:25:48 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
77328ed8e02ac9cae0792f75595372ef
460d27de6dbe3be07e58336653bdaffd00fb4cd5
da423027e66ef28680522c9e325852f1c0d05c1e18e26c2265a29e6bdf02ad00

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4264
Cache-Control: max-age=108275
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:48 GMT
Etag: "642367e7-1d7"
Expires: Thu, 30 Mar 2023 23:30:23 GMT
Last-Modified: Tue, 28 Mar 2023 22:19:19 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f161a33a46c303fe6941d93b84aa0db4
44f5db5883e92d3ced3250ef1af279ca6cd21ef6
106c024af015f65e48565d3dccc95942ce222f4a7e02de0966751ad6ff129129

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

28 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64347)
Size
28 kB (27909 bytes)
Hash
7716e124e19760049484d1bcde4a8af2
51d50c9e9b7fc658c1316d1844418cee0baffa2a
fa7968a9a888e1a6dc6ac6126b8edd6e73974c2b0629f669bfb74916f0e7d534

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 6TTt+G/SAuyxlQTMTgHBS7bQEk3ZSuhx3ZAcY+1HQw18pVubN9zamO5QHd6FcLbJqpWI4c1iUQnmgNspl1RbOA==
content-length: 27909
x-fb-trip-id: 1904183273
date: Wed, 29 Mar 2023 17:25:48 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6674c1bff1cd533fa4a8992632d6d4e3
a2ca2162800e1401ac9a13d854faaa022997d823
c8a170da75fab65dd94c351514fc9304c9ea3b3682334607b65700b91f895201

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

adservice.google.no/ddm/fls/i/src=12542078;type=pennw0;cat=pennw0;ord=8068770545232;gtm=45He33r0;auiddc=935549528.1680110771;~oref=https%3A%2F%2Fwww.pennwest.edu%2F

142.250.74.98

302 Found

0 B

URL HTTP/2
adservice.google.no/ddm/fls/i/src=12542078;type=pennw0;cat=pennw0;ord=8068770545232;gtm=45He33r0;auiddc=935549528.1680110771;~oref=https%3A%2F%2Fwww.pennwest.edu%2F
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ddm/fls/i/src=12542078;type=pennw0;cat=pennw0;ord=8068770545232;gtm=45He33r0;auiddc=935549528.1680110771;~oref=https%3A%2F%2Fwww.pennwest.edu%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 29 Mar 2023 17:25:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://12542078.fls.doubleclick.net/ddm/fls/r/src=12542078;type=pennw0;cat=pennw0;ord=8068770545232;gtm=45He33r0;auiddc=935549528.1680110771;~oref=https%3A%2F%2Fwww.pennwest.edu%2F
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
77328ed8e02ac9cae0792f75595372ef
460d27de6dbe3be07e58336653bdaffd00fb4cd5
da423027e66ef28680522c9e325852f1c0d05c1e18e26c2265a29e6bdf02ad00

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5144
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:48 GMT
Last-Modified: Wed, 29 Mar 2023 16:00:04 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471

googleads.g.doubleclick.net/pagead/viewthroughconversion/10931943220/?random=1680110771170&cv=11&fst=1680110771170&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.pennwest.edu%2F&hn=www.googleadservices.com&frm=0&tiba=Pennsylvania%20Western%20University%20%7C%20PennWest&auid=935549528.1680110771&rfmt=3&fmt=4

216.58.211.2

200 OK

1.2 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10931943220/?random=1680110771170&cv=11&fst=1680110771170&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.pennwest.edu%2F&hn=www.googleadservices.com&frm=0&tiba=Pennsylvania%20Western%20University%20%7C%20PennWest&auid=935549528.1680110771&rfmt=3&fmt=4
IP
216.58.211.2:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2529), with no line terminators
Size
1.2 kB (1197 bytes)
Hash
c8e17f048c5e363f6453e785afb88981
7bbb575a2b524b040e45d7d3acca5b9f56d4ca3e
54670b05e670a1a7c91941c8cc737636b93c22f3176d770bbffa3430acbeeba2

HTTP Headers

GET /pagead/viewthroughconversion/10931943220/?random=1680110771170&cv=11&fst=1680110771170&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.pennwest.edu%2F&hn=www.googleadservices.com&frm=0&tiba=Pennsylvania%20Western%20University%20%7C%20PennWest&auid=935549528.1680110771&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 29 Mar 2023 17:25:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1197
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 29-Mar-2023 17:40:48 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f161a33a46c303fe6941d93b84aa0db4
44f5db5883e92d3ced3250ef1af279ca6cd21ef6
106c024af015f65e48565d3dccc95942ce222f4a7e02de0966751ad6ff129129

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6674c1bff1cd533fa4a8992632d6d4e3
a2ca2162800e1401ac9a13d854faaa022997d823
c8a170da75fab65dd94c351514fc9304c9ea3b3682334607b65700b91f895201

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tag.simpli.fi/sifitag/42b60f80-2881-013b-a52f-0cc47abd0334

34.90.223.176

200 OK

3.1 kB

URL HTTP/2
tag.simpli.fi/sifitag/42b60f80-2881-013b-a52f-0cc47abd0334
IP
34.90.223.176:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (3100)
Size
3.1 kB (3101 bytes)
Hash
1a0146a1baca4fee3a14c206a17bee7e
e6694f45fe4c5a0f989d60f89c11a433374c1a22
126f0885fe3ef5594a33b6d0001d67aab8122cfc73bb659fd5646117636c3fe9

HTTP Headers

GET /sifitag/42b60f80-2881-013b-a52f-0cc47abd0334 HTTP/1.1
Host: tag.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 3101
set-cookie: suid=D8544DC21935468B8DA01A81BA6BD95B; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=D8544DC21935468B8DA01A81BA6BD95B; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
x-request-id: F1Dz0vVAjU3aAWpsuH2B
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, private, must-revalidate, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2

www.clarity.ms/tag/ftns9gnosj

13.107.238.53

200 OK

111 kB

URL HTTP/2
www.clarity.ms/tag/ftns9gnosj
IP
13.107.238.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
data
Size
111 kB (110824 bytes)
Hash
9e25a004561e01073083305dfbf6aa3c
58dd22ef5090fa0921370877ba0f338b9da06f0c
07f8b33004ed54b882d54bb8da190a92760f79f05b1e8cb0c9b75442ee91c5a6

HTTP Headers

GET /tag/ftns9gnosj HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=9805bb48e6354c9c8841c01dfbf5f275.20230329.20240328; expires=Thu, 28 Mar 2024 17:25:48 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-cache: CONFIG_NOCACHE
x-azure-ref: 0nHQkZAAAAACGA5TDj0ChS7Hhj4d/jsegU1ZHMjBFREdFMDYxMwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9f52e1a56e3580c1bf81562a9df645f8
7c0b65f04f7c1ce3cc65f0ab3207d8d18ba5350b
28f16d1df407bb8bf6b28d978c94a40ea1f151dbc9e4e73493c999d881c3dc25

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tr.snapchat.com/config/edu/a845eb19-57fe-448b-9652-bc5371bdd115.js

35.190.43.134

200 OK

157 B

URL HTTP/2
tr.snapchat.com/config/edu/a845eb19-57fe-448b-9652-bc5371bdd115.js
IP
35.190.43.134:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
157 B (157 bytes)
Hash
28958dce85f669777e6c6bf110f38217
fded2a36eacc747cd8d1d7b49e56e4ac6df162b2
5c62cb07b3988ccb08f74bbf192393912063b67b8ebb488c4f29064fa1392f14

HTTP Headers

GET /config/edu/a845eb19-57fe-448b-9652-bc5371bdd115.js HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:47 GMT
access-control-allow-origin: https://www.pennwest.edu
content-type: application/javascript
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/pagead/1p-user-list/10931943220/?random=1680110771170&cv=11&fst=1680109200000&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.pennwest.edu%2F&frm=0&tiba=Pennsylvania%20Western%20University%20%7C%20PennWest&fmt=3&is_vtc=1&random=2985522849&rmt_tld=1&ipr=y

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/10931943220/?random=1680110771170&cv=11&fst=1680109200000&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.pennwest.edu%2F&frm=0&tiba=Pennsylvania%20Western%20University%20%7C%20PennWest&fmt=3&is_vtc=1&random=2985522849&rmt_tld=1&ipr=y
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/10931943220/?random=1680110771170&cv=11&fst=1680109200000&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.pennwest.edu%2F&frm=0&tiba=Pennsylvania%20Western%20University%20%7C%20PennWest&fmt=3&is_vtc=1&random=2985522849&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 29 Mar 2023 17:25:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/pagead/1p-user-list/10931943220/?random=1680110771170&cv=11&fst=1680109200000&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.pennwest.edu%2F&frm=0&tiba=Pennsylvania%20Western%20University%20%7C%20PennWest&fmt=3&is_vtc=1&random=2985522849&rmt_tld=0&ipr=y

216.58.207.228

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/10931943220/?random=1680110771170&cv=11&fst=1680109200000&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.pennwest.edu%2F&frm=0&tiba=Pennsylvania%20Western%20University%20%7C%20PennWest&fmt=3&is_vtc=1&random=2985522849&rmt_tld=0&ipr=y
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/10931943220/?random=1680110771170&cv=11&fst=1680109200000&bg=ffffff&guid=ON&async=1&gtm=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.pennwest.edu%2F&frm=0&tiba=Pennsylvania%20Western%20University%20%7C%20PennWest&fmt=3&is_vtc=1&random=2985522849&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 29 Mar 2023 17:25:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

px.ads.linkedin.com/collect?v=2&fmt=js&pid=4718001&time=1680110771741&url=https%3A%2F%2Fwww.pennwest.edu%2F

13.107.42.14

302 Found

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=4718001&time=1680110771741&url=https%3A%2F%2Fwww.pennwest.edu%2F
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=4718001&time=1680110771741&url=https%3A%2F%2Fwww.pennwest.edu%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D4718001%26time%3D1680110771741%26url%3Dhttps%253A%252F%252Fwww.pennwest.edu%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQIMZ4yD0smCTgAAAYcuZ4NnNdy4fdCr1m8s1fxoOIu2QCOiJZDrRzFMeKnHuH3ChgO6MPnIK_P_Dg; Max-Age=2592000; Expires=Fri, 28 Apr 2023 17:25:48 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQIT0ef9zYcZ-wAAAYcuZ4NnaajI7XXZx4y8KlQrLMW8TGB__WVkrE3sgMb_qmErUifb3_8NqDzj8X_i-qV67g; Max-Age=2592000; Expires=Fri, 28 Apr 2023 17:25:48 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
bcookie="v=2&27b93a8d-aa2e-4b0f-8c96-facae1321500"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 28-Mar-2024 17:25:48 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2483:u=1:x=1:i=1680110748:t=1680197148:v=2:sig=AQFyVeXNSaPb2LY2E_gG6WHs7VQtLB0f"; Expires=Thu, 30 Mar 2023 17:25:48 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAX4DURZMRFgwogylLdciQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 1A67825F22EC47FEA4EA6A82861CE0AF Ref B: OSL30EDGE0312 Ref C: 2023-03-29T17:25:48Z
date: Wed, 29 Mar 2023 17:25:48 GMT
content-length: 0
X-Firefox-Spdy: h2

cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm&google_sc

142.250.74.34

302 Found

296 B

URL HTTP/2
cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm&google_sc
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
296 B (296 bytes)
Hash
0103dd025950e32d5eb84f8e72ddb997
9ddb94b670f62f21ddee3157f2ad97d122bf8248
ad325fee7bf9ae842aa1ea62cadbd134bf6590eaa84413165b1b7c6f4e5afd0d

HTTP Headers

GET /pixel?google_nid=simplifi&google_cm&google_sc HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm=&google_sc=&google_tc=
date: Wed, 29 Mar 2023 17:25:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 296
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 29-Mar-2023 17:40:48 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm=&google_sc=&google_tc=

142.250.74.34

302 Found

248 B

URL HTTP/2
cm.g.doubleclick.net/pixel?google_nid=simplifi&google_cm=&google_sc=&google_tc=
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
248 B (248 bytes)
Hash
90f3317c598426fe1c249b0cc4845475
72856fffdc53e9e630c38bbd9b4fe04afb72015a
2d722b67473e8cf5282435d3608e9a9fe2092279aceaf9d88d4b89fecac69c8b

HTTP Headers

GET /pixel?google_nid=simplifi&google_cm=&google_sc=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 302 Found
location: https://um.simpli.fi/g_match?id=&google_error=3
date: Wed, 29 Mar 2023 17:25:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 248
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7992d672cfad38c05e694e95ac5d2c1f
4147a0b17979e4eddbc511991fe0bf96c6df47e3
e7d82270bdd8ee1756a9bbba08e180daa1696149cb03deae7f496c1b0b4a9788

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.facebook.com/tr/?id=506484311553224&ev=PageView&dl=https%3A%2F%2Fwww.pennwest.edu%2F&rl=&if=false&ts=1680110772150&sw=1280&sh=1024&v=2.9.100&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1680110772149.1053844029&it=1680110771807&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=506484311553224&ev=PageView&dl=https%3A%2F%2Fwww.pennwest.edu%2F&rl=&if=false&ts=1680110772150&sw=1280&sh=1024&v=2.9.100&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1680110772149.1053844029&it=1680110771807&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=506484311553224&ev=PageView&dl=https%3A%2F%2Fwww.pennwest.edu%2F&rl=&if=false&ts=1680110772150&sw=1280&sh=1024&v=2.9.100&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1680110772149.1053844029&it=1680110771807&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 29 Mar 2023 17:25:48 GMT
X-Firefox-Spdy: h2

um.simpli.fi/pubmatic

35.204.158.49

200 OK

43 B

URL HTTP/2
um.simpli.fi/pubmatic
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /pubmatic HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=D2E66D8DEA414F74BE70B1079A7B1ACE; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=D2E66D8DEA414F74BE70B1079A7B1ACE; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/freewheel

35.204.158.49

200 OK

43 B

URL HTTP/2
um.simpli.fi/freewheel
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /freewheel HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=03DFB235DE904E4A9B3260A734501C8A; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=03DFB235DE904E4A9B3260A734501C8A; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/dtnx

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/dtnx
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /dtnx HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://fei.pro-market.net/engine?du=24;csync=71EABDC7B36746ED9906191B5639AEFB;mimetype=img;
set-cookie: suid=71EABDC7B36746ED9906191B5639AEFB; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=71EABDC7B36746ED9906191B5639AEFB; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/exelatem

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/exelatem
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /exelatem HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://loadm.exelator.com/load/?p=204&g=2191&simid=16A285F8590A46328FCD915F362A1F5B&j=0
set-cookie: suid=16A285F8590A46328FCD915F362A1F5B; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=16A285F8590A46328FCD915F362A1F5B; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/yahoo

35.204.158.49

200 OK

43 B

URL HTTP/2
um.simpli.fi/yahoo
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /yahoo HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=4A04910CCFD6416389CA5488E282432F; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=4A04910CCFD6416389CA5488E282432F; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

oneocsp.microsoft.com/ocsp

204.79.197.203

200 OK

1.8 kB

URL HTTP/1.1
oneocsp.microsoft.com/ocsp
IP
204.79.197.203:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
data
Size
1.8 kB (1777 bytes)
Hash
0512220979bad91c042b2a7610b6a61e
7ef81209c83609e89b8537b39beb6fc9be263263
7499f5e2efbd04b2df43e31c9fc059baf268367f1455ab068baee5032746b399

HTTP Headers

POST /ocsp HTTP/1.1
Host: oneocsp.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Length: 1777
Content-Type: application/ocsp-response
Expires: Mon, 03 Apr 2023 15:50:17 GMT
Last-Modified: Wed, 29 Mar 2023 05:08:22 GMT
ETag: "7499f5e2efbd04b2df43e31c9fc059baf268367f1455ab068baee5032746b399"
X-Powered-By: ASP.NET
x-content-type-options: nosniff
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 4C2382DBF600455EA2C094B0A36295B6 Ref B: OSL30EDGE0218 Ref C: 2023-03-29T17:25:48Z
Date: Wed, 29 Mar 2023 17:25:48 GMT

www.googleadservices.com/pagead/conversion/1026675585/?random=1680110748554&cv=7&fst=1680110748554&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON

142.250.74.130

302 Found

42 B

URL HTTP/2
www.googleadservices.com/pagead/conversion/1026675585/?random=1680110748554&cv=7&fst=1680110748554&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/conversion/1026675585/?random=1680110748554&cv=7&fst=1680110748554&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 29 Mar 2023 17:25:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1026675585/?random=820483930&cv=7&fst=1680110748554&fmt=3&value=0&label=eGG0CO2U2AIQgafH6QM&guid=ON&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=nHQkZPGaMobF6gTQ6qrYDQ&sscte=1&crd=
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

um.simpli.fi/beachfront

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/beachfront
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /beachfront HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://sync.bfmio.com/sync?pid=141&uid=27B1A640CE8D4473A278A1BC36E5A798
set-cookie: suid=27B1A640CE8D4473A278A1BC36E5A798; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=27B1A640CE8D4473A278A1BC36E5A798; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/bluekai

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/bluekai
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /bluekai HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://stags.bluekai.com/site/29931?id=AAD15D947241427DA722A3B0A5B49022
set-cookie: suid=AAD15D947241427DA722A3B0A5B49022; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=AAD15D947241427DA722A3B0A5B49022; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/crwdcntrl

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/crwdcntrl
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /crwdcntrl HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=1DA251863916494ABB8F02F591EAA71A
set-cookie: suid=1DA251863916494ABB8F02F591EAA71A; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=1DA251863916494ABB8F02F591EAA71A; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/lj_match

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/lj_match
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /lj_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://ce.lijit.com/merge?pid=2&3pid=75BBE30D1A724E179074151201B0904E
set-cookie: suid=75BBE30D1A724E179074151201B0904E; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=75BBE30D1A724E179074151201B0904E; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/liveramp_match

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/liveramp_match
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /liveramp_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://idsync.rlcdn.com/419566.gif?partner_uid=33EA2BCFD7FC4BAD8203FE16CDE8098B
set-cookie: suid=33EA2BCFD7FC4BAD8203FE16CDE8098B; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=33EA2BCFD7FC4BAD8203FE16CDE8098B; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/spotx_match

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/spotx_match
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /spotx_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://sync.search.spotxchange.com/partner?adv_id=7797&uid=FABF02D065C54920A2CD59E3CBE24433
set-cookie: suid=FABF02D065C54920A2CD59E3CBE24433; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=FABF02D065C54920A2CD59E3CBE24433; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/an

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/an
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /an HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://ib.adnxs.com/setuid?entity=66&code=DD5E4552668A449A9DF9F6B893C29024
set-cookie: suid=DD5E4552668A449A9DF9F6B893C29024; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=DD5E4552668A449A9DF9F6B893C29024; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/rb_match

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/rb_match
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /rb_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=DE01B135C539460B89FFC34BB205204F&expires=365
set-cookie: suid=DE01B135C539460B89FFC34BB205204F; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=DE01B135C539460B89FFC34BB205204F; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/ox_match

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/ox_match
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /ox_match HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://us-u.openx.net/w/1.0/sd?id=537072966&val=0A4576B9BDB54E2784CED702EF488A3C
set-cookie: suid=0A4576B9BDB54E2784CED702EF488A3C; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=0A4576B9BDB54E2784CED702EF488A3C; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/g_match?id=&google_error=3

35.204.158.49

204 No Content

0 B

URL HTTP/2
um.simpli.fi/g_match?id=&google_error=3
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /g_match?id=&google_error=3 HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Wed, 29 Mar 2023 17:25:48 GMT
set-cookie: suid=0252ED01A2F24E0BBD38BD45DE9899DF; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=0252ED01A2F24E0BBD38BD45DE9899DF; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/triplelift

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/triplelift
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /triplelift HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://eb2.3lift.com/xuid?mid=7969&xuid=936B9CF0B5F54D5F815D646CB5446E64&dongle=yf3
set-cookie: suid=936B9CF0B5F54D5F815D646CB5446E64; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=936B9CF0B5F54D5F815D646CB5446E64; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

cdn.linkedin.oribi.io/partner/4718001/domain/pennwest.edu/token

54.230.111.8

200 OK

204 B

URL HTTP/2
cdn.linkedin.oribi.io/partner/4718001/domain/pennwest.edu/token
IP
54.230.111.8:0
ASN
#16509 AMAZON-02

File type
data
Size
204 B (204 bytes)
Hash
899ca9554410bea6c9b9cdbbc65fd2e4
5ec92132d260813bba1bc62607edb439488d27b0
218ed8a78ba0e5901d714e8018b67aafcce86d5bfab25b2465acf87d24987ee7

HTTP Headers

GET /partner/4718001/domain/pennwest.edu/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json
date: Wed, 29 Mar 2023 17:25:48 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CR5mhOveusKJNnm2Mg69Vxtd63jA59GgTgzAB8TciQ92sOggDW6jkA==
X-Firefox-Spdy: h2

um.simpli.fi/tapad

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/tapad
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /tapad HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=6975C05F95894C958EE978151F896083
set-cookie: suid=6975C05F95894C958EE978151F896083; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=6975C05F95894C958EE978151F896083; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

um.simpli.fi/ad_advisor

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/ad_advisor
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /ad_advisor HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: text/html
content-length: 142
location: https://aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=2D031D3F39A149F4A4C2F4BB45941C9A
set-cookie: suid=2D031D3F39A149F4A4C2F4BB45941C9A; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=2D031D3F39A149F4A4C2F4BB45941C9A; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
expires: Tue, 28 Mar 2023 17:25:48 GMT
cache-control: no-cache
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

www.clarity.ms/eus-f-sc/s/0.7.5/clarity.js

13.107.238.53

200 OK

19 kB

URL HTTP/2
www.clarity.ms/eus-f-sc/s/0.7.5/clarity.js
IP
13.107.238.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (56527)
Size
19 kB (19234 bytes)
Hash
07690baa3b7ed3eaa4d576e97c18474b
2f123462223eeeef45a47696fe8767b1ab2e7833
13be061b43560b476f334cbaa5cd053a612564c4bacbd04625b76f4e8c0bcad3

HTTP Headers

GET /eus-f-sc/s/0.7.5/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d95d062a00a927"
x-cache: TCP_HIT
request-context: appId=cid-v1:dfa4d45a-f309-4181-9ede-77e6e6c0ecf0
x-azure-ref-originshield: 0NF8kZAAAAAA2FXzBCo0OR4RcOtiG1mNjQU1TMDRFREdFMTgwNgA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
x-azure-ref: 0nHQkZAAAAACLFpeIPnSJToNEWw8Y9gpIU1ZHMjBFREdFMDYxMwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Wed, 29 Mar 2023 17:25:47 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
980037790ada70c8073ba9a8d5cc825e
6346559da4cce00710525b8c51e5e22d0dde4693
d399e83b9fb36a722e729da0685e3bdbd744ad826f05fe8a1d62e546fc67d42f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D4718001%26time%3D1680110771741%26url%3Dhttps%253A%252F%252Fwww.pennwest.edu%252F%26liSync%3Dtrue

13.107.42.14

302 Found

0 B

URL HTTP/2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D4718001%26time%3D1680110771741%26url%3Dhttps%253A%252F%252Fwww.pennwest.edu%252F%26liSync%3Dtrue
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D4718001%26time%3D1680110771741%26url%3Dhttps%253A%252F%252Fwww.pennwest.edu%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.pennwest.edu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=4718001&time=1680110771741&url=https%3A%2F%2Fwww.pennwest.edu%2F&liSync=true
set-cookie: bcookie="v=2&25b21d55-8a4e-4456-88be-709f100b90ca"; Domain=.linkedin.com; Expires=Thu, 28-Mar-2024 17:25:48 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2023032917254883bf73fe-641b-485a-888b-f629e7b49d1aAQHFgnbTgBMDLpihSiwFN9tDuCTKk7Q9"; Domain=.www.linkedin.com; Expires=Thu, 28-Mar-2024 17:25:48 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2ODAxMTA3NDg7MjswMjH/eBUItP4HKMHVlI7QbzbWu5DjRd5wwKsm7bMCOIpf3Q==; Domain=.linkedin.com; Expires=Mon, 25 Sep 2023 17:25:48 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2483:u=1:x=1:i=1680110748:t=1680197148:v=2:sig=AQFyVeXNSaPb2LY2E_gG6WHs7VQtLB0f"; Expires=Thu, 30 Mar 2023 17:25:48 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; script-src-attr 'report-sample' 'none'; object-src 'none'; media-src blob: *; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAX4DURdppZe2kS7N04EGA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 9B918EBAA54A4407B96BA67BA52AE240 Ref B: OSL30EDGE0312 Ref C: 2023-03-29T17:25:48Z
date: Wed, 29 Mar 2023 17:25:48 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.usertrust.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ae3ea87480a120c0c32dd3d0e1c1f665
0092290f86c7fbc0b2d6add350e500613b31d65d
f3f8f1be09db4e6661b6cca329b003cee56830e23162ed3f8ed3d7b126a633dc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:25:48 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 29 Mar 2023 10:10:21 GMT
Expires: Wed, 05 Apr 2023 10:10:20 GMT
Etag: "0092290f86c7fbc0b2d6add350e500613b31d65d"
Cache-Control: max-age=604095,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1636
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7af9d074ae0fb518-OSL

fei.pro-market.net/engine?du=24;csync=71EABDC7B36746ED9906191B5639AEFB;mimetype=img;

107.178.240.89

302 Found

0 B

URL HTTP/2
fei.pro-market.net/engine?du=24;csync=71EABDC7B36746ED9906191B5639AEFB;mimetype=img;
IP
107.178.240.89:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /engine?du=24;csync=71EABDC7B36746ED9906191B5639AEFB;mimetype=img; HTTP/1.1
Host: fei.pro-market.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: Apache-Coyote/1.1
p3p: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
anserver: gapp-eu-5.c.datonics-gcp-01.internal
set-cookie: anProfile="1+1+1f=1+1g=2+1j=57:1+rs=s+rt=5B5A2A9A+s2=(rsalr0)"; Domain=.pro-market.net; Max-Age=15552000; Path=/; Secure; SameSite=None;
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Mon, 1 Jan 1990 0:0:0 GMT
access-control-allow-origin: *
location: https://fei.pro-market.net/engine?du=24;csync=71EABDC7B36746ED9906191B5639AEFB;mimetype=img;sr
content-type: image/gif
content-length: 0
date: Wed, 29 Mar 2023 17:25:48 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f4203ac78b1a4374c2dd9691f9f9c69c
7312174916a811aec46681bc31f13b89f0212025
6551befa4df12216f8602c673c7c2e680f793b2813eb56396e3471bf731355de

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2297
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:48 GMT
Last-Modified: Wed, 29 Mar 2023 16:47:31 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471

y.clarity.ms/collect

104.211.35.148

204 No Content

0 B

URL HTTP/1.1
y.clarity.ms/collect
IP
104.211.35.148:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /collect HTTP/1.1
Host: y.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 540
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 29 Mar 2023 17:25:48 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.pennwest.edu
Vary: Origin
Request-Context: appId=cid-v1:dfa4d45a-f309-4181-9ede-77e6e6c0ecf0

fei.pro-market.net/engine?du=24;csync=71EABDC7B36746ED9906191B5639AEFB;mimetype=img;sr

107.178.240.89

200 OK

43 B

URL HTTP/2
fei.pro-market.net/engine?du=24;csync=71EABDC7B36746ED9906191B5639AEFB;mimetype=img;sr
IP
107.178.240.89:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
968c3ad2c1183fee0bf0dd479f7904b7
1d770800ecb05eb9133f9b51620c9e4349656859
3331a0486cb3e8a75c8c2fdf02bf80fd8fe2b811dfe5c7b4aa892d38bfcf604a

HTTP Headers

GET /engine?du=24;csync=71EABDC7B36746ED9906191B5639AEFB;mimetype=img;sr HTTP/1.1
Host: fei.pro-market.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Apache-Coyote/1.1
p3p: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
anserver: gapp-eu-5.c.datonics-gcp-01.internal
set-cookie: anProfile="0+1+1f=1+1g=2+1j=57:1+rs=s+rt=5B5A2A9A+s2=(rsalr1)"; Domain=.pro-market.net; Max-Age=15552000; Path=/; Secure; SameSite=None;
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Mon, 1 Jan 1990 0:0:0 GMT
access-control-allow-origin: *
content-type: image/gif
content-length: 43
date: Wed, 29 Mar 2023 17:25:48 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
a91fe918075e514749aaebee5d39ffc6
66fcb393d57c411514e2e94d5931712d2d5eb217
41f0cfb256d245a6d2ce996403e4b282a4e699073b21786e7b58c2499c48c216

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 253
Cache-Control: max-age=130154
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:49 GMT
Etag: "6423cd0a-2d7"
Expires: Fri, 31 Mar 2023 05:35:03 GMT
Last-Modified: Wed, 29 Mar 2023 05:30:50 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 727

loadm.exelator.com/load/?p=204&g=2191&simid=16A285F8590A46328FCD915F362A1F5B&j=0

54.78.254.47

204 No Content

0 B

URL HTTP/2
loadm.exelator.com/load/?p=204&g=2191&simid=16A285F8590A46328FCD915F362A1F5B&j=0
IP
54.78.254.47:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /load/?p=204&g=2191&simid=16A285F8590A46328FCD915F362A1F5B&j=0 HTTP/1.1
Host: loadm.exelator.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Wed, 29 Mar 2023 17:25:49 GMT
cache-control: no-cache
x-powered-by: Undertow/1
access-control-allow-credentials: true
p3p: policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA, policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA
X-Firefox-Spdy: h2

status.geotrust.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
status.geotrust.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
6efc98103416ace36c05691872f4b70c
d16cf1ce77c62045a7af56fcdb51ce6d296d4b8c
ab992baf9407cb99daf4f8327c6fb24822b3921522c60c1f1fad4754e1e730b8

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6344
Cache-Control: max-age=113576
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:49 GMT
Etag: "6423747d-1d7"
Expires: Fri, 31 Mar 2023 00:58:45 GMT
Last-Modified: Tue, 28 Mar 2023 23:13:01 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471

ib.adnxs.com/setuid?entity=66&code=DD5E4552668A449A9DF9F6B893C29024

185.89.210.20

307 Redirection

0 B

URL HTTP/1.1
ib.adnxs.com/setuid?entity=66&code=DD5E4552668A449A9DF9F6B893C29024
IP
185.89.210.20:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /setuid?entity=66&code=DD5E4552668A449A9DF9F6B893C29024 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 29 Mar 2023 17:25:49 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3DDD5E4552668A449A9DF9F6B893C29024
AN-X-Request-Uuid: 49a9d7db-9af4-4706-b01d-80f639958817
Set-Cookie: uuid2=3817651645969518451; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 27-Jun-2023 17:25:49 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 944.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

stags.bluekai.com/site/29931?id=AAD15D947241427DA722A3B0A5B49022

184.24.45.23

200 OK

62 B

URL HTTP/2
stags.bluekai.com/site/29931?id=AAD15D947241427DA722A3B0A5B49022
IP
184.24.45.23:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
62 B (62 bytes)
Hash
3f386f5061436a0338a64e0910db495d
599fe4a552c991a2b3ce5a1660732bf7b21fb901
0af3aae90b7de9fdceee2ab421378ea2f54c74be81ef43fc6c1790a032755d80

HTTP Headers

GET /site/29931?id=AAD15D947241427DA722A3B0A5B49022 HTTP/1.1
Host: stags.bluekai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 62
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
date: Wed, 29 Mar 2023 17:25:49 GMT
set-cookie: bku=blx99Jh6JsEcBu/2; Path=/; Domain=.bluekai.com; Expires=Fri, 29 Sep 2023 17:25:48 GMT; Secure; SameSite=None
bkpa=KJy9nyexd02pSUHknp/8mE1hwtkAwDaOHeWNHeA6Bp/61Ex0B6HOBp/0xEBY1WWNxMx81e/09y979x+L; Path=/; Domain=.bluekai.com; Expires=Fri, 29 Sep 2023 17:25:48 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2

status.geotrust.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
status.geotrust.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b75002290928435e568082d178deb57b
3a289b320653a46bcc01373dfda484940bad2fbd
3b47bb3b11e3138d13df382d07015567144d7c2ff8d59573150e6b1532f0de96

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2146
Cache-Control: max-age=162286
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:49 GMT
Etag: "64244329-1d7"
Expires: Fri, 31 Mar 2023 14:30:35 GMT
Last-Modified: Wed, 29 Mar 2023 13:54:49 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471

px.ads.linkedin.com/collect?v=2&fmt=js&pid=4718001&time=1680110771741&url=https%3A%2F%2Fwww.pennwest.edu%2F&liSync=true

13.107.42.14

200 OK

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=4718001&time=1680110771741&url=https%3A%2F%2Fwww.pennwest.edu%2F&liSync=true
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=4718001&time=1680110771741&url=https%3A%2F%2Fwww.pennwest.edu%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.pennwest.edu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
set-cookie: bcookie="v=2&1fbeecf7-9956-42a9-8c67-36248232aa3c"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 28-Mar-2024 17:25:49 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2483:u=1:x=1:i=1680110749:t=1680197149:v=2:sig=AQEb--tlwZ-o3ApoVc2dX9oOw_eDHPs_"; Expires=Thu, 30 Mar 2023 17:25:49 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAX4DURgu8i3QRO3LHpVjg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2A86250D4A5B4E0598D27F12596D8F06 Ref B: OSL30EDGE0312 Ref C: 2023-03-29T17:25:48Z
date: Wed, 29 Mar 2023 17:25:48 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8bae7723eaef81aa95a5b736dc08cb55
469269fbed18217c2e3b3511ea787295ea16d11d
e237afa2637a9fa7c5b9e45cacf008f1420c575cb190d64618c93b23b2f101d4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5859
Cache-Control: max-age=134341
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:49 GMT
Etag: "6423c77f-1d7"
Expires: Fri, 31 Mar 2023 06:44:50 GMT
Last-Modified: Wed, 29 Mar 2023 05:07:11 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471

sync.search.spotxchange.com/partner?adv_id=7797&uid=FABF02D065C54920A2CD59E3CBE24433

185.94.180.126

302 Found

0 B

URL HTTP/1.1
sync.search.spotxchange.com/partner?adv_id=7797&uid=FABF02D065C54920A2CD59E3CBE24433
IP
185.94.180.126:0
ASN
#35220 SpotXchange, INC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /partner?adv_id=7797&uid=FABF02D065C54920A2CD59E3CBE24433 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Wed, 29 Mar 2023 17:25:49 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=bf571d55-ce56-11ed-a41e-1f057aaa0206; expires=Wed, 26-Apr-2023 17:25:49 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7797&uid=FABF02D065C54920A2CD59E3CBE24433&__user_check__=1&sync_id=bf571da3-ce56-11ed-a41e-1f057aaa0206
X-fe: 131
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0

sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=8B1FEAA6FF264A15B7D1718DAEE5E513

143.204.55.7

403 Forbidden

986 B

URL HTTP/2
sync.intentiq.com/profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=8B1FEAA6FF264A15B7D1718DAEE5E513
IP
143.204.55.7:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
986 B (986 bytes)
Hash
6e422ec66decbaa5fd9a5cbf9e567dbe
294c2675625baefd5bc269c02949ec7ea0410903
8ee5d1944260940c7360800efd02c9e9cd04df7c5ee7e74f72cf3ac724160857

HTTP Headers

GET /profiles_engine/ProfilesEngineServlet?at=20&dpi=2124307461&pcid=8B1FEAA6FF264A15B7D1718DAEE5E513 HTTP/1.1
Host: sync.intentiq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
server: CloudFront
date: Wed, 29 Mar 2023 17:25:49 GMT
content-type: text/html
content-length: 986
x-cache: Error from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: H3J8Hf3errIiOalTDsqVSNsiys7nimQOc0y2i7_65kmMmE3JMfUtqQ==
X-Firefox-Spdy: h2

us-u.openx.net/w/1.0/sd?id=537072966&val=0A4576B9BDB54E2784CED702EF488A3C

35.244.159.8

200 OK

43 B

URL HTTP/2
us-u.openx.net/w/1.0/sd?id=537072966&val=0A4576B9BDB54E2784CED702EF488A3C
IP
35.244.159.8:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /w/1.0/sd?id=537072966&val=0A4576B9BDB54E2784CED702EF488A3C HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Wed, 29 Mar 2023 17:25:49 GMT
content-type: image/gif
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=DE01B135C539460B89FFC34BB205204F&expires=365

69.173.144.165

422 Unprocessable Entity

91 B

URL HTTP/1.1
pixel.rubiconproject.com/tap.php?v=6286&nid=2132&put=DE01B135C539460B89FFC34BB205204F&expires=365
IP
69.173.144.165:0
ASN
#26667 RUBICONPROJECT

File type
JSON data\012- , ASCII text, with no line terminators
Size
91 B (91 bytes)
Hash
f23a66a1c97ac277132e90a14e5c7278
060938e252bdd57700b54a1228afe6ad7691e208
7595357c645b297a5840a6e5b5576cf6199da6f58ec9d8daa311598300fb7c15

HTTP Headers

GET /tap.php?v=6286&nid=2132&put=DE01B135C539460B89FFC34BB205204F&expires=365 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 422 Unprocessable Entity
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 66ef90d06496cfd000aab8206f2b6221
content-length: 91

ocsp.godaddy.com/

192.124.249.23

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.23:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
9f830cf4a8b3a8ed309f92539322e86f
5b8dc6ed9cfcf2624390897e02cb59cfcf2ed516
07cd8b9744ca962cb8d615fe911a8c6260196d6c020261ee94543fa784409261

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 29 Mar 2023 17:25:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 28 Mar 2023 20:35:51 GMT
Expires: Wed, 29 Mar 2023 20:35:51 GMT
ETag: "5b8dc6ed9cfcf2624390897e02cb59cfcf2ed516"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
87e0dc03bb3fd744db84843ca373995c
15243d40ece7dbec7c352c209822254bcf9f17ab
42024de3d624613210497443f54271d7cdf85207ed7cdfb2d473bf0f6387dd88

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2917
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:49 GMT
Last-Modified: Wed, 29 Mar 2023 16:37:12 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ac2ae69afc70f2a8941ed6b658f4bd0e
5bac1a2c66dd04024217bd79173e2d00098ea987
1565e942701c0c33f8b78d2d64049fea418ee9b2466b3294db350ed57dd3881d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:25:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 26 Mar 2023 20:38:00 GMT
Expires: Sun, 02 Apr 2023 20:37:59 GMT
Etag: "5bac1a2c66dd04024217bd79173e2d00098ea987"
Cache-Control: max-age=356529,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7af9d07609efb50f-OSL

sync.search.spotxchange.com/partner?adv_id=7797&uid=FABF02D065C54920A2CD59E3CBE24433&__user_check__=1&sync_id=bf571da3-ce56-11ed-a41e-1f057aaa0206

185.94.180.126

200 OK

43 B

URL HTTP/1.1
sync.search.spotxchange.com/partner?adv_id=7797&uid=FABF02D065C54920A2CD59E3CBE24433&__user_check__=1&sync_id=bf571da3-ce56-11ed-a41e-1f057aaa0206
IP
185.94.180.126:0
ASN
#35220 SpotXchange, INC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e

HTTP Headers

GET /partner?adv_id=7797&uid=FABF02D065C54920A2CD59E3CBE24433&__user_check__=1&sync_id=bf571da3-ce56-11ed-a41e-1f057aaa0206 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 29 Mar 2023 17:25:49 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=bf63f358-ce56-11ed-869c-1984e64b0206; expires=Wed, 26-Apr-2023 17:25:49 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 114
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0

ce.lijit.com/merge?pid=2&3pid=75BBE30D1A724E179074151201B0904E

216.52.2.30

204 No Content

0 B

URL HTTP/1.1
ce.lijit.com/merge?pid=2&3pid=75BBE30D1A724E179074151201B0904E
IP
216.52.2.30:0
ASN
#29791 VOXEL-DOT-NET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /merge?pid=2&3pid=75BBE30D1A724E179074151201B0904E HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Date: Wed, 29 Mar 2023 17:25:49 GMT
X-MERGE: GDPR Optout true
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
Expires: Fri, 20 Mar 2009 00:00:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap6ams1

pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=6975C05F95894C958EE978151F896083

34.111.113.62

302 Found

0 B

URL HTTP/2
pixel.tapad.com/idsync/ex/receive?partner_id=2305&partner_device_id=6975C05F95894C958EE978151F896083
IP
34.111.113.62:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /idsync/ex/receive?partner_id=2305&partner_device_id=6975C05F95894C958EE978151F896083 HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Wed, 29 Mar 2023 17:25:49 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1680110749189;Expires=Sun, 28 May 2023 17:25:49 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=e45098ea-41ea-4757-9230-6e77a6228fc1;Expires=Sun, 28 May 2023 17:25:49 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
location: https://pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=6975C05F95894C958EE978151F896083
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
1f891dfe8b02bc4ec1ce327c0edb3148
8041450b9a250d1e5eab2e657f516ba2c43e1991
781cff50bea8e2e7c6365eae90d6c02939073b0098cd7385e17ab3c73067d882

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130234
Date: Wed, 29 Mar 2023 17:25:49 GMT
Etag: "6423b7e7-1d7"
Expires: Fri, 31 Mar 2023 05:36:23 GMT
Last-Modified: Wed, 29 Mar 2023 04:00:39 GMT
Server: ECAcc (bsa/EAE4)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bIrv-EUrBM5r-rishDqsy-yX6RP0Af1iw1zJjCyK1yzt4HKAdVZxcA==
Age: 5744

idsync.rlcdn.com/419566.gif?partner_uid=33EA2BCFD7FC4BAD8203FE16CDE8098B

35.244.174.68

451 Unavailable For Legal Reasons

0 B

URL HTTP/2
idsync.rlcdn.com/419566.gif?partner_uid=33EA2BCFD7FC4BAD8203FE16CDE8098B
IP
35.244.174.68:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /419566.gif?partner_uid=33EA2BCFD7FC4BAD8203FE16CDE8098B HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 451 Unavailable For Legal Reasons
date: Wed, 29 Mar 2023 17:25:49 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

status.geotrust.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
status.geotrust.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b75002290928435e568082d178deb57b
3a289b320653a46bcc01373dfda484940bad2fbd
3b47bb3b11e3138d13df382d07015567144d7c2ff8d59573150e6b1532f0de96

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2884
Cache-Control: max-age=163024
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:49 GMT
Etag: "64244329-1d7"
Expires: Fri, 31 Mar 2023 14:42:53 GMT
Last-Modified: Wed, 29 Mar 2023 13:54:49 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471

eb2.3lift.com/xuid?mid=7969&xuid=936B9CF0B5F54D5F815D646CB5446E64&dongle=yf3

13.248.245.213

200 OK

37 B

URL HTTP/2
eb2.3lift.com/xuid?mid=7969&xuid=936B9CF0B5F54D5F815D646CB5446E64&dongle=yf3
IP
13.248.245.213:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
37 B (37 bytes)
Hash
3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96

HTTP Headers

GET /xuid?mid=7969&xuid=936B9CF0B5F54D5F815D646CB5446E64&dongle=yf3 HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:49 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
87e0dc03bb3fd744db84843ca373995c
15243d40ece7dbec7c352c209822254bcf9f17ab
42024de3d624613210497443f54271d7cdf85207ed7cdfb2d473bf0f6387dd88

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5399
Cache-Control: max-age=126640
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 17:25:49 GMT
Etag: "6423ab37-1d7"
Expires: Fri, 31 Mar 2023 04:36:29 GMT
Last-Modified: Wed, 29 Mar 2023 03:06:31 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 471

pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=6975C05F95894C958EE978151F896083

34.111.113.62

200 OK

95 B

URL HTTP/2
pixel.tapad.com/idsync/ex/receive/check?partner_id=2305&partner_device_id=6975C05F95894C958EE978151F896083
IP
34.111.113.62:0
ASN
#15169 GOOGLE

File type
PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Size
95 B (95 bytes)
Hash
71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517

HTTP Headers

GET /idsync/ex/receive/check?partner_id=2305&partner_device_id=6975C05F95894C958EE978151F896083 HTTP/1.1
Host: pixel.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:49 GMT
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: policyref="http://tapad-taptags.s3.amazonaws.com/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
set-cookie: TapAd_TS=1680110749243;Expires=Sun, 28 May 2023 17:25:49 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_DID=da4daa97-c59f-4e3d-9e09-e0fffb8499b5;Expires=Sun, 28 May 2023 17:25:49 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
TapAd_3WAY_SYNCS=;Expires=Sun, 28 May 2023 17:25:49 GMT;Path=/;Domain=.tapad.com;Secure;SameSite=None
content-type: image/png
content-length: 95
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3DDD5E4552668A449A9DF9F6B893C29024

185.89.210.20

200 OK

43 B

URL HTTP/1.1
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D66%26code%3DDD5E4552668A449A9DF9F6B893C29024
IP
185.89.210.20:0
ASN
#29990 ASN-APPNEX

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef

HTTP Headers

GET /bounce?%2Fsetuid%3Fentity%3D66%26code%3DDD5E4552668A449A9DF9F6B893C29024 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Wed, 29 Mar 2023 17:25:49 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: ddb7da91-1462-40a0-bd00-7a2098cce0ce
Set-Cookie: anj=dTM7k!M4.FE:2jUF']wIg2GVRih-ZZ!]tbPl1N!7On*M$=BWXijGHPjjF$p]dY9@CifCPch0opafmqO^kzZY[fD)K*gHCZ`/X%W#.wL4W1Qw1[.w#Hg; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 27-Jun-2023 17:25:49 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 944.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
9a72ab1582889072fb124a47ed6fb5d7
a2d99c55e29af08d550c014ff108d8c2c657500b
e09e9ea28086ed5633c098354a4ff44c2dc7e1e26d47ca8f548e29db56d97a61

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 29 Mar 2023 17:25:49 GMT
Last-Modified: Wed, 29 Mar 2023 15:48:46 GMT
Server: ECAcc (nya/7993)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Kc8BZEO1Bp1o-HcndIAuyALRpg5ta2ewvOugNNYD85agJ6dkczr23w==
Age: 5823

d.agkn.com/pixel/10751/?che=1680110749086&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D217173104470003921585

54.171.219.155

302

0 B

URL HTTP/1.1
d.agkn.com/pixel/10751/?che=1680110749086&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D217173104470003921585
IP
54.171.219.155:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/10751/?che=1680110749086&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D217173104470003921585 HTTP/1.1
Host: d.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 
Cache-Control: no-cache, must-revalidate
Date: Wed, 29 Mar 2023 17:25:48 GMT
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Location: https://um.simpli.fi/aa_px?sk=217173104470003921585
P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Set-Cookie: ab=0001%3ACayoFoHVLbpa0OfQw9CXHTAPvxV%2F%2BJjL;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
u=C|0AAArtzEdK7cxHQAAAAAA;Path=/;Domain=agkn.com;Max-Age=31536000;SameSite=None;Secure
Content-Length: 0
Connection: keep-alive

ocsp.r2m02.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
4880684277c0c080c4aa03ee52aaa5e9
40305b9b0ac46401fa961a5f0da06bfee122a4b8
ad7cf40ffac52c8cf3c6f81000794c2b1fb47f128ad630ca53a2ad8dd9acfc19

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 29 Mar 2023 17:25:49 GMT
Last-Modified: Wed, 29 Mar 2023 16:40:45 GMT
Server: ECAcc (bsa/EAE4)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Q7Vo3f8Iq_6ZwQCpfAjN5x5hD_xhJLpFvS4HDemz-ZQ-q9ggmqXCAw==
Age: 2704

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ac2ae69afc70f2a8941ed6b658f4bd0e
5bac1a2c66dd04024217bd79173e2d00098ea987
1565e942701c0c33f8b78d2d64049fea418ee9b2466b3294db350ed57dd3881d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 17:25:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 26 Mar 2023 20:38:00 GMT
Expires: Sun, 02 Apr 2023 20:37:59 GMT
Etag: "5bac1a2c66dd04024217bd79173e2d00098ea987"
Cache-Control: max-age=356529,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7af9d076ec01b50f-OSL

um.simpli.fi/aa_px?sk=217173104470003921585

35.204.158.49

302 Found

142 B

URL HTTP/2
um.simpli.fi/aa_px?sk=217173104470003921585
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /aa_px?sk=217173104470003921585 HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Wed, 29 Mar 2023 17:25:49 GMT
content-type: text/html
content-length: 142
set-cookie: suid=49A2E7B8363A40EABB8F47D32E88B920; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:49 GMT; SameSite=none; Secure;
suid_legacy=49A2E7B8363A40EABB8F47D32E88B920; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:49 GMT; Secure;
location: /empty.gif
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5f8735b4ecf5514e25b219d61762c567
dd537a5d5e8dd2f5bef74fc1a43676c00226484d
b928e446b947523f3e83320cf5c5f155ab8196b093bf49ba06235aa9afcc7711

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 29 Mar 2023 17:25:49 GMT
Last-Modified: Wed, 29 Mar 2023 15:45:08 GMT
Server: ECAcc (nya/790B)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uTTTUyDIhZko7DlKxDAOv1FcTeaUuujm62AHIzd8MET6IFyKZSxKGw==
Age: 6041

um.simpli.fi/empty.gif

35.204.158.49

200 OK

43 B

URL HTTP/2
um.simpli.fi/empty.gif
IP
35.204.158.49:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /empty.gif HTTP/1.1
Host: um.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:49 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: suid=A34A8F223FA84AB18EAF9447B014E5C9; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:49 GMT; SameSite=none; Secure;
suid_legacy=A34A8F223FA84AB18EAF9447B014E5C9; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:49 GMT; Secure;
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
X-Firefox-Spdy: h2

y.clarity.ms/collect

104.211.35.148

204 No Content

0 B

URL HTTP/1.1
y.clarity.ms/collect
IP
104.211.35.148:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /collect HTTP/1.1
Host: y.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 47587
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 29 Mar 2023 17:25:49 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.pennwest.edu
Vary: Origin
Request-Context: appId=cid-v1:dfa4d45a-f309-4181-9ede-77e6e6c0ecf0

sync.bfmio.com/sync?pid=141&uid=27B1A640CE8D4473A278A1BC36E5A798

44.207.189.182

204

0 B

URL HTTP/1.1
sync.bfmio.com/sync?pid=141&uid=27B1A640CE8D4473A278A1BC36E5A798
IP
44.207.189.182:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?pid=141&uid=27B1A640CE8D4473A278A1BC36E5A798 HTTP/1.1
Host: sync.bfmio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 
Date: Wed, 29 Mar 2023 17:25:48 GMT
Set-Cookie: __141_cid=27B1A640CE8D4473A278A1BC36E5A798; Domain=.bfmio.com; Expires=Thu, 28-Mar-2024 17:25:49 GMT; Path=/
__io_cid=840ed3b896f71d2c3b475708ee605e5a53f333f1; Domain=.bfmio.com; Expires=Thu, 28-Mar-2024 17:25:49 GMT; Path=/
Connection: keep-alive

adm.calu.edu/ping

158.83.25.49

301 Moved Permanently

152 B

URL HTTP/2
adm.calu.edu/ping
IP
158.83.25.49:0
ASN
#398655 CALU-ASN

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
152 B (152 bytes)
Hash
43eddf353f757b87c127b4a9dfe03a99
6cf327576af05a949b305d390428a9f46b2b9afa
1ec653c3ceb29f830523015680b7bb78b7a3eaa94952676f2a3af697e1cd136b

HTTP Headers

GET /ping HTTP/1.1
Host: adm.calu.edu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
location: https://adm.pennwest.edu/ping
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Wed, 29 Mar 2023 17:25:49 GMT
content-length: 152
X-Firefox-Spdy: h2

adm.pennwest.edu/ping

34.198.122.35

200 OK

410 B

URL HTTP/1.1
adm.pennwest.edu/ping
IP
34.198.122.35:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (623), with no line terminators
Size
410 B (410 bytes)
Hash
b2aeec0c0824d20462ada253507d9f8b
1f1297f223ccbac33746322c1c716399a602f9f9
aa536c12f50fed0254b4ce468aa595c3179384defe5067b918b521e62c1bacd6

HTTP Headers

GET /ping HTTP/1.1
Host: adm.pennwest.edu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.pennwest.edu/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/javascript; charset=utf-8
Content-Encoding: gzip
Expires: Wed, 29 Mar 2023 17:55:49 GMT
Set-Cookie: _hash=b159ecda-2658-4e53-8c7d-d19860d05842; path=/; secure; HttpOnly; SameSite=None
_hash=b159ecda-2658-4e53-8c7d-d19860d05842; expires=Wed, 29-Mar-2028 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None
_hashV=202303/1; path=/; secure; HttpOnly; SameSite=None
_hashV=202303/1; expires=Wed, 29-Mar-2028 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None
_node=570493450.47873.0000; path=/; Httponly; Secure
TS01e84c7d=01370406fa61b2cb04401ec2a5ac93e3b38eb9de6fd5729845670e8d7aad715da0915915fc9a1d7854afab960781a6d3abd97934fc; Path=/; HTTPOnly
Strict-Transport-Security: max-age=31536000
Referrer-Policy: origin-when-cross-origin
Date: Wed, 29 Mar 2023 17:25:48 GMT
Content-Length: 410

mx.technolutions.net/ping?id=668532cd-f0fe-96d1-5807-f130d2ad7f86&sid=9gxUpuFJUVlJ1YrKZw9cOn4fPaf9bLHVKW4xXKX2-sZHYHPyRrTsGDYsq7vYp4w1fhzyfnID9InQxG4HQv5VYrcdPiLrQvkxI1ZPGkf-W4A&hid=949f7f12-b9fc-ae82-5d31-14580a22b9b0

143.204.55.128

200 OK

4.4 kB

URL HTTP/2
mx.technolutions.net/ping?id=668532cd-f0fe-96d1-5807-f130d2ad7f86&sid=9gxUpuFJUVlJ1YrKZw9cOn4fPaf9bLHVKW4xXKX2-sZHYHPyRrTsGDYsq7vYp4w1fhzyfnID9InQxG4HQv5VYrcdPiLrQvkxI1ZPGkf-W4A&hid=949f7f12-b9fc-ae82-5d31-14580a22b9b0
IP
143.204.55.128:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
4.4 kB (4437 bytes)
Hash
30e4e3906c61380c7a6970a959683b6a
a0eedc13d1ddb0c0254ffb0e79e316e9dc3ed422
00e0b3fe9bdd755670d5b949d15e6ef0d011cc9e9c1c961943fc8e825293b329

HTTP Headers

GET /ping?id=668532cd-f0fe-96d1-5807-f130d2ad7f86&sid=9gxUpuFJUVlJ1YrKZw9cOn4fPaf9bLHVKW4xXKX2-sZHYHPyRrTsGDYsq7vYp4w1fhzyfnID9InQxG4HQv5VYrcdPiLrQvkxI1ZPGkf-W4A&hid=949f7f12-b9fc-ae82-5d31-14580a22b9b0 HTTP/1.1
Host: mx.technolutions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 4437
server: CloudFront
date: Wed, 29 Mar 2023 17:25:49 GMT
cache-control: private, max-age=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: dDiik8LaX4rPcqxs6oVSkJUOs1GkcRhEdBNt7aoDbnU6CkIZyVuvCg==
X-Firefox-Spdy: h2

pixel.mathtag.com/sync/iframe?mt_uuid=0a546424-749b-4400-a56f-e0c4eadc778e&no_iframe=1&mt_adid=254523&source=mathtag

23.38.200.207

200 OK

677 B

URL HTTP/1.1
pixel.mathtag.com/sync/iframe?mt_uuid=0a546424-749b-4400-a56f-e0c4eadc778e&no_iframe=1&mt_adid=254523&source=mathtag
IP
23.38.200.207:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document, ASCII text
Size
677 B (677 bytes)
Hash
d40dcbee218af49abbd15f61f5da0ffd
e3ec85d9073fa1cc0be1fed18344a6d4a2076e9d
3ef64e4a0001cd55211fff6bd306290f29c7482a6006d070ee21e52484b7ef22

HTTP Headers

GET /sync/iframe?mt_uuid=0a546424-749b-4400-a56f-e0c4eadc778e&no_iframe=1&mt_adid=254523&source=mathtag HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 677
Access-Control-Allow-Origin: *
Server: MT3 668 4401257 master ord-pixel-x51 config_version:"unknown"
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Wed, 29 Mar 2023 17:25:48 GMT
Date: Wed, 29 Mar 2023 17:25:49 GMT
Connection: keep-alive

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
b3bbc461fd85a5544e3513e0e411dd9c
1d87ae63541342e8207dac72ee10511d233fa602
51554a666e9184431819c597c682a784481d1965cf8becbe78e6416b0faed290

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143561
Date: Wed, 29 Mar 2023 17:25:50 GMT
Etag: "6423eab2-1d7"
Expires: Fri, 31 Mar 2023 09:18:31 GMT
Last-Modified: Wed, 29 Mar 2023 07:37:22 GMT
Server: ECAcc (bsa/EA8F)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: S53ztxzCbtCwuSOA-Ge3insKUcbmdM-kNyhdBma9ceQl2zBStdAJmQ==
Age: 6069

bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=1DA251863916494ABB8F02F591EAA71A

54.171.168.204

404 Not Found

49 B

URL HTTP/2
bcp.crwdcntrl.net/map/c=7625/tp=SIMP/tpid=1DA251863916494ABB8F02F591EAA71A
IP
54.171.168.204:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
49 B (49 bytes)
Hash
56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef

HTTP Headers

GET /map/c=7625/tp=SIMP/tpid=1DA251863916494ABB8F02F591EAA71A HTTP/1.1
Host: bcp.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Wed, 29 Mar 2023 17:25:50 GMT
content-type: image/gif
content-length: 49
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.15.61
access-control-allow-origin: *
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2

pixel.mathtag.com/comp/img?mt_id=99&ns=xx&bcdv=0

23.38.200.207

200 OK

0 B

URL HTTP/1.1
pixel.mathtag.com/comp/img?mt_id=99&ns=xx&bcdv=0
IP
23.38.200.207:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /comp/img?mt_id=99&ns=xx&bcdv=0 HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 0
Access-Control-Allow-Origin: *
Server: MT3 668 4401257 master ord-pixel-x7 config_version:"unknown"
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Wed, 29 Mar 2023 17:25:49 GMT
Date: Wed, 29 Mar 2023 17:25:50 GMT
Connection: keep-alive
Set-Cookie: uuid=29066424-749e-4f00-abd8-595a7cbea6aa; domain=.mathtag.com; path=/; expires=Thu, 25-Apr-2024 17:25:50 GMT; SameSite=None; Secure

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
87f71474568b5cb49fb935c779627fc7
8d1576cb5275108ab920fe942f4783d82417d762
057ddf8a57b2bd577c3c5755352f595cedcd1bd0459a2eb06fb3444e6fdd1f19

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "057DDF8A57B2BD577C3C5755352F595CEDCD1BD0459A2EB06FB3444E6FDD1F19"
Last-Modified: Tue, 28 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21550
Expires: Wed, 29 Mar 2023 23:25:00 GMT
Date: Wed, 29 Mar 2023 17:25:50 GMT
Connection: keep-alive

go.pennwest-grad.org/mtc.js

174.129.6.84

200 OK

28 kB

URL HTTP/2
go.pennwest-grad.org/mtc.js
IP
174.129.6.84:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (28305)
Size
28 kB (28024 bytes)
Hash
05af38c4a72003cf4f2fcd6101e4eb96
8b39ecc79679147f0cc89092fd1dfe9ffb19fa96
ad5e8e3267af877638e967a2dea6f900fac25dd267eef9714428ef36c3af7a66

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /mtc.js HTTP/1.1
Host: go.pennwest-grad.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:50 GMT
content-type: application/javascript
content-length: 28024
cache-control: public, max-age=60
link: <https://go.pennwest-grad.org/api/v2/docs.jsonld>; rel="http://www.w3.org/ns/hydra/core#apiDocumentation"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

c.clarity.ms/c.gif

68.219.88.97

302 Found

0 B

URL HTTP/2
c.clarity.ms/c.gif
IP
68.219.88.97:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?ctsa=mr&CtsSyncId=44B24AA3DA3348C7AF4DB3C9223BF273&RedC=c.clarity.ms&MXFR=3747C689F9906B0E1DC5D46AFD90658C
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=3747C689F9906B0E1DC5D46AFD90658C; domain=.clarity.ms; expires=Mon, 22-Apr-2024 17:25:51 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Wed, 29 Mar 2023 17:25:50 GMT
content-length: 0
X-Firefox-Spdy: h2

go.pennwest-grad.org/mtc/event

174.129.6.84

204 No Content

0 B

URL HTTP/2
go.pennwest-grad.org/mtc/event
IP
174.129.6.84:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

OPTIONS /mtc/event HTTP/1.1
Host: go.pennwest-grad.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-requested-with
Referer: https://www.pennwest.edu/
Origin: https://www.pennwest.edu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Wed, 29 Mar 2023 17:25:51 GMT
cache-control: no-cache, private, max-age=1209600
expires: Wed, 12 Apr 2023 17:25:51 GMT
X-Firefox-Spdy: h2

c.bing.com/c.gif?ctsa=mr&CtsSyncId=44B24AA3DA3348C7AF4DB3C9223BF273&RedC=c.clarity.ms&MXFR=3747C689F9906B0E1DC5D46AFD90658C

13.107.21.200

302 Found

0 B

URL HTTP/2
c.bing.com/c.gif?ctsa=mr&CtsSyncId=44B24AA3DA3348C7AF4DB3C9223BF273&RedC=c.clarity.ms&MXFR=3747C689F9906B0E1DC5D46AFD90658C
IP
13.107.21.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c.gif?ctsa=mr&CtsSyncId=44B24AA3DA3348C7AF4DB3C9223BF273&RedC=c.clarity.ms&MXFR=3747C689F9906B0E1DC5D46AFD90658C HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.pennwest.edu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?ctsa=mr&CtsSyncId=44B24AA3DA3348C7AF4DB3C9223BF273&MUID=08857681107C6F5216EC6462112B6EF4
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: MUID=08857681107C6F5216EC6462112B6EF4; domain=.bing.com; expires=Mon, 22-Apr-2024 17:25:51 GMT; path=/; SameSite=None; Secure; Priority=High;
MR=0; domain=c.bing.com; expires=Wed, 05-Apr-2023 17:25:51 GMT; path=/; SameSite=None; Secure;
SRM_B=08857681107C6F5216EC6462112B6EF4; domain=c.bing.com; expires=Mon, 22-Apr-2024 17:25:51 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FCC0B25A65E341FBAA0ACB381E82B119 Ref B: OSL30EDGE0406 Ref C: 2023-03-29T17:25:51Z
date: Wed, 29 Mar 2023 17:25:50 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.23

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.23:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1777 bytes)
Hash
79f04c4b361b750fbf5724ca20d871e8
b761963a7a9000f700535ea5dcf2e36714fd6a35
23de7d5d000b3c6de2baba8957e8739c1a328cf3b0a352a72ae11bd82afb7072

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 29 Mar 2023 17:25:51 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 28 Mar 2023 22:41:21 GMT
Expires: Wed, 29 Mar 2023 22:41:21 GMT
ETag: "b761963a7a9000f700535ea5dcf2e36714fd6a35"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

c.clarity.ms/c.gif?ctsa=mr&CtsSyncId=44B24AA3DA3348C7AF4DB3C9223BF273&MUID=08857681107C6F5216EC6462112B6EF4

68.219.88.97

200 OK

42 B

URL HTTP/2
c.clarity.ms/c.gif?ctsa=mr&CtsSyncId=44B24AA3DA3348C7AF4DB3C9223BF273&MUID=08857681107C6F5216EC6462112B6EF4
IP
68.219.88.97:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12

HTTP Headers

GET /c.gif?ctsa=mr&CtsSyncId=44B24AA3DA3348C7AF4DB3C9223BF273&MUID=08857681107C6F5216EC6462112B6EF4 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.pennwest.edu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 16 Mar 2023 17:16:22 GMT
accept-ranges: bytes
etag: "c4b6d572b58d91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Wed, 29-Mar-2023 17:35:51 GMT; path=/; SameSite=None; Secure;
date: Wed, 29 Mar 2023 17:25:50 GMT
content-length: 42
X-Firefox-Spdy: h2

go.pennwest-grad.org/mtracking.gif?page_title=Pennsylvania%20Western%20University%20%7C%20PennWest&page_language=en-US&preferred_locale=en_US&page_referrer=&page_url=https%3A%2F%2Fwww.pennwest.edu%2F&counter=0&timezone_offset=0&resolution=1280x1024&platform=UNIX&do_not_track=false&timezone=UTC

174.129.6.84

200 OK

43 B

URL HTTP/2
go.pennwest-grad.org/mtracking.gif?page_title=Pennsylvania%20Western%20University%20%7C%20PennWest&page_language=en-US&preferred_locale=en_US&page_referrer=&page_url=https%3A%2F%2Fwww.pennwest.edu%2F&counter=0&timezone_offset=0&resolution=1280x1024&platform=UNIX&do_not_track=false&timezone=UTC
IP
174.129.6.84:0
ASN
#14618 AMAZON-AES

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22

HTTP Headers

GET /mtracking.gif?page_title=Pennsylvania%20Western%20University%20%7C%20PennWest&page_language=en-US&preferred_locale=en_US&page_referrer=&page_url=https%3A%2F%2Fwww.pennwest.edu%2F&counter=0&timezone_offset=0&resolution=1280x1024&platform=UNIX&do_not_track=false&timezone=UTC HTTP/1.1
Host: go.pennwest-grad.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:51 GMT
content-type: image/gif
content-length: 43
set-cookie: mautic_device_id=rx370a8j09hjeki42sqxow4; expires=Thu, 28-Mar-2024 17:25:51 GMT; Max-Age=31536000; path=/; secure; SameSite=None
mtc_id=152661; path=/; secure; SameSite=None
mtc_sid=rx370a8j09hjeki42sqxow4; path=/; secure; SameSite=None
cache-control: max-age=0, must-revalidate, no-cache=Set-Cookie, private, proxy-revalidate
content-encoding: none
expires: Wed, 29 Mar 2023 17:25:51 GMT
last-modified: Wed, 11 Jan 2006 12:59:00 GMT
pragma: no-cache
link: <https://go.pennwest-grad.org/api/v2/docs.jsonld>; rel="http://www.w3.org/ns/hydra/core#apiDocumentation"
X-Firefox-Spdy: h2

y.clarity.ms/collect

104.211.35.148

204 No Content

0 B

URL HTTP/1.1
y.clarity.ms/collect
IP
104.211.35.148:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /collect HTTP/1.1
Host: y.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 11472
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 29 Mar 2023 17:25:51 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.pennwest.edu
Vary: Origin
Request-Context: appId=cid-v1:dfa4d45a-f309-4181-9ede-77e6e6c0ecf0

assets.website-files.com/61d6fd0e48b8c90ff2b291b8/62609ea98dd6763142c07e88_fa-solid-900.ttf

54.230.111.28

200 OK

0 B

URL HTTP/2
assets.website-files.com/61d6fd0e48b8c90ff2b291b8/62609ea98dd6763142c07e88_fa-solid-900.ttf
IP
54.230.111.28:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /61d6fd0e48b8c90ff2b291b8/62609ea98dd6763142c07e88_fa-solid-900.ttf HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.pennwest.edu
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-font-ttf
date: Tue, 14 Mar 2023 06:57:26 GMT
last-modified: Thu, 21 Apr 2022 00:00:42 GMT
etag: W/"738201559a50502aacabdbdb02720910"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: ie6T3GAvQi7yqNkMbCFdj0rm2Frdk1xb
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
age: 1333702
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6wyH-svYI7km8V7AW4puXdpDbfUQn1PDKOSeYkzJDNUMycEm-E-A1A==
X-Firefox-Spdy: h2

cdn.jetboost.io/jetboost.js

54.230.111.63

200 OK

0 B

URL HTTP/2
cdn.jetboost.io/jetboost.js
IP
54.230.111.63:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /jetboost.js HTTP/1.1
Host: cdn.jetboost.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 09 Mar 2023 17:23:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Wed, 29 Mar 2023 06:40:08 GMT
cache-control: max-age=86400
etag: W/"8022976e92cc4e3292d84657a4b64e33"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pltsohe2q1FvdoTQOGxf1uQIBGxbINRBJ6q9oUd_JD5ZgZJtj3Rl0g==
age: 40557
X-Firefox-Spdy: h2

www.clickcease.com/monitor/stat.js

54.230.111.16

200 OK

0 B

URL HTTP/2
www.clickcease.com/monitor/stat.js
IP
54.230.111.16:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /monitor/stat.js HTTP/1.1
Host: www.clickcease.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pennwest.edu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 11:31:37 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 6Er2d0GJvgnFniPQXIH7h8kzG7dJBNJf
server: AmazonS3
content-encoding: gzip
date: Wed, 29 Mar 2023 17:25:47 GMT
etag: W/"1c27f449b067550681f23ad3e53988fa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3Y7zqApr1LCgmiDKN3HcgeOHY8PudgmhjHSJXruHRySzlQb7mtWl5g==
age: 6
x-frame-options: SAMEORIGIN
referrer-policy: no-referrer-when-downgrade
content-security-policy: frame-ancestors 'self' https://clickcease.com https://*.clickcease.com; upgrade-insecure-requests;
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: microphone 'none'; camera 'none';
X-Firefox-Spdy: h2

i.simpli.fi/p?cid=392317&cb=sifi_att_83026871684._hp

34.90.79.92

200 OK

0 B

URL HTTP/2
i.simpli.fi/p?cid=392317&cb=sifi_att_83026871684._hp
IP
34.90.79.92:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /p?cid=392317&cb=sifi_att_83026871684._hp HTTP/1.1
Host: i.simpli.fi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12542078.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:48 GMT
content-type: application/javascript; charset=UTF-8
set-cookie: suid=91D0DCC7F6C54CD098F003CD20B4EABC; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; SameSite=none; Secure;
suid_legacy=91D0DCC7F6C54CD098F003CD20B4EABC; Path=/; domain=simpli.fi; Expires=Fri, 29-Mar-24 17:25:48 GMT; Secure;
uid_syncd=true; path=/; expires=Wed, 05 Apr 2023 17:25:48 GMT; domain=.simpli.fi; secure
uid_syncd_secure=true; path=/; expires=Wed, 05 Apr 2023 17:25:48 GMT; domain=.simpli.fi; samesite=none; secure
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0, max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT, Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2

aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=2D031D3F39A149F4A4C2F4BB45941C9A

3.77.83.108

302 Found

0 B

URL HTTP/2
aa.agkn.com/adscores/g.pixel?sid=9201915418&sifi_uid=2D031D3F39A149F4A4C2F4BB45941C9A
IP
3.77.83.108:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /adscores/g.pixel?sid=9201915418&sifi_uid=2D031D3F39A149F4A4C2F4BB45941C9A HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
date: Wed, 29 Mar 2023 17:25:49 GMT
location: https://d.agkn.com/pixel/10751/?che=1680110749086&ip=91.90.42.154&l1=https%3A%2F%2Fum.simpli.fi%2Faa_px%3Fsk%3D217173104470003921585
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3AI0yVPR2ImLIEpzDwdQS5dh14fV0KR3ja; Path=/; Domain=.agkn.com; Expires=Fri, 29-Mar-2024 17:25:49 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2

simplifi.partners.tremorhub.com/sync?UISF=4AB5230E5701488C838A62BA6B42D28C

52.6.16.146

200 OK

0 B

URL HTTP/2
simplifi.partners.tremorhub.com/sync?UISF=4AB5230E5701488C838A62BA6B42D28C
IP
52.6.16.146:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sync?UISF=4AB5230E5701488C838A62BA6B42D28C HTTP/1.1
Host: simplifi.partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://12542078.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 29 Mar 2023 17:25:49 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (35)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML