www.realhopeoswego.org/
199.34.228.73301 Moved Permanently 370 B IP 199.34.228.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3168afd7f2e52d52c9b401688c845337
6f5bff725fa21cc9e90daa48dc7a54941a550bf9
155fb34847bde6401bc6eac53a03701be4ef19d2832fcbe9528053623fd47cf1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 01 Sep 2022 01:52:10 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.realhopeoswego.org
Vary: X-W-SSL,User-Agent
Location: https://www.realhopeoswego.org/
X-Host: grn81.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 370
Keep-Alive: timeout=10, max=61
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7502
Expires: Thu, 01 Sep 2022 03:57:12 GMT
Date: Thu, 01 Sep 2022 01:52:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 01 Sep 2022 01:26:52 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -snNPDN6LqXVs-9xLLgHYhWyT8ZCKEdYOY58bFazwWxkiDm2HroFoQ==
Age: 1518
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 31 Aug 2022 02:27:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: M8mPjRImrNfnzkU51u2bNLRK-3gi2sz03CD5cAsIIXG5lTiEE2iq3w==
age: 84306
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Sep 2022 01:52:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d5353fb8d0691b46d48f9f24a7326223
cf8c662837cf0379b25907756cce72faf0ffa283
e67d235dd18636063089a2c3dfcc5945e7d8b316c848c3848e3d37bf92a4d773
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E67D235DD18636063089A2C3DFCC5945E7D8B316C848C3848E3D37BF92A4D773"
Last-Modified: Tue, 30 Aug 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 01 Sep 2022 07:52:11 GMT
Date: Thu, 01 Sep 2022 01:52:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 01 Sep 2022 01:17:12 GMT
Cache-Control: max-age=3600
Expires: Thu, 01 Sep 2022 01:50:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: byG6gDL_mVuGFbx_zcUl8mLX1dsT9MhmaO2bgjyGn-bJ-6QwP43jXw==
Age: 3306
www.realhopeoswego.org/
199.34.228.73200 OK 9.7 kB IP 199.34.228.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1350), with CRLF, LF line terminators
Hash b00391d68371d5acd08b457e6e3c603d
ab16547d1cbc2d223adb22133b1eaf29041ae724
b08b469db715920720e310ef2fc534922be854a2eee1d72abc00bfe473670d77
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:52:11 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.realhopeoswego.org
language=en; expires=Thu, 15-Sep-2022 01:52:11 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"ba56efa59ab02ed61327f267c2c2975e-gzip"
Content-Encoding: gzip
X-Host: grn94.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 9684
Keep-Alive: timeout=10, max=21
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83be4ca2ebb87af44323dd073807bc9e
3ef0ca2b0c351c7d1eb1b7f4daeba6453a632fc6
1ba9c4dbdbd577bf443bc6499ab1edb2e0ea3b382f529fdc2d98021276a3158b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6402
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:11 GMT
Last-Modified: Thu, 01 Sep 2022 00:05:29 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a7aab826beb3533ba03cfe6bab46f240
000c9a63535a3c7c9cadaea7630f1f1443399d56
5fc3e2785f52dbe5fa0e7bbe8d9bfa8476b574a3357df2374ea991e049a1d73b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/js/site/main.js?buildTime=1643323087
151.101.85.46200 OK 146 kB URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (32147)
Size 146 kB (146400 bytes)
Hash 81b8673c5d3aa3ab8c0574f2a8f0e3b4
2e0661bc7907d9e2703b3347c3fec579f0aef5d6
0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
GET /js/site/main.js?buildTime=1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 29 Aug 2022 23:14:16 GMT
etag: "630d4848-74804"
expires: Tue, 13 Sep 2022 11:02:56 GMT
cache-control: max-age=1209600
x-host: blu31.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 01:52:11 GMT
age: 139755
x-served-by: cache-sjc10058-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661997131.404256,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146400
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/old/fancybox.css?1643323087
151.101.85.46200 OK 1.2 kB URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 22 Aug 2022 20:43:20 GMT
etag: "6303ea68-f47"
expires: Tue, 06 Sep 2022 10:28:50 GMT
cache-control: max-age=1209600
x-host: blu100.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 01:52:11 GMT
age: 746601
x-served-by: cache-sjc10056-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1661997131.414078,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1218
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 888b942029507a51149d121a3240e9d6
93590a3ac3a943506798dba597335cb144a5795d
7d358a347c38b06733ae7e7eae5a02f583d0d3db2a241bf427dff2588d7c6c1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/css/social-icons.css?buildtime=1643323087
151.101.85.46200 OK 1.6 kB URL HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (13080)
Hash 771ec2cf038214c40ed54dc7d0ce7e4c
20b2a198541e596346f26f9e15d51488bb76608b
33269d6ddede29e1043070cb0ee0f3034f154ce264970994fe071c092fa8b675
GET /css/social-icons.css?buildtime=1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 22 Aug 2022 20:43:15 GMT
etag: W/"6303ea63-3319"
expires: Tue, 06 Sep 2022 07:43:41 GMT
cache-control: max-age=1209600
x-host: grn96.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 01:52:11 GMT
age: 756510
x-served-by: cache-sjc10030-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1661997131.416434,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1639
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/sites.css?buildTime=1643323087
151.101.85.46200 OK 30 kB URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /css/sites.css?buildTime=1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 22 Aug 2022 20:43:15 GMT
etag: W/"6303ea63-347ac"
expires: Tue, 06 Sep 2022 12:51:12 GMT
cache-control: max-age=1209600
x-host: grn97.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 01:52:11 GMT
age: 738059
x-served-by: cache-sjc10021-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1661997131.412546,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29746
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1643323087&
151.101.85.46200 OK 33 kB URL HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1643323087&
IP 151.101.85.46:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Hash 40ee71f2f2de93b9561845efa9a0cbbc
13451e3fb165d1ad524d9863d8344eab4a2fe353
41a33daf28fc89ce06f3c6a6029d078c20a0f42f07d6ec3dc7127d206dcec5fe
GET /js/lang/en/stl.js?buildTime=1643323087& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 16:12:50 GMT
etag: "62fe6502-2c44e"
expires: Mon, 05 Sep 2022 12:37:43 GMT
cache-control: max-age=1209600
x-host: blu122.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 01:52:11 GMT
age: 825268
x-served-by: cache-sjc10061-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661997131.412293,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32802
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1643323087
151.101.85.46200 OK 159 kB URL HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1643323087
IP 151.101.85.46:0
File type ASCII text, with very long lines (32007)
Size 159 kB (158930 bytes)
Hash f740fdfbcf394f270a9b176029fa6f37
5f20c49627104282744508eb0278d7185128532e
3021f0f944c9bd7c6e995601f25b3d970e0bd41f9a411f08b2871bb5415a8707
GET /js/site/main-customer-accounts-site.js?buildTime=1643323087 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 17:52:38 GMT
etag: "630513e6-8250f"
expires: Wed, 07 Sep 2022 12:37:44 GMT
cache-control: max-age=1209600
x-host: grn57.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 01:52:11 GMT
age: 652466
x-served-by: cache-sjc10046-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1661997131.418314,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 158930
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.211.93.78101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.211.93.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1G1Y+frcyEStYwXAkg7g9g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BfCScNa1NHZYFB5cCc9GU8mTL3U=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a7aab826beb3533ba03cfe6bab46f240
000c9a63535a3c7c9cadaea7630f1f1443399d56
5fc3e2785f52dbe5fa0e7bbe8d9bfa8476b574a3357df2374ea991e049a1d73b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 888b942029507a51149d121a3240e9d6
93590a3ac3a943506798dba597335cb144a5795d
7d358a347c38b06733ae7e7eae5a02f583d0d3db2a241bf427dff2588d7c6c1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/files/theme/custom.js?1565969634
199.34.228.73200 OK 1.8 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/custom.js?1565969634
IP 199.34.228.73:0
Hash 1f7d51d1b0acc9268e8aa57af11ee258
df55901d31c5b1de0181820e1bf123d61b5ec6c6
44ecca81c81024cd199ad979fd0ca46a379978a73a1c9ce09b6dfc9393cceff0
GET /files/theme/custom.js?1565969634 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 19 Apr 2022 15:56:37 GMT
x-rgw-object-type: Normal
ETag: W/"48e887857aec23f184b0aa49c18d2445"
x-amz-request-id: tx000000000000001b90fc6-0062847c15-b9fbc29-sfo1
X-Storage-Bucket: z0567
X-Storage-Object: 0567021bc3973d113c6b0b6e68d0e9a8b53f38a7f60716c83214a133cc00139a
X-Host: blu13.sf2p.intern.weebly.net
Content-Encoding: gzip
www.realhopeoswego.org/files/templateArtifacts.js?1643413329
199.34.228.73200 OK 1.6 kB URL HTTP/1.1 www.realhopeoswego.org/files/templateArtifacts.js?1643413329
IP 199.34.228.73:0
File type exported SGML document, ASCII text, with very long lines (1630)
Hash e0836e8203c22b8e4086f27e91e86f5a
28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6
Analyzer Verdict Alert fortinet Malware
GET /files/templateArtifacts.js?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:11 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn127.sf2p.intern.weebly.net
Content-Encoding: gzip
www.realhopeoswego.org/files/theme/plugins.js?1565969634
199.34.228.73200 OK 16 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/plugins.js?1565969634
IP 199.34.228.73:0
Hash 43e6b0bb6eb6524188831a282f7656d7
44e73fe367fc1fb8efee7eefac557b7d76ef0f44
9001fcfe93ceab40de4bb3535fc61335318c56d4440b53070cac27a26fef42bb
Analyzer Verdict Alert fortinet Malware
GET /files/theme/plugins.js?1565969634 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 24 Apr 2022 01:56:38 GMT
x-rgw-object-type: Normal
ETag: W/"2b8d85f1ea01d2c3e8b962eac8d76a5c"
x-amz-request-id: tx000000000000001b40535-0062847a75-b9fbc64-sfo1
X-Storage-Bucket: zb635
X-Storage-Object: b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5
X-Host: blu49.sf2p.intern.weebly.net
Content-Encoding: gzip
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.85.46200 OK 26 kB URL HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 17 Aug 2022 21:50:22 GMT
etag: "62fd629e-124fe"
expires: Thu, 01 Sep 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: grn5.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 01:52:12 GMT
age: 1185210
x-served-by: cache-sjc10027-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1965
x-timer: S1661997132.204081,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/wSocial/wsocial.woff?ts=1661200995686
151.101.85.46200 OK 2.6 kB URL HTTP/2 cdn2.editmysite.com/fonts/wSocial/wsocial.woff?ts=1661200995686
IP 151.101.85.46:0
File type Web Open Font Format, TrueType, length 2636, version 1.0\012- data
Hash 0e88795b66eeac48b209209aa0179411
983e16566390f9167c6c4fbbdb052623fc01a631
e8106b06fab14948098cae97983eafbe1a60643ac725b2a029e4da57d43854df
GET /fonts/wSocial/wsocial.woff?ts=1661200995686 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/woff
last-modified: Mon, 22 Aug 2022 16:54:07 GMT
etag: "6303b4af-a4c"
expires: Mon, 05 Sep 2022 21:08:12 GMT
cache-control: max-age=1209600
x-host: blu85.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 01:52:12 GMT
age: 794638
x-served-by: cache-sjc10037-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 3
x-timer: S1661997132.247158,VS0,VE0
access-control-allow-origin: *
content-length: 2636
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1a93e8c1857c6d3b244d14ff166ad5f
b85467e5e77a51099b6f25527c9885c75aeef344
8978f8d4b0ab30408ef69c42dcb528422b7bbabc2a87971d5aeb6b3080fafb4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1a93e8c1857c6d3b244d14ff166ad5f
b85467e5e77a51099b6f25527c9885c75aeef344
8978f8d4b0ab30408ef69c42dcb528422b7bbabc2a87971d5aeb6b3080fafb4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Aug 2022 06:06:20 GMT
expires: Fri, 25 Aug 2023 06:06:20 GMT
cache-control: public, max-age=31536000
age: 589552
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12848, version 1.0\012- data
Hash f0b3206d02a2f684530117ce1d7e8ce0
f3708b707b65e241b0f1c819d5f7bf7da8412653
f31b80562610135edd91a86ec7f243c5eeaec2ec08337e6a20c2d135d8e217da
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Aug 2022 16:43:29 GMT
expires: Fri, 25 Aug 2023 16:43:29 GMT
cache-control: public, max-age=31536000
age: 551323
last-modified: Mon, 11 Jul 2022 18:56:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b4a73637dd140aa2a59daa477faa306
7375e688e33e8398841e96d1d8d5a80885a7f744
95be73fc23236be733bc5de76f214a6c9efddf515d7479e1391e95ee1c09441c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/25734117-10155425686983318-5089469130545338446-o.jpg?1552863824
199.34.228.73200 OK 83 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/25734117-10155425686983318-5089469130545338446-o.jpg?1552863824
IP 199.34.228.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1065x601, components 3\012- data
Hash 95b654c7fd06451c884e1a9eda521ae3
590155158783a917ccbd8520e627897200c12a65
321a9c42091a3f28cc99190be88d246f8acc38ae31d1fd9021ee2ffd639ec15e
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/2/4/0/124018328/published/25734117-10155425686983318-5089469130545338446-o.jpg?1552863824 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:12 GMT
Content-Type: image/jpeg
Content-Length: 82857
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 23:03:44 GMT
x-rgw-object-type: Normal
ETag: "95b654c7fd06451c884e1a9eda521ae3"
x-amz-request-id: tx000000000000029a89007-006302f062-c03521c-sfo1
X-Storage-Bucket: z321a
X-Storage-Object: 321a9c42091a3f28cc99190be88d246f8acc38ae31d1fd9021ee2ffd639ec15e
X-Host: grn29.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1a93e8c1857c6d3b244d14ff166ad5f
b85467e5e77a51099b6f25527c9885c75aeef344
8978f8d4b0ab30408ef69c42dcb528422b7bbabc2a87971d5aeb6b3080fafb4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/coins-912719-1920.jpg?1553259709
199.34.228.73200 OK 27 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/coins-912719-1920.jpg?1553259709
IP 199.34.228.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 384x256, components 3\012- data
Hash 8411fa9dbec3a40fd8f70bdd819d3102
5a2707cdf3b2d6a0017a22de13c8eebd0494e792
a8391ed95fc3358d1ff6263c2501dc396ec2b9451a7afefa9bb973b7a5c2e03c
GET /uploads/1/2/4/0/124018328/published/coins-912719-1920.jpg?1553259709 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:12 GMT
Content-Type: image/jpeg
Content-Length: 27421
Connection: keep-alive
Last-Modified: Fri, 22 Mar 2019 13:01:49 GMT
x-rgw-object-type: Normal
ETag: "8411fa9dbec3a40fd8f70bdd819d3102"
x-amz-request-id: tx00000000000002d78f844-0063086e0a-c03521c-sfo1
X-Storage-Bucket: za839
X-Storage-Object: a8391ed95fc3358d1ff6263c2501dc396ec2b9451a7afefa9bb973b7a5c2e03c
X-Host: blu13.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.google.com/recaptcha/api.js?_=1661997131776
142.250.74.164200 OK 554 B URL HTTP/2 www.google.com/recaptcha/api.js?_=1661997131776
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 5eac3765139a2c0d4f3dc6f5ae0bf5e7
36f193b5a6b90d5de119ae226d47d053de14f08f
21cabea9a3a73479a0072f7c6b151c96ee455b803fcb084f001e4edd60e8b73e
GET /recaptcha/api.js?_=1661997131776 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 01 Sep 2022 01:52:12 GMT
date: Thu, 01 Sep 2022 01:52:12 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 554
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/29573050-10155679475053318-4597406936829406111-n.jpg?1552863936
199.34.228.73200 OK 46 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/29573050-10155679475053318-4597406936829406111-n.jpg?1552863936
IP 199.34.228.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 718x405, components 3\012- data
Hash eb53df0cfd9c2f20d63c92fcba3f8141
45526f4223b803162fb53ee265b8d4d0a28d0a60
4ae3478d139c40b24a3627f698e7c85ac4dda5fe9f40ecf8dba1834fda1d833e
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/2/4/0/124018328/published/29573050-10155679475053318-4597406936829406111-n.jpg?1552863936 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:12 GMT
Content-Type: image/jpeg
Content-Length: 46392
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 23:05:36 GMT
x-rgw-object-type: Normal
ETag: "eb53df0cfd9c2f20d63c92fcba3f8141"
x-amz-request-id: tx0000000000000196264a4-0062e91e6b-bfe27ea-sfo1
X-Storage-Bucket: z4ae3
X-Storage-Object: 4ae3478d139c40b24a3627f698e7c85ac4dda5fe9f40ecf8dba1834fda1d833e
X-Host: blu25.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1145866c536ee429cd1062cf67702ce1
7a6539548ef7146a32f8375f0c4b549561ea3f54
d20925f628903a9c88f8cf350448ed265d03e2a7ff24221dda6797501cf58a90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/files/theme/fonts/2cd55546-ec00-4af9-aeca-4a3cd186da53.woff2?1643413329
199.34.228.73200 OK 17 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/2cd55546-ec00-4af9-aeca-4a3cd186da53.woff2?1643413329
IP 199.34.228.73:0
File type Web Open Font Format (Version 2), TrueType, length 16560, version 2.6553\012- data
Hash 27958408325380d903e67d87768563b8
d728e699c79072f1c7b9602c771e241b8c04c8a4
83f8b8932766826c1dd3a228b48f4072586ca09f781d64e2950d9f0e235c00a0
GET /files/theme/fonts/2cd55546-ec00-4af9-aeca-4a3cd186da53.woff2?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:12 GMT
Content-Type: font/woff2
Content-Length: 16561
Connection: keep-alive
Last-Modified: Fri, 30 Aug 2019 08:25:03 GMT
x-rgw-object-type: Normal
ETag: "27958408325380d903e67d87768563b8"
x-amz-request-id: tx000000000000001b8df36-0062847be8-b9fbc29-sfo1
X-Storage-Bucket: z83f8
X-Storage-Object: 83f8b8932766826c1dd3a228b48f4072586ca09f781d64e2950d9f0e235c00a0
X-Host: grn139.sf2p.intern.weebly.net
Accept-Ranges: bytes
cdn2.editmysite.com/images/editor/theme-background/stock/Beach-Biking.jpg
151.101.85.46200 OK 216 kB URL HTTP/2 cdn2.editmysite.com/images/editor/theme-background/stock/Beach-Biking.jpg
IP 151.101.85.46:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=Mario Habenbacher], baseline, precision 8, 2280x1667, components 3\012- data
Size 216 kB (216371 bytes)
Hash ab428b11898a6a9aed8f181b68b8dbea
449eca1b1c661b247913ba62986c35879bb7c7b4
50063716eb602d31174eb7e3a4a5b2e1074d171cace9716b4b4e14c2190b89dd
GET /images/editor/theme-background/stock/Beach-Biking.jpg HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvQIal1qBHPoONi380v0DveeXPmLAPPFvhFwejn3JInc3jFLZOiqXOBrZMUlHPejMFsiIraTeaH1WBGuaUrL7l6iA
cache-control: public, max-age=86400, s-maxage=259200
expires: Sun, 04 Sep 2022 01:52:12 GMT
last-modified: Thu, 25 May 2017 17:30:31 GMT
etag: "ab428b11898a6a9aed8f181b68b8dbea"
x-goog-generation: 1495733431772764
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 216371
content-type: image/jpeg
x-goog-hash: crc32c=dUMLKA==, md5=q0KLEYmKaprtjxgbaLjb6g==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Thu, 01 Sep 2022 01:52:12 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1661997132.223668,VS0,VE358
access-control-allow-origin: *
content-length: 216371
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/theme/fonts/2e3f5cb9-101f-46cf-a7b3-dfaa58261e03.woff2?1643413329
199.34.228.73200 OK 19 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/2e3f5cb9-101f-46cf-a7b3-dfaa58261e03.woff2?1643413329
IP 199.34.228.73:0
File type Web Open Font Format (Version 2), TrueType, length 18636, version 2.6553\012- data
Hash b3aa7e2126c418e820b06924717c2ce9
35e12e34fb21fd08390027dbf0a9975c1444e863
cace42567eefa76edc8b069bb9cdf9fda7486243911fa88188efb2efca387a4a
GET /files/theme/fonts/2e3f5cb9-101f-46cf-a7b3-dfaa58261e03.woff2?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:12 GMT
Content-Type: font/woff2
Content-Length: 18637
Connection: keep-alive
Last-Modified: Fri, 30 Aug 2019 08:25:04 GMT
x-rgw-object-type: Normal
ETag: "b3aa7e2126c418e820b06924717c2ce9"
x-amz-request-id: tx000000000000000c964cf-0061a70717-a9f6a62-sfo1
X-Storage-Bucket: zcace
X-Storage-Object: cace42567eefa76edc8b069bb9cdf9fda7486243911fa88188efb2efca387a4a
X-Host: grn70.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/10858566-10205580632342086-5385752792553485738-n.jpg?1552863841
199.34.228.73200 OK 99 kB URL HTTP/1.1 www.realhopeoswego.org/uploads/1/2/4/0/124018328/published/10858566-10205580632342086-5385752792553485738-n.jpg?1552863841
IP 199.34.228.73:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 956x539, components 3\012- data
Hash dbdffe3d579eb4701cf8689796f59e61
722cfa822fd11e002b2f8119ca43440831142e96
5fda61389dfb65cab1202471bfe4d2f846d1af26e23736afeb0d5fd0f714e965
Analyzer Verdict Alert fortinet Malware
GET /uploads/1/2/4/0/124018328/published/10858566-10205580632342086-5385752792553485738-n.jpg?1552863841 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:12 GMT
Content-Type: image/jpeg
Content-Length: 99250
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 23:04:01 GMT
x-rgw-object-type: Normal
ETag: "dbdffe3d579eb4701cf8689796f59e61"
x-amz-request-id: tx000000000000032c0ebe2-006310104c-bfe36ba-sfo1
X-Storage-Bucket: z5fda
X-Storage-Object: 5fda61389dfb65cab1202471bfe4d2f846d1af26e23736afeb0d5fd0f714e965
X-Host: grn32.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/7377dbe6-f11a-4a05-b33c-bc8ce1f60f84.woff2?1643413329
199.34.228.73200 OK 19 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/7377dbe6-f11a-4a05-b33c-bc8ce1f60f84.woff2?1643413329
IP 199.34.228.73:0
File type Web Open Font Format (Version 2), TrueType, length 18964, version 2.6553\012- data
Hash 03eed84923bfc319da88de04298fa495
9b4e82ce10dc1ae528d53e22045df8610e5f3dcc
0f7cae04d4ab4ba9c1bceb2a59ab9dcd925103f186c6c430cf5d9ab032c18128
GET /files/theme/fonts/7377dbe6-f11a-4a05-b33c-bc8ce1f60f84.woff2?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:12 GMT
Content-Type: font/woff2
Content-Length: 18965
Connection: keep-alive
Last-Modified: Fri, 30 Aug 2019 08:25:13 GMT
x-rgw-object-type: Normal
ETag: "03eed84923bfc319da88de04298fa495"
x-amz-request-id: tx000000000000001cb5663-00628495cd-b9fbc20-sfo1
X-Storage-Bucket: z0f7c
X-Storage-Object: 0f7cae04d4ab4ba9c1bceb2a59ab9dcd925103f186c6c430cf5d9ab032c18128
X-Host: grn139.sf2p.intern.weebly.net
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8136
Expires: Thu, 01 Sep 2022 04:07:48 GMT
Date: Thu, 01 Sep 2022 01:52:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8136
Expires: Thu, 01 Sep 2022 04:07:48 GMT
Date: Thu, 01 Sep 2022 01:52:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8136
Expires: Thu, 01 Sep 2022 04:07:48 GMT
Date: Thu, 01 Sep 2022 01:52:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfc1af67-f228-4148-a5f1-b9d751d203d5.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfc1af67-f228-4148-a5f1-b9d751d203d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e6bf286fe74ee70a2819dba1d843cd9
5a81f8462cfc9f17689152bb3a77407227099d41
4678c57ae3e892d1a39414992fe248b4638e6e1ba1ff9310c47c906e3a717cd3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfc1af67-f228-4148-a5f1-b9d751d203d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4138
x-amzn-requestid: 63a73745-7dc5-434b-ad2c-4dbf05013749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjIrEH1cIAMFx_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630abb13-3e815ee876f88f0a2d1a825d;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 00:47:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -RdnXPFoYLRwAZMO6ujqeKSQMOFBdXOimvJUDp1IuxJBOnzvscMkcA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 02:17:14 GMT
age: 84898
etag: "5a81f8462cfc9f17689152bb3a77407227099d41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79bea3b3-c558-48ed-979e-3282a56393da.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79bea3b3-c558-48ed-979e-3282a56393da.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0773269fad1678055c52b480b9e87750
456dbbf8f3dfcfd63aab4201a04efd20262b9385
6a65d7520e705c6c20ef97254ed1d6116daca506258368292c58f5f728987191
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79bea3b3-c558-48ed-979e-3282a56393da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8550
x-amzn-requestid: 6a3fd299-a5ef-4069-b686-74356344d6d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XikiaFbaoAMFyaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8142-1b7fe4644a7045ff0284c401;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 20:40:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3Nbc4LQ7c0pWsUkWOsDkvON4Kcy_irlBnWdODrmYLn56WFRvOJIjXw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 18:08:08 GMT
age: 27844
etag: "456dbbf8f3dfcfd63aab4201a04efd20262b9385"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd1bafb-f92b-46dc-9f17-4df493cefb83.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd1bafb-f92b-46dc-9f17-4df493cefb83.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac4d5b101c9dc6a6f7e4bf252bfa9ca7
b844f3dcb14a2995644312406a80842e3f02a114
e81f08ce6d9c7670f6e291f3d6a674b624386bd550d5c364264c3ff8fb7c797a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd1bafb-f92b-46dc-9f17-4df493cefb83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10137
x-amzn-requestid: 7d5f19c4-7c9b-4aad-928c-bb44da795f1f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XaISzFY1IAMF-zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630720de-0ea5331041f0167a196f9820;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 07:12:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: h1ELVJBwpf4d3Fbspah-2KCSXx08D8_ZAgcZZjQSJdkMIUmtNmGJOw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 04:36:47 GMT
age: 76525
etag: "b844f3dcb14a2995644312406a80842e3f02a114"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bffab86-e623-4ccd-9297-981c9dc6e4cd.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bffab86-e623-4ccd-9297-981c9dc6e4cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0f6c541f6335bb709d2270147bd5aed
b691ef5e7a302e2678302818130a9637c3efbe3a
e63922331a4463519e6df77ae7a1ad3316a36e54dd03c00ff6b119ee3fa684c5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bffab86-e623-4ccd-9297-981c9dc6e4cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 79dc68ea-ea2e-4eab-bab9-1c89b0a955a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjMSvHJ-oAMF6Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ac0de-2370cf5363d5f308121f0ca4;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 01:11:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1oGbbOSjJza6WWt0IDMqwsZkCk07uevGo0wML4y5LiexzhqlcHt3lA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 14:45:21 GMT
age: 40011
etag: "b691ef5e7a302e2678302818130a9637c3efbe3a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b2930a9-20c0-4aeb-ae03-60e843f2c997.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b2930a9-20c0-4aeb-ae03-60e843f2c997.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe0f8dc0dc75955c49e3428df508b45f
6aff51bac2fc7d606bf3d92b69c591f9bc6bac81
baa8e2a5c88b713386a6e7f29df8998a145772fd619cca9da70e7b6b09fa8560
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b2930a9-20c0-4aeb-ae03-60e843f2c997.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8252
x-amzn-requestid: a2234584-c3e0-4094-969f-7a31a8031be3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XcZBQGvAoAMFQjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6308086e-4d53731274a22acf18818967;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 23:40:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3OZsjQz19tl-RlRPrk0hsuxNnjvemWBpbtUTNV3EedOqgrYsoIHkoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 03:52:33 GMT
age: 79179
etag: "6aff51bac2fc7d606bf3d92b69c591f9bc6bac81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3dcbf97c-e2ef-42c1-84e6-d36517138af8.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3dcbf97c-e2ef-42c1-84e6-d36517138af8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba47e5bea81246b74db8fa6d1c4c376e
ef02bcd29260cae4175de741b092a2dacb5eba5c
4601bafab731540ab697b41d63083987d6a2ee46d1c14206b2abbf66627fac62
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3dcbf97c-e2ef-42c1-84e6-d36517138af8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4857
x-amzn-requestid: 758325b8-a04e-4ce9-bc27-cd6da315d9cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XaHblE2DIAMF9lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63071f7d-6532032d144ca759147087dd;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 07:06:37 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6cPPedy1cXLvpn_rscgX0VGvclKAeLb3ol1HLuT7d5Bp_zTchX5c7g==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 04:07:57 GMT
age: 78255
etag: "ef02bcd29260cae4175de741b092a2dacb5eba5c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/theme/fonts/1e9892c0-6927-4412-9874-1b82801ba47a.woff?1643413329
199.34.228.73200 OK 21 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/1e9892c0-6927-4412-9874-1b82801ba47a.woff?1643413329
IP 199.34.228.73:0
File type Web Open Font Format, TrueType, length 20709, version 1.0\012- data
Hash 9df5efadcd24b83511f3c339178210d8
74f67081083ebd94979f50e681df20bfbdc4cd8d
0d887fc553f2b9a6488c8bbdeb38d0e70e2da58d5bb34161d32f683af096fdb8
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/1e9892c0-6927-4412-9874-1b82801ba47a.woff?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=03b21138-15be-4c1f-9bd2-938ebb46c609.1661997132.1.1661997132.1661997132.dcc46290-4656-4de9-bcc1-49a936aaac7d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:12 GMT
Content-Type: font/woff
Content-Length: 20710
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:43 GMT
x-rgw-object-type: Normal
ETag: "9df5efadcd24b83511f3c339178210d8"
x-amz-request-id: tx000000000000000bab67f-0061a70717-a9f4046-sfo1
X-Storage-Bucket: z0d88
X-Storage-Object: 0d887fc553f2b9a6488c8bbdeb38d0e70e2da58d5bb34161d32f683af096fdb8
X-Host: grn79.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 9af5f97c7f5bdbf8e7a9dfa05d1e8502
a30d2da5d42bd660c4790aa39c27486aaecd8051
f3f0798d2c835f0bf952172c2afe1cada32fa865833ed9162684a0d86d5c43e9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 01:52:12 GMT
Last-Modified: Thu, 01 Sep 2022 00:58:02 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CQOnpVpEznpN4emrl1ByeDJdiNl_RXTYtBMBBW74KJ_STuHeG4nmaA==
Age: 3250
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 9af5f97c7f5bdbf8e7a9dfa05d1e8502
a30d2da5d42bd660c4790aa39c27486aaecd8051
f3f0798d2c835f0bf952172c2afe1cada32fa865833ed9162684a0d86d5c43e9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 01:52:12 GMT
Last-Modified: Thu, 01 Sep 2022 01:01:19 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XSYaJx-l4svMFJHZq4foGFfmltcV_H2sUarYdx8jiiHDbHj5fUqW1w==
Age: 3053
www.realhopeoswego.org/files/theme/fonts/fa19948e-5e38-4909-b31e-41acd170d6f2.woff?1643413329
199.34.228.73200 OK 25 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/fa19948e-5e38-4909-b31e-41acd170d6f2.woff?1643413329
IP 199.34.228.73:0
File type Web Open Font Format, TrueType, length 24663, version 1.0\012- data
Hash 921592aa07f703ed55036aed49590184
c8eb56bca4fcb3a715b408f15ecd71df0f415e39
304fdd345e780b7dbb6c6e6bc39d24e906e40ac2a618bc78ff81abc769f9b4ae
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/fa19948e-5e38-4909-b31e-41acd170d6f2.woff?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=03b21138-15be-4c1f-9bd2-938ebb46c609.1661997132.1.1661997132.1661997132.dcc46290-4656-4de9-bcc1-49a936aaac7d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:12 GMT
Content-Type: font/woff
Content-Length: 24664
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:43 GMT
x-rgw-object-type: Normal
ETag: "921592aa07f703ed55036aed49590184"
x-amz-request-id: tx000000000000000cae51d-0061a7083c-a9f1b25-sfo1
X-Storage-Bucket: z304f
X-Storage-Object: 304fdd345e780b7dbb6c6e6bc39d24e906e40ac2a618bc78ff81abc769f9b4ae
X-Host: grn79.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/92b66dbd-4201-4ac2-a605-4d4ffc8705cc.woff?1643413329
199.34.228.73200 OK 25 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/92b66dbd-4201-4ac2-a605-4d4ffc8705cc.woff?1643413329
IP 199.34.228.73:0
File type Web Open Font Format, TrueType, length 25168, version 1.0\012- data
Hash 2f4c2c07910a4f4c70e95bbb7859f28e
1e95b73f1e87373b532928dd4a298a904ee440e9
f78c119c0807a2140e669a0e114ae2addcd782c948c91c25639e6eccfa6d08af
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/92b66dbd-4201-4ac2-a605-4d4ffc8705cc.woff?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=03b21138-15be-4c1f-9bd2-938ebb46c609.1661997132.1.1661997132.1661997132.dcc46290-4656-4de9-bcc1-49a936aaac7d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:12 GMT
Content-Type: font/woff
Content-Length: 25169
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:44 GMT
ETag: "2f4c2c07910a4f4c70e95bbb7859f28e"
x-amz-request-id: tx00000000000000000194c-005ea35a17-10e20e2-las
X-Storage-Bucket: zf78c
X-Storage-Object: f78c119c0807a2140e669a0e114ae2addcd782c948c91c25639e6eccfa6d08af
X-Host: grn32.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.realhopeoswego.org/
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:12 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.realhopeoswego.org
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1643413329
199.34.228.73200 OK 39 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1643413329
IP 199.34.228.73:0
File type TrueType Font data, 16 tables, 1st "GPOS", 26 names, Macintosh, Copyright \251 2004 - 2007 Linotype GmbH, www.linotype.com. All rights reserved. This font softw\012- data
Hash 98f6dacde86ebbaac7cc62b34a6e54cf
d232a9249b6f39e7d35ce6a555e070987357acc9
65032d5699bf3d4deb4313aa4d1bb8375053ac7e93dfb4bf631ce9261da20c2b
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=03b21138-15be-4c1f-9bd2-938ebb46c609.1661997132.1.1661997132.1661997132.dcc46290-4656-4de9-bcc1-49a936aaac7d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:12 GMT
Content-Type: font/ttf
Content-Length: 39185
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:44 GMT
x-rgw-object-type: Normal
ETag: "98f6dacde86ebbaac7cc62b34a6e54cf"
x-amz-request-id: tx000000000000000cd072f-0061a70a2b-a9f1b25-sfo1
X-Storage-Bucket: z6503
X-Storage-Object: 65032d5699bf3d4deb4313aa4d1bb8375053ac7e93dfb4bf631ce9261da20c2b
X-Host: grn70.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.235.202.207200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.235.202.207:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1793
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:13 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=f58951d8-94d1-4fbb-839c-2be7c901562b; Expires=Fri, 01 Sep 2023 01:52:13 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.realhopeoswego.org
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.realhopeoswego.org/files/theme/fonts/18839597-afa8-4f0b-9abb-4a30262d0da8.ttf?1643413329
199.34.228.73200 OK 52 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/18839597-afa8-4f0b-9abb-4a30262d0da8.ttf?1643413329
IP 199.34.228.73:0
File type TrueType Font data, 16 tables, 1st "GPOS", 30 names, Macintosh, Copyright \251 2004 - 2007 Linotype GmbH, www.linotype.com. All rights reserved. This font softw\012- data
Hash 0e7e6446b2256e0cab1eda85655b253e
db15e8b7df5ee737e4960e0190af1ceaed74d5ac
a4e7a777a8d0e1a06feffaff42f025b9d8d890ca1df6f46d84f5da810109f5c0
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/18839597-afa8-4f0b-9abb-4a30262d0da8.ttf?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=03b21138-15be-4c1f-9bd2-938ebb46c609.1661997132.1.1661997132.1661997132.dcc46290-4656-4de9-bcc1-49a936aaac7d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:13 GMT
Content-Type: font/ttf
Content-Length: 52433
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:43 GMT
ETag: "0e7e6446b2256e0cab1eda85655b253e"
x-amz-request-id: tx000000000000000001813-005ea35a17-10e20e2-las
X-Storage-Bucket: za4e7
X-Storage-Object: a4e7a777a8d0e1a06feffaff42f025b9d8d890ca1df6f46d84f5da810109f5c0
X-Host: blu13.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.realhopeoswego.org/files/theme/fonts/6de0ce4d-9278-467b-b96f-c1f5f0a4c375.ttf?1643413329
199.34.228.73200 OK 52 kB URL HTTP/1.1 www.realhopeoswego.org/files/theme/fonts/6de0ce4d-9278-467b-b96f-c1f5f0a4c375.ttf?1643413329
IP 199.34.228.73:0
File type TrueType Font data, 16 tables, 1st "GPOS", 32 names, Macintosh, Copyright \251 2004 - 2007 Linotype GmbH, www.linotype.com. All rights reserved. This font softw\012- data
Hash 86cbf50e12da0b519ced148acd8ba2b4
f1d8b59433f059a54232b2db2cba4c17e455da1e
7118fcc9995d78a79c6a13eca290b043acd29399680aae376df5e95bc537fbd3
Analyzer Verdict Alert fortinet Malware
GET /files/theme/fonts/6de0ce4d-9278-467b-b96f-c1f5f0a4c375.ttf?1643413329 HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/files/main_style.css?1643413329
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=03b21138-15be-4c1f-9bd2-938ebb46c609.1661997132.1.1661997132.1661997132.dcc46290-4656-4de9-bcc1-49a936aaac7d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:13 GMT
Content-Type: font/ttf
Content-Length: 52269
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:44 GMT
x-rgw-object-type: Normal
ETag: "86cbf50e12da0b519ced148acd8ba2b4"
x-amz-request-id: tx000000000000001b56cf6-0062848234-b9fbc77-sfo1
X-Storage-Bucket: z7118
X-Storage-Object: 7118fcc9995d78a79c6a13eca290b043acd29399680aae376df5e95bc537fbd3
X-Host: grn139.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.gstatic.com/recaptcha/releases/3TZgZIog-UsaFDv31vC4L9R_/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/3TZgZIog-UsaFDv31vC4L9R_/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (565)
Size 158 kB (158046 bytes)
Hash 5394f2e9f2582c5f0fdb4a75afc867b9
2f07b881d60b4882909b4960c7daa00df12ed0b6
8acfac4ce6dc9331af0cb251d1ddb8cb2db19bff78e09489dd4556ce636e1339
GET /recaptcha/releases/3TZgZIog-UsaFDv31vC4L9R_/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 11:01:04 GMT
expires: Thu, 31 Aug 2023 11:01:04 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 21 Aug 2022 22:02:06 GMT
content-type: text/javascript
age: 53469
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc8ab005623fccad97ec544c1b7ff472
afb4a818db5137fc07b986aa4e5a62ff0032096b
20e90eaeefc4c5e091fd10088cbd47d7774010d1ec9bfa9e00b023919ff47c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/ga.js
142.250.74.40200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 142.250.74.40:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Thu, 01 Sep 2022 00:29:20 GMT
expires: Thu, 01 Sep 2022 02:29:20 GMT
cache-control: public, max-age=7200
age: 4973
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc8ab005623fccad97ec544c1b7ff472
afb4a818db5137fc07b986aa4e5a62ff0032096b
20e90eaeefc4c5e091fd10088cbd47d7774010d1ec9bfa9e00b023919ff47c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.realhopeoswego.org/favicon.ico
199.34.228.73200 OK 4.3 kB URL HTTP/1.1 www.realhopeoswego.org/favicon.ico
IP 199.34.228.73:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
GET /favicon.ico HTTP/1.1
Host: www.realhopeoswego.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Cookie: is_mobile=0; language=en; _snow_ses.321b=*; _snow_id.321b=03b21138-15be-4c1f-9bd2-938ebb46c609.1661997132.1.1661997132.1661997132.dcc46290-4656-4de9-bcc1-49a936aaac7d; _ZB_STATIC_1196806_TS=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 01:52:13 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000001ac862e-0062847767-b9fbc20-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: grn139.sf2p.intern.weebly.net
Accept-Ranges: bytes
cdn.jsdelivr.net/npm/jquery@1.11.2/dist/jquery.min.js
151.101.85.229200 OK 33 kB URL HTTP/2 cdn.jsdelivr.net/npm/jquery@1.11.2/dist/jquery.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (32047)
Hash 63e182df0883a4702e8db066451bdba0
993f0816fd2c8286c0f59df00e2697d6f7ad25cb
b9c375a13d4fa1e14ba88460ddb93ac9d380e77965cceb203145127f6ea82961
GET /npm/jquery@1.11.2/dist/jquery.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.11.2
x-jsd-version-type: version
etag: W/"176de-sz7jtCuYju+dTWJJW25U4j3WQv0"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 01 Sep 2022 01:52:14 GMT
age: 5012789
x-served-by: cache-fra19169-FRA, cache-bma1650-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 33348
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 8929fd8e11e2b0d719097daa6a8706e1
ce71be4433de1781b481b7f719e21b530d56cd67
d3f9d8f1d11b3c97c5eecdddcd5a2ba0d479c25dfa752da3e44ac369918faa42
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Sep 2022 01:52:14 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B8E3C12180906B6159C8BF45CDEEC1950B40C91E"
Expires: Thu, 01 Sep 2022 13:00:00 GMT
Last-Modified: Thu, 01 Sep 2022 01:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 844
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 743a5d8a7b9a1c16-OSL
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=14579ba48d
104.18.22.52200 OK 54 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=14579ba48d
IP 104.18.22.52:0
File type ASCII text, with very long lines (65397)
Hash dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
GET /releases/v5.15.4/css/pro.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:14 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 7441214
accept-ranges: bytes
server: cloudflare
cf-ray: 743a5d8b1d31fac8-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d
104.18.22.52200 OK 4.2 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d
IP 104.18.22.52:0
File type ASCII text, with very long lines (26366)
Hash 7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:14 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 7443820
accept-ranges: bytes
server: cloudflare
cf-ray: 743a5d8b1d30fac8-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
104.18.22.52200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
IP 104.18.22.52:0
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:14 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 29570179
accept-ranges: bytes
server: cloudflare
cf-ray: 743a5d8b1d2ffac8-OSL
X-Firefox-Spdy: h2
static.zbcdn.net/__jzwdjq/asset/font/Zotabox3/ztb3.woff
172.67.69.154200 OK 43 kB URL HTTP/2 static.zbcdn.net/__jzwdjq/asset/font/Zotabox3/ztb3.woff
IP 172.67.69.154:0
File type Web Open Font Format, TrueType, length 42552, version 1.0\012- data
Hash 8fc96ab697fe06015e3e0ff21e17552f
8753f45c0152e4c72206a6b11e2c193539ec0091
a663045428dde255621d1cb17237dab68c89d45624bb0e6fa96a0b9a65921004
GET /__jzwdjq/asset/font/Zotabox3/ztb3.woff HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.realhopeoswego.org
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:14 GMT
content-type: application/font-woff
content-length: 42552
last-modified: Thu, 25 Aug 2022 02:24:21 GMT
etag: "6306dd55-a638"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FJxBB33JUbvGv1rnG36wx7iZxZSuG6jlIEmPFoiX2Fx%2Fxgw9L2b0ElFEaa7n%2FpTxTvOiTy2u%2Bq7sV%2FFvozZ1XPDzZu8KZfhizBsZkfRosjZnWW5rKpod2vpi9PBeP%2BWDWxI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a5d877c980afa-OSL
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-1184.min.js
151.101.86.137200 OK 11 kB URL HTTP/2 js-agent.newrelic.com/nr-1184.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (27995), with no line terminators
Hash 43e0aec0456ae54841a52fe989abb1ec
d9e080d86beada72e9e42092bede868db3d4aee4
9d7ecd792af230cea192e0786491921415d809686321da7414b3df85d875de07
GET /nr-1184.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vlrWWMMcD6PaK/7pcEzhUYxgoEeM4G4LZ2WMo+rqGou4ZJrl4nmrnnynZYC7VcboXQFypj4DwM4=
x-amz-request-id: NH2XE4MW0QPBT68H
last-modified: Mon, 28 Sep 2020 16:34:45 GMT
etag: "3d7f312be60d08a2568e311e4762f3af"
x-amz-version-id: null
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 01 Sep 2022 01:52:15 GMT
via: 1.1 varnish
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1661997135.116139,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 10624
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.0.0/css/bootstrap.min.css
104.18.11.207200 OK 17 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.0.0/css/bootstrap.min.css
IP 104.18.11.207:0
File type ASCII text, with very long lines (65316)
Hash e7995feca68976e430f8d10ec071ae88
2dc2ef1215443193d40cbc111a2b3c86acde832b
d216cf055482031e9f74b97abcc5b2aa27fbf0d11d001deea54b6fa6df2ac4b9
GET /bootstrap/3.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:14 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:03:55 GMT
cdn-cachedat: 11/04/2021 22:40:16
cdn-edgestorageid: 755
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.0
cdn-requestid: a0669b23f8a3a4d2d54e12d18ef5c3e0
cdn-cache: HIT
cf-cache-status: HIT
age: 14215045
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 743a5d8a2920b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.powr.io/plugins/social-feed/view.json?powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&external_type=weebly-integrated
172.67.5.146200 OK 6.1 kB URL HTTP/2 www.powr.io/plugins/social-feed/view.json?powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&external_type=weebly-integrated
IP 172.67.5.146:0
File type JSON data\012- , ASCII text, with very long lines (14183), with no line terminators
Hash 781b58b5a1fce85deff2c7512fcc30fc
77c31f29917a72dcf2c9d3a1728c1c72345bb785
b1bddc0bd86a4f70c23b19b348e6c0ddff23ef88392ada760d9b384eb914eb3f
GET /plugins/social-feed/view.json?powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&external_type=weebly-integrated HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: ZPVMg3Fep5_FfxzMrfXYk5uy27syE3tRBB-t5Q02kvOqC3U9_dRF62XlGYrdg4dHK4Tzizcwu6uy4eOKSpV4aQ
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F
Cookie: POWR_PRODUCTION=5Oja2KUBqq%2BP4rep7wJSW3zXySmQmVsVJppGqYWEecveYWCME2Yf7ZVuMgC0BA3Gc0ipNc1ZQE0KzDJDyoOqUVsdJSlugyoPRRSue6Z1f%2F5pGbmim%2F51g2%2FFo3d3B50vfSjOMh4CYuT2Yoy1Lvkon7Jm6Lx4IeFbqn3rQC8Cl%2BoaL4sU81O%2BqtwG9FjTM5tpXHRgUQQ13qjl2VsucnO43AxeOp%2FwSvlJZLFt%2FuNkxNN1RrR4FJYbiRzChnXuu1FFkQpfSyugWbPErFuJ12vi2CsOnBFbqKGxgXAQUS0ElL8uIZFhBURB72nqm9cvKEWImvhNnuTqm7W2%2F9Ruf%2BHUn89uTHuUGtdkfcHgZsmOX%2B2cm8wSyzJV44CgLsJxQQqYVuIMdv2HQfxgQNwflroGBOO%2FB1b2TTZWltJWdEg6pWgwM3G5n761Wj7L%2FFgzDrDPcxr40uVhzq1INSBfEhI1Lg4d5lf8iM8dMLK02Sh0ztMrVrbWHdqS2atge9xiHH2hm0dBuWNd%2BwKu6XhpUngeSe8V5OpB5Zn2pQ4Vs8AG5Ebz5iGCtU0WdNNKIhy%2FsYA%2FFXY8lWMt63f48QjkBtvYTGdZL9pmgjHhbE9RoP4BCfvfaCA3x37v0%2F0%2FQ%2BVvlrouc%2F9FQUE2Oym8KE8uQImrZwGBjy7Rd0%2B%2FRVxRyDy32XX3brP4ZTRxE0jzoqKUtQhLqF5%2FPJU7ByzBlGMOfym77Lo0MO%2FG8klVkP0pqtgoVsJb%2FGbX9X2Hq0cnL3tbOlGyr83AV5TRyk8x9mvuo3aT85hhQsDyo2ls8s7kC7M58iIvPWBeqDTwoyk8tXC7A39OEBfEvloiS1m2YwbbjjrhBxHOs7r%2FNekBZNiw9FdWq9uC5u%2BFD6sNbRZI0BYP%2FhjL4UpS2u1DOAgWiswuQUDAnZ6eLNP00RJXB2VNyOLDARx%2FCbs2k%2F89Wdhdj6HcDI3gaMr%2FhUYGSbLF2LdIV5%2FYSZeKjUAJzMKtvuVpTrASIA%3D%3D--caN7GWC2dhvpSNRf--vEXDixejQl72fgtikgGSFQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:15 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-credentials: true
vary: Accept-Encoding
etag: W/"0ffa4daed69d30fb066dc2c470414701"
cache-control: max-age=0, private, must-revalidate
set-cookie: src=https%3A%2F%2Fwww.powr.io%2Fplugins%2Fsocial-feed%2Fcached_view%3Fload%3Dsync%26index%3D0%26unique_label%3D%26powr_token%3Dweebly_924604842104570874%26user_label%3Dweebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97%26demo_mode%3Dfalse%26isCookieAllowed%3Dundefined%26external_type%3Dweebly-integrated%26template_powr_token%3D%26request_url%3Dhttps%253A%252F%252Fwww.realhopeoswego.org%252F; path=/; expires=Sat, 01 Oct 2022 01:52:14 GMT; SameSite=None
unique_id=c6ce2250_1661997134; path=/; SameSite=None
editables=; path=/; secure; SameSite=None
POWR_PRODUCTION=mpdg4tgPDR5De68AZPO7Nu1VsZXNafg0CHRMVxkjNX%2BP%2BESvAbiOJLj5TVj4Xuip70b8RVJyq8xdOIlyWL4iq6js5iZ01Rilcn%2BpCOOgqGGAnMaULsNHkmmYZxDE2IgehvMiNs%2FbJt3%2BSakIS1%2F%2FPyGHTETHxy%2BZ%2BTUff%2F52R%2Foja8Qy68SL%2B7NYxjw3DtwULNQlgpnBw0mVXer0pHShRmv4bmGPg9B9xOiyUSdWJIflsALCiFi4IB7h%2BcD4bNT%2BPIKpcbj7lYR%2Bnade%2BkwyEglxmmfqI8sbu1ezeERYRZcTPomfoELODk0%2B8pq8eK7PazPfnuAMpBmgLwUv7H3vE%2Fkyjv%2B8Zj7r9v5WZQRPIOhpgk5VsGJmLutA2%2B8ceczxuAkDjKLfjYyzFMq3Z2veAfIbVa9kEA9L2D2q5HRr6eXlK9ymuYs74jADOTjkc6C3lw4KLm5rvksTrFYMhAYxWAfxgsbi3Hr3Hm9r47RDrtt55kWX3l3ijdInrmxBvTzIKKPrTrekPefXQ4VMIrdQnoyMDMp1gLwQ9F3SiMcLLmBlWs2Xcbf%2FA43OPRSjcvEwqXvcvaDskzuQROGsGfKPwX54v2ngSXdNCsxTZAMFHARwbkA%2B5ept9h6RJkVx0kFUtZSM4Y%2FTx1bwFQGNJpUzEZt%2BxfZmL6U83O8p8aFE0uNyDVg6%2BM642zRgdiRGyEvBKd9cYf6XxxjfbY1KhiV5w%2BdPmZHXSMmc59uZeuN7L1rY6kfZxGDGJRorb0ovMgVibbAwrGge7sqr28fK4uz%2BLZX3r0wyWucoYKIJq2JCKzSvzSJ3sS%2FR7h%2FCj%2BitJNfdGnk7LFL6cY5UV%2Bmy5GXMStf%2Fg925Y0Oyaq2JkvOtGS5MvjBfweFPZq4iTNi77Wu3zYOFFpXpTEGApu7hwbuplDQaaP%2Bv6PppkGjCNynTDaEFXw5wZFUbAXngQU9BZvQ5BmPKrhdfF0kyjCKtYZaLdEbOxeREwlu7V8xMGyi0rA%3D%3D--qOQDXLSCYiDKjOkf--WHU8VYAlK1YUvmTphnWl9Q%3D%3D; path=/; secure; HttpOnly; SameSite=None
x-request-id: 1635a345-4813-4ea7-842a-ca4e474bb937
x-runtime: 0.166799
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 743a5d8d1f1e0b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
142.250.74.163200 OK 39 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 142.250.74.163:0
Hash 0a7fcef3081f6de2154163319cb06a80
cc2a1a6871690ef173f357f7196e77b9ec95d182
ce04f1a7b0d5c528acdec3935b1fb0417abcc0e9c42cef1f3518a39d06c6d553
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:39 GMT
expires: Tue, 29 Aug 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 197916
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
142.250.74.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11016, version 1.0\012- data
Hash 15fa3062f8929bd3b05fdca5259db412
6ff06a34f68ad0324ddec1bbe4d453c959178b36
5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479
GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://public.powrcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Aug 2022 16:44:00 GMT
expires: Fri, 25 Aug 2023 16:44:00 GMT
cache-control: public, max-age=31536000
age: 551295
last-modified: Wed, 24 Jul 2019 01:18:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 22687
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.zbcdn.net/__kkafqfd/asset/script/qrcode.js
172.67.69.154200 OK 7.5 kB URL HTTP/2 static.zbcdn.net/__kkafqfd/asset/script/qrcode.js
IP 172.67.69.154:0
File type ASCII text, with very long lines (19640), with no line terminators
Hash 37e9320f7e1ba9a64c13736aea883539
84b9af169e249d99c7db1a59a622cec56d391b7b
c9eaccca33dedcf27cf70174bd3d6e89c1c3e43cb132ff0a9133b6b5865c7021
GET /__kkafqfd/asset/script/qrcode.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 07:43:37 GMT
vary: Accept-Encoding
etag: W/"62ff3f29-4cb8"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5WHrgmWIhXwdAnK0eOnZ5iRgrDzFkKtPwoNyNoQBUhL7l7eIhwlGph9bGIq785iBvDvd0t4fofE0rceP77HrwU0thlpEyz7KIL6J9XnZeq5Vl8ep3EiI22BjaI%2F2Vcca0G8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a5d83fbad0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 15 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 2f21579506ff16b757ab3117877ae9b5
d18f8f8b7204f8fdf9a0397d869b912e25b8349c
2907ac530c04a566aa6930b00ed6c35cb1d301a3290ac4a6e6e9c27a29eb845c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 01:52:15 GMT
Last-Modified: Thu, 01 Sep 2022 00:43:16 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _-5Zfi7x3YgfUjWhL5D4LZsR6H7RD4HX3aYEaAPaatMnGFhIWdV7xw==
Age: 4139
powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
23.22.144.165204 No Content 0 B URL HTTP/1.1 powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
IP 23.22.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400 HTTP/1.1
Host: powr-outlet-v2.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-csrf-token
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: Cowboy
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin, Access-Control-Request-Headers
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Headers: x-csrf-token
Date: Thu, 01 Sep 2022 01:52:15 GMT
Via: 1.1 vegur
static.zbcdn.net/5/6/56f7a92aa06f86a27d18b57576df1d19/data.js?1661403139107
172.67.69.154200 OK 1.6 kB URL HTTP/2 static.zbcdn.net/5/6/56f7a92aa06f86a27d18b57576df1d19/data.js?1661403139107
IP 172.67.69.154:0
File type ASCII text, with very long lines (4111), with no line terminators
Hash ea3792668e54f93a18226bc5f0ae997c
0dd2ad59f893529e08fe3a68f887e6fd52c7e8f5
4b90c84e736646370b2b884d4d4097b1c66223b16825d7775cd87e791a438612
GET /5/6/56f7a92aa06f86a27d18b57576df1d19/data.js?1661403139107 HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 Aug 2022 05:52:16 GMT
vary: Accept-Encoding
etag: W/"63070e10-46376"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lyb4rlkBA61V%2FEO0tKH0f69ICwgOBApCDmZ1XqMfZNbWA2KcFur5euAG9Jc7f32mELFzILeOBMOBHbZ%2Boyw7s0KF04fAGs6%2FNFtM2ICBspiYMgkNcOxc372bv%2FHRznzrGdI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a5d7dd9c30afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zbcdn.net/__kkafqfd/asset/bundle.js
172.67.69.154200 OK 85 kB URL HTTP/2 static.zbcdn.net/__kkafqfd/asset/bundle.js
IP 172.67.69.154:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 90b5e4ff1fa95137821426d918abe413
3a35f046e7098279dcad8790ee43f578b5e87444
36dccb5ff61cfcb961a892f87c35f2450de22a60003025811784476e7b7aca76
GET /__kkafqfd/asset/bundle.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 Aug 2022 02:24:21 GMT
vary: Accept-Encoding
etag: W/"6306dd55-4214a"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 1472
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ykWU6CglX4NL9HWT6dIzVI8wB9IBF1MZ1TzqMA0bSox3NQJDZl1GKM5zzQSAntj6%2B5ywtiKdjPCxpCr%2Bu%2Be%2FcmCygmffwGyW%2BFvr4bsf9ob1f%2BLownWMBk9sG3aDxtmJZNI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a5d7dd9be0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
powr-counter.herokuapp.com/18118676
54.208.186.182200 OK 2.3 kB URL HTTP/1.1 powr-counter.herokuapp.com/18118676
IP 54.208.186.182:0
Hash 3753a51a6f04cf310f6c16ad5e30d59c
8ae9d6019d5288db469b83404c8dbd9073bcac35
f75dabe8d40f0e8279d975d27ac5188d6c68cde242ea1fea03902558076c1905
OPTIONS /18118676 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Date: Thu, 01 Sep 2022 01:52:16 GMT
Connection: keep-alive
Content-Type: text/plain
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Transfer-Encoding: chunked
Via: 1.1 vegur
powr-counter.herokuapp.com/18118676
54.208.186.182200 OK 35 kB URL HTTP/1.1 powr-counter.herokuapp.com/18118676
IP 54.208.186.182:0
Hash eeb4311c937b88778357a0913a7e60e4
28bb97931449800e22b22492a991858a20f5ea37
228851cfe00f7730fc76c9c6f77bac641dee2f995a1168ec89986ebc418b9ce6
POST /18118676 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 606
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Date: Thu, 01 Sep 2022 01:52:15 GMT
Connection: keep-alive
Content-Type: text/plain; charset=utf-8
Etag: W/"36a9e7f1c95b82ffb99743e0c5c4ce95"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 3d7d0cdc-e9a3-4d97-a9f7-9c2462044a9f
X-Runtime: 0.061590
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Vary: Origin
Transfer-Encoding: chunked
Via: 1.1 vegur
powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
23.22.144.165200 OK 117 kB URL HTTP/1.1 powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400
IP 23.22.144.165:0
File type Unicode text, UTF-8 text, with very long lines (65399), with no line terminators
Size 117 kB (116580 bytes)
Hash 39fb13ffd083b8ba512f73bf8d87fab0
c2e45a4436caae87f6902e94335b1540a5b8e918
9de8611ed79cf197b8262e3e4a96aed32039aadeb122420416f58ea1db15e819
GET /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=128206198317&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BusernameOrHashtag%5D=&data%5B0%5D%5BpageName%5D=128206198317&data%5B0%5D%5BmaxPosts%5D=2&premium=v_500&app_id=18118676&refreshRate=86400 HTTP/1.1
Host: powr-outlet-v2.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: ZPVMg3Fep5_FfxzMrfXYk5uy27syE3tRBB-t5Q02kvOqC3U9_dRF62XlGYrdg4dHK4Tzizcwu6uy4eOKSpV4aQ
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin
Content-Type: application/json; charset=utf-8
Cache-Control: public, max-age=3600
Date: Thu, 01 Sep 2022 01:52:16 GMT
Content-Length: 116580
Via: 1.1 vegur
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 345c982ec6af16250abc3cfceefc2aca
66711b2640ee505b079e907bbce2233cad0b687c
b3bac8ebd249787713bae59dd97a45da5d9728d2615a91fa9778c3fc20a8f1e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3105
Cache-Control: max-age=167420
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:17 GMT
Etag: "630fef2c-1d7"
Expires: Sat, 03 Sep 2022 00:22:37 GMT
Last-Modified: Wed, 31 Aug 2022 23:30:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 345c982ec6af16250abc3cfceefc2aca
66711b2640ee505b079e907bbce2233cad0b687c
b3bac8ebd249787713bae59dd97a45da5d9728d2615a91fa9778c3fc20a8f1e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3105
Cache-Control: max-age=167420
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:17 GMT
Etag: "630fef2c-1d7"
Expires: Sat, 03 Sep 2022 00:22:37 GMT
Last-Modified: Wed, 31 Aug 2022 23:30:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 345c982ec6af16250abc3cfceefc2aca
66711b2640ee505b079e907bbce2233cad0b687c
b3bac8ebd249787713bae59dd97a45da5d9728d2615a91fa9778c3fc20a8f1e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3105
Cache-Control: max-age=167420
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 01:52:17 GMT
Etag: "630fef2c-1d7"
Expires: Sat, 03 Sep 2022 00:22:37 GMT
Last-Modified: Wed, 31 Aug 2022 23:30:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
scontent-iad3-1.xx.fbcdn.net/v/t15.5256-10/296332917_785189056247504_6263630028841647540_n.jpg?_nc_cat=111&ccb=1-7&_nc_sid=ad6a45&_nc_ohc=tyrPia2alWwAX9V9ovk&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT9k7AOErVb_-p9y3-rW0aiAdh9qiyMcD5bjHwwx2g8Irg&oe=6315402D
31.13.66.19200 OK 124 kB URL HTTP/2 scontent-iad3-1.xx.fbcdn.net/v/t15.5256-10/296332917_785189056247504_6263630028841647540_n.jpg?_nc_cat=111&ccb=1-7&_nc_sid=ad6a45&_nc_ohc=tyrPia2alWwAX9V9ovk&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT9k7AOErVb_-p9y3-rW0aiAdh9qiyMcD5bjHwwx2g8Irg&oe=6315402D
IP 31.13.66.19:0
File type JPEG image data, baseline, precision 8, 1280x720, components 3\012- data
Size 124 kB (124092 bytes)
Hash 1875d3a2618ffc0c43d2d72eba91ee03
fd0efe56bf7c6b6bb7b79bf9b3dd5e06f0af48b6
98624e9767ecf202856964a3f776cb84507deb8d5dbd6896945e502666ff91fb
GET /v/t15.5256-10/296332917_785189056247504_6263630028841647540_n.jpg?_nc_cat=111&ccb=1-7&_nc_sid=ad6a45&_nc_ohc=tyrPia2alWwAX9V9ovk&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT9k7AOErVb_-p9y3-rW0aiAdh9qiyMcD5bjHwwx2g8Irg&oe=6315402D HTTP/1.1
Host: scontent-iad3-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sun, 31 Jul 2022 15:23:19 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 264808349
x-needle-checksum: 2088968241
content-digest: adler32=2088968241
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 124092
x-fb-trip-id: 1814657579
date: Thu, 01 Sep 2022 01:52:17 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-iad3-1.xx.fbcdn.net/v/t39.30808-6/294401708_10159136840413318_7311807600674667256_n.jpg?stp=dst-jpg_p720x720&_nc_cat=106&ccb=1-7&_nc_sid=8024bb&_nc_ohc=L7P7RrQQfa8AX94jC3b&_nc_oc=AQmEdhMCEieNr8ou8ifBzEU_5w1pjsO5Bqzkk_HvHnVG2bxK9p2eIQGwXDkR7df0zAI&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT_h6_w6ualmWYSN7NFJZMbqGpVyV8RxbHMbox9N4Z2zXw&oe=6314A5FB
31.13.66.19200 OK 48 kB URL HTTP/2 scontent-iad3-1.xx.fbcdn.net/v/t39.30808-6/294401708_10159136840413318_7311807600674667256_n.jpg?stp=dst-jpg_p720x720&_nc_cat=106&ccb=1-7&_nc_sid=8024bb&_nc_ohc=L7P7RrQQfa8AX94jC3b&_nc_oc=AQmEdhMCEieNr8ou8ifBzEU_5w1pjsO5Bqzkk_HvHnVG2bxK9p2eIQGwXDkR7df0zAI&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT_h6_w6ualmWYSN7NFJZMbqGpVyV8RxbHMbox9N4Z2zXw&oe=6314A5FB
IP 31.13.66.19:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x720, components 3\012- data
Hash cbf539a447ce8e6758cd653d5173a07e
91ce2487f890b719dd7013acba90e45892470ed1
28b058d98ab853ff4db599ad36b549c8f47a2c4cce428090688f840313bad073
GET /v/t39.30808-6/294401708_10159136840413318_7311807600674667256_n.jpg?stp=dst-jpg_p720x720&_nc_cat=106&ccb=1-7&_nc_sid=8024bb&_nc_ohc=L7P7RrQQfa8AX94jC3b&_nc_oc=AQmEdhMCEieNr8ou8ifBzEU_5w1pjsO5Bqzkk_HvHnVG2bxK9p2eIQGwXDkR7df0zAI&_nc_ht=scontent-iad3-1.xx&edm=AKIiGfEEAAAA&oh=00_AT_h6_w6ualmWYSN7NFJZMbqGpVyV8RxbHMbox9N4Z2zXw&oe=6314A5FB HTTP/1.1
Host: scontent-iad3-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Thu, 21 Jul 2022 18:58:59 GMT
x-haystack-needlechecksum: 253038651
x-needle-checksum: 3917649524
content-type: image/jpeg
content-digest: adler32=4284391850
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 48524
x-fb-trip-id: 1814657579
date: Thu, 01 Sep 2022 01:52:17 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.zotabox.com/5/6/56f7a92aa06f86a27d18b57576df1d19/widgets.js
104.22.54.216200 OK 0 B URL HTTP/2 static.zotabox.com/5/6/56f7a92aa06f86a27d18b57576df1d19/widgets.js
IP 104.22.54.216:0
GET /5/6/56f7a92aa06f86a27d18b57576df1d19/widgets.js HTTP/1.1
Host: static.zotabox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:11 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 Aug 2022 04:52:19 GMT
vary: Accept-Encoding
etag: W/"63070003-13913"
expires: Thu, 01 Sep 2022 02:52:11 GMT
cache-control: max-age=3600, public, max-age=3600
access-control-allow-origin: *
access-control-allow-methods: GET, POST
content-encoding: gzip
z-server: mariadb
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 743a5d773a120b61-OSL
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/style_packs/views-2631cf7a214cdc9c32d0.css
104.21.26.9200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/style_packs/views-2631cf7a214cdc9c32d0.css
IP 104.21.26.9:0
GET /latest/assets/packs/style_packs/views-2631cf7a214cdc9c32d0.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:14 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=460092
etag: W/"2cbef8bacb84cdf787933b228259ff66"
last-modified: Wed, 31 Aug 2022 07:14:16 GMT
x-amz-id-2: CMzd2qb4h92dq3N0kC3BxVbI72aNlnJhBurnO0rvtrFjkoHOTYPG6orFjqkknXSGrJ3fZL6EPi0=
x-amz-request-id: 3FN1QTV63EZARVBX
x-amz-version-id: gLYsiVW04HtsqYXeRnHwq..wqkpkRxv7
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1678
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4dY0Ni%2BOc%2FxgfmL%2Bzhsc1EsZpBo5WlzFNB%2BkkPC33NY5o3IkUqUC7SHPZ%2B4AoclJc%2FgXLhhev6V%2FrWSgykPTKa%2Bj5dyAFbIEjl3bZTBr3vELNL5I%2F%2FgpQe6M%2Bwsw5udKTnrZpK4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a5d89ef110b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.zbcdn.net/__kkafqfd/asset/script/jquery.scrollbar.js
172.67.69.154200 OK 0 B URL HTTP/2 static.zbcdn.net/__kkafqfd/asset/script/jquery.scrollbar.js
IP 172.67.69.154:0
GET /__kkafqfd/asset/script/jquery.scrollbar.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 Aug 2022 02:24:21 GMT
vary: Accept-Encoding
etag: W/"6306dd55-2d3f"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 5247
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CminyO4b%2FKzQ6abT5EZTneHxMwKVWK7k4CVPZRH6JO98%2F1fN664LwC7ZUc4CrGMNAkaqA1JxkkXizPV5Ty44o2MNxD4JWrsgWEC2C35LoYpR4bDy%2BWfCr0HcYJQ580YVdTk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a5d83eba90afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps-view-66d6677cc2e03eaa5e93.js
104.21.26.9200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps-view-66d6677cc2e03eaa5e93.js
IP 104.21.26.9:0
GET /latest/assets/packs/apps-view-66d6677cc2e03eaa5e93.js HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1443084
etag: W/"db599408c45b9f570969aaf01e05cafc"
last-modified: Wed, 31 Aug 2022 07:14:10 GMT
x-amz-id-2: II4CSeunm4fl2ogLFyIbstE+4vhM+Cu6YeHbp7XHnu0YyVwihoUohnI6Pq6HFnv++z5dBj6A534=
x-amz-request-id: 3FN6K18ZPTWP52EK
x-amz-version-id: KfcTrga80C8fy7k2izogdjm3il6sTyI9
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1731
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ObxL0jWE2GQuXpmDIE6XlIakQWjvL528MCCkmegSaTOqGmr8blk%2BsW4RkJIhcv109wZeT9r4ccmjrPCouX38%2FIdToTzHfvVe4eQm5hAKJyFmaP85O8jFhpba2W796ZUVIjqSUkQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a5d8a1f230b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F
172.67.5.146200 OK 0 B URL HTTP/2 www.powr.io/plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F
IP 172.67.5.146:0
GET /plugins/social-feed/cached_view?load=sync&index=0&unique_label=&powr_token=weebly_924604842104570874&user_label=weebly_924604842104570874_f1fc1aea-cc7e-497e-b612-1d48ec40ce97&demo_mode=false&isCookieAllowed=undefined&external_type=weebly-integrated&template_powr_token=&request_url=https%3A%2F%2Fwww.realhopeoswego.org%2F HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:14 GMT
content-type: text/html; charset=utf-8
cache-control: max-age=300, public
link: <https://public.powrcdn.com/latest/assets/packs/style_packs/views-2631cf7a214cdc9c32d0.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-700b60f92279f9c123ef.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-3b9006d2f92652453eb0.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps-view-66d6677cc2e03eaa5e93.js>; rel=preload; as=script; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/socialFeed-80a6ba84bc013a1ac0e0.js>; rel=preload; as=script; nopush
vary: Accept-Encoding
set-cookie: src=https%3A%2F%2Fwww.realhopeoswego.org%2F; path=/; expires=Sat, 01 Oct 2022 01:52:14 GMT; SameSite=None
unique_id=3b979dd3_1661997134; path=/; SameSite=None
POWR_PRODUCTION=5Oja2KUBqq%2BP4rep7wJSW3zXySmQmVsVJppGqYWEecveYWCME2Yf7ZVuMgC0BA3Gc0ipNc1ZQE0KzDJDyoOqUVsdJSlugyoPRRSue6Z1f%2F5pGbmim%2F51g2%2FFo3d3B50vfSjOMh4CYuT2Yoy1Lvkon7Jm6Lx4IeFbqn3rQC8Cl%2BoaL4sU81O%2BqtwG9FjTM5tpXHRgUQQ13qjl2VsucnO43AxeOp%2FwSvlJZLFt%2FuNkxNN1RrR4FJYbiRzChnXuu1FFkQpfSyugWbPErFuJ12vi2CsOnBFbqKGxgXAQUS0ElL8uIZFhBURB72nqm9cvKEWImvhNnuTqm7W2%2F9Ruf%2BHUn89uTHuUGtdkfcHgZsmOX%2B2cm8wSyzJV44CgLsJxQQqYVuIMdv2HQfxgQNwflroGBOO%2FB1b2TTZWltJWdEg6pWgwM3G5n761Wj7L%2FFgzDrDPcxr40uVhzq1INSBfEhI1Lg4d5lf8iM8dMLK02Sh0ztMrVrbWHdqS2atge9xiHH2hm0dBuWNd%2BwKu6XhpUngeSe8V5OpB5Zn2pQ4Vs8AG5Ebz5iGCtU0WdNNKIhy%2FsYA%2FFXY8lWMt63f48QjkBtvYTGdZL9pmgjHhbE9RoP4BCfvfaCA3x37v0%2F0%2FQ%2BVvlrouc%2F9FQUE2Oym8KE8uQImrZwGBjy7Rd0%2B%2FRVxRyDy32XX3brP4ZTRxE0jzoqKUtQhLqF5%2FPJU7ByzBlGMOfym77Lo0MO%2FG8klVkP0pqtgoVsJb%2FGbX9X2Hq0cnL3tbOlGyr83AV5TRyk8x9mvuo3aT85hhQsDyo2ls8s7kC7M58iIvPWBeqDTwoyk8tXC7A39OEBfEvloiS1m2YwbbjjrhBxHOs7r%2FNekBZNiw9FdWq9uC5u%2BFD6sNbRZI0BYP%2FhjL4UpS2u1DOAgWiswuQUDAnZ6eLNP00RJXB2VNyOLDARx%2FCbs2k%2F89Wdhdj6HcDI3gaMr%2FhUYGSbLF2LdIV5%2FYSZeKjUAJzMKtvuVpTrASIA%3D%3D--caN7GWC2dhvpSNRf--vEXDixejQl72fgtikgGSFQ%3D%3D; path=/; secure; HttpOnly; SameSite=None
x-request-id: bf6f2f4c-4807-441f-8b3c-cedaeda7f167
x-runtime: 0.022310
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 743a5d868c8d0b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.powrcdn.com/fonts/gordita/gordita-regular-webfont-woff.woff
104.21.26.9200 OK 0 B URL HTTP/2 public.powrcdn.com/fonts/gordita/gordita-regular-webfont-woff.woff
IP 104.21.26.9:0
GET /fonts/gordita/gordita-regular-webfont-woff.woff HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:14 GMT
content-type: application/font-woff
x-amz-id-2: /6H2dprnGsOtvEeduqza37Zte5GtU+csToupBwUwIFm+J8HJGniItZsmZuursmmOy5UQ/1JuBQ0=
x-amz-request-id: T3CXQNZ5V9MSDAAZ
access-control-allow-origin: *
access-control-allow-methods: GET, POST
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 31 May 2021 12:44:51 GMT
x-amz-version-id: hx7AXNg7K1e1RTazyN_0DpBGtio5OElw
etag: W/"951cf61fb8b08593af1d6466359e32fe"
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1731
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W3yu4gLU4pJHACu74HMAXIhEGg9X6EBul2DpVwZYggVhHx7Yc3StNbFWNHE1NxAXWp4Yti9Slyk9zR%2FE5LLkKSylsIYN0hnHrYfI2WiypvfYSuygeXsfvyNV1oKhz7C%2F%2BgjEids%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a5d8a2ae9b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.zbcdn.net/__kkafqfd/social_tab/temp2.js
172.67.69.154200 OK 0 B URL HTTP/2 static.zbcdn.net/__kkafqfd/social_tab/temp2.js
IP 172.67.69.154:0
GET /__kkafqfd/social_tab/temp2.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 19 Aug 2022 07:43:37 GMT
vary: Accept-Encoding
etag: W/"62ff3f29-3a5e9"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 1340
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZyNdpFJVUJ1G1ZtdGNPlUBHAvdfFylkY8vqzZ8iuFxH0gt7ycpDY7WtSO5Mp9bh0YYGvlw6KPLtceeayO9t7HUO3DvtnUMZxqNKIw9GbCz%2Fj1f8HnnQyv6T9EzNPaGsPq5o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a5d7dd9c20afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.zbcdn.net/__kkafqfd/asset/script/jquery.js
172.67.69.154200 OK 0 B URL HTTP/2 static.zbcdn.net/__kkafqfd/asset/script/jquery.js
IP 172.67.69.154:0
GET /__kkafqfd/asset/script/jquery.js HTTP/1.1
Host: static.zbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:13 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 Aug 2022 02:24:21 GMT
vary: Accept-Encoding
etag: W/"6306dd55-15b48"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
z-server: Setting
cache-control: max-age=691200
cf-cache-status: HIT
age: 5247
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=exujxDeWKpGXtj90Bv7eIXJKkxze0mT9zCDV1T3o0d%2B9qn8NB4NxuPu9fR9ISXOqMtJwPTjaO9ndEWbRsrbjHQ%2Bj%2FKFygibU4BOZ%2F0MbgvLoPF9PDVqdt62YhKbSxY%2Fx3Xk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743a5d83eba70afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-3b9006d2f92652453eb0.css
104.21.26.9200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-3b9006d2f92652453eb0.css
IP 104.21.26.9:0
GET /latest/assets/packs/style_packs/ie9-overrides-3b9006d2f92652453eb0.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:14 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=97779
etag: W/"8569d08b93b65be6f73bca7e48e87a62"
last-modified: Wed, 31 Aug 2022 07:14:16 GMT
x-amz-id-2: OpExBVPNGCLgBl8I0I94sZeIWFbS5txuAn6s9VKFAGuRo6+gMBvtDDVlVgWkQeO7rRu1SdlfYH8=
x-amz-request-id: 3FNAJESH2EP1A5MF
x-amz-version-id: M7844sqGu3tCe3rHqfgC1P5xAPDrIf0g
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1678
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XNCr9Sj%2BL32qtIhngHZdmJSRPSxkq2EEax3Wlw76YDlza5SXG0uu%2F5AgPckTesGfCQuNx7sySeV4wlRaYm%2F6Jv1Ai43lYiB3LV8aRUctI0qbwwRfn5G9GtDLBq%2BNQFTFlNapzes%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a5d89ef130b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-700b60f92279f9c123ef.css
104.21.26.9200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-700b60f92279f9c123ef.css
IP 104.21.26.9:0
GET /latest/assets/packs/apps/views/socialFeed-700b60f92279f9c123ef.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:14 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=286497
etag: W/"adf889ed0314b585cb0181bf734134ba"
last-modified: Wed, 31 Aug 2022 07:14:09 GMT
x-amz-id-2: SqVQGuwqt8UaR16X0raDrVJCgtX5eTv86Z7fMMXR5YjtlSJ58Ak7TcyqxGvC70azOLNW2SvYXe8=
x-amz-request-id: 3FN3JYW0034CDYEW
x-amz-version-id: yMb7MgCMGfpBaFdCV0tMWtWgIGPKJMs.
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1505
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7n8Tq18dr1uaZ1GcDuzCHMaT7xnO6Eqn1VcrekIQjzNUU0fRqebuikXUn8iifKL3sV%2F2cDuFFZGiya6m4YRobv7uqBARLSHkzrthAhL8V%2Bke%2F%2BtQr4GyC08nLF9sjLUUekdDc1E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743a5d8a0f1c0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
142.250.74.110200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP 142.250.74.110:0
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 01 Sep 2022 01:52:15 GMT
date: Thu, 01 Sep 2022 01:52:15 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=laagrx4N75c; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=6d_pT4SI13s; Domain=.youtube.com; Expires=Tue, 28-Feb-2023 01:52:15 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+159; expires=Sat, 31-Aug-2024 01:52:15 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:400,700&subset=latin,latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,700&subset=latin,latin-ext
IP 142.250.74.10:0
GET /css?family=Montserrat:400,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Sep 2022 01:52:11 GMT
date: Thu, 01 Sep 2022 01:52:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.powr.io/powr.js
172.67.5.146200 OK 0 B IP 172.67.5.146:0
GET /powr.js HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.realhopeoswego.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Sep 2022 01:52:12 GMT
content-type: application/javascript
cache-control: max-age=604800, public
cf-bgj: minify
expires: Thu, 31 Aug 2023 18:03:42 GMT
last-modified: Wed, 31 Aug 2022 18:00:35 GMT
vary: Accept-Encoding
via: 1.1 vegur
cf-cache-status: HIT
age: 16938
server: cloudflare
cf-ray: 743a5d7eca590b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2