Report - www.givemn.org/story/Whittier-2018

Report Overview

Submitted URL
www.givemn.org/story/Whittier-2018
IP
99.83.250.29
ASN
#16509 AMAZON-02
Submitted
2022-10-06 21:55:58
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	523 B	1.9 kB	31.13.72.36
www.givemn.org	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.6 kB	182 kB	75.2.9.75
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	2.6 kB	151.101.85.229
ucarecdn.com	76504	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	118 kB	23.36.76.131
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	669 B	561 B	216.239.32.36
static-prod.mightycause.com	862421	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	764 B	1.1 kB	54.230.111.9
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	987 B	2.2 kB	93.184.220.29
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	1.9 kB	104.18.21.226
www.googleadservices.com	107	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	16 kB	142.250.74.34
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.4 kB	54.230.245.110
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	328 B	964 B	104.18.32.68
cdn.segment.com	1618	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	90 kB	54.230.219.201
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	39 kB	34.120.237.76
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	379 B	64 kB	142.250.74.168
imagecdn.mightycause.com	945029	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	805 kB	23.36.79.27
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	2.9 kB	142.250.74.164
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	379 B	29 kB	104.17.25.14
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.6 kB	14 kB	142.250.74.3
nimbleswan.io	282306	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	442 B	412 B	162.242.174.138
upload.uploadcare.com	272692	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	615 B	1.1 kB	52.6.139.135
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	1.5 kB	142.250.74.3
api.segment.io	1076	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	418 B	257 B	54.69.86.105
ka-p.fontawesome.com	4489	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	12 kB	29 kB	104.18.22.52
kit.fontawesome.com	1868	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	355 B	17 kB	104.18.22.52
cdn.embedly.com	10162	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	357 B	22 kB	104.16.90.50
api.autopilothq.com	85636	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	55 kB	23.253.207.75
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.7
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	477 B	37 kB	216.58.207.195
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	3.4 kB	172.217.21.162
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	370 B	4.9 kB	142.250.74.163
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	359 B	21 kB	142.250.74.174
translate.google.com	1156	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	395 B	28 kB	142.250.74.46
razoo-prod.firebaseio.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	548 B	252 B	34.120.160.131
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.43.253.52
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	400 B	1.7 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-06	medium	ucarecdn.com/libs/widget/3.x/uploadcare.full.min.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (45)

	URL	Size	First Seen	Last Seen
	ucarecdn.com/libs/widget/3.x/uploadcare.full.min.js	390 kB	2023-03-07	2023-03-17
Pretty URL ucarecdn.com/libs/widget/3.x/uploadcare.full.min.js IP 23.36.76.131 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:16:29 Last Seen2023-03-17 12:45:04 Times Seen1 Hash 35b64f8af6e3ea661736b18f35a1c5f4 b1f2d523059d25ecb28d0663e9f02966442e0c4c c4e2ea4b472a951f0e826c338ff53c56dadf2c6119594dc55166a322235f245d Loading...

	www.givemn.org/story/Whittier-2018	448 B	2023-03-08	2023-03-12
Pretty URL www.givemn.org/story/Whittier-2018 IP 75.2.9.75 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2023-03-12 14:41:33 Times Seen1 Hash 67dc7c0c5b38ba85600801e0460cf2c2 506dc0e20e19201de5acfe11564f4d86e21630f8 dcc7be12637afeae6656e8b565f9fda8debace72c9519637a419c2bfd7dcbf55 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js	90 kB	2023-03-07	2024-04-27
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-27 03:07:22 Times Seen261962 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js	13 kB	2023-03-07	2024-04-27
Pretty URL ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:17 Last Seen2024-04-27 03:05:35 Times Seen22470 Hash 7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee Loading...

	cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.35a8f6f19959bf2f455f.js	10 kB	2023-03-07	2024-01-01
Pretty URL cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.35a8f6f19959bf2f455f.js IP 54.230.219.201 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:34 Last Seen2024-01-01 04:29:48 Times Seen10 Hash e0f89f667fb8d2b50aa8e29a86a4c9b1 14f91899341b8d9e78d778c19be6684a3cda7153 9abdea148f6bb2fd5f4d3a947661b46f077584cfc3691deb29fa7cb25d2e00a6 Loading...

	cdn.segment.com/analytics-next/bundles/legacyVideos.bundle.4803ff58e27f3822fd4b.js	500 B	2023-03-08	2023-05-18
Pretty URL cdn.segment.com/analytics-next/bundles/legacyVideos.bundle.4803ff58e27f3822fd4b.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:18 Last Seen2023-05-18 17:13:55 Times Seen19 Hash f753cfd8c0b814166905ea9b4bc14bbf 7ecad760172a5e5c07de9fb12e59757f349e97c9 f7a42345a4dc0cedc512b1c26eb8015dba3697046726ca68422b2ad9d201cb09 Loading...

	cdn.segment.com/next-integrations/integrations/google-tag-manager/2.5.1/google-tag-manager.dynamic.js.gz	3.0 kB	2023-03-08	2024-04-26
Pretty URL cdn.segment.com/next-integrations/integrations/google-tag-manager/2.5.1/google-tag-manager.dynamic.js.gz IP 54.230.219.201 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:39:14 Last Seen2024-04-26 20:11:50 Times Seen2446 Hash 374436ad2361ac0c43a056626c2165ca b40a8e477ee7c1e2265498859c63d29423c0916a e91a86b8d8da28eaf681b924b135c3a8ffacb6d51d2affad9d684e708d60a3db Loading...

	cdn.segment.com/next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz	75 kB	2023-03-08	2024-04-25
Pretty URL cdn.segment.com/next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz IP 54.230.219.201 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:19:31 Last Seen2024-04-25 15:09:02 Times Seen6358 Hash 801600ab7c3d52577df419402f83c046 36d7570708ef36b90ba588fc76706384b8bf2a15 b17b4a5cc840a366a4c006794502f887a316402f781f85e913ac4af19a93fc13 Loading...

	www.gstatic.com/firebasejs/6.2.4/firebase-firestore.js	358 kB	2023-03-08	2023-03-12
Pretty URL www.gstatic.com/firebasejs/6.2.4/firebase-firestore.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:18 Last Seen2023-03-12 14:41:32 Times Seen1 Hash 1151d9cbb22d0ca2731732aa784c9529 d22182ea366ef4cd119fdbbd8809abdaf531e3b8 5138343fd75169bbfc551b06ff974850dbdeb81d44565d8fa068489445fc6201 Loading...

	http:srcdoc	1.2 kB	2023-03-07	2023-10-23
Pretty URL http:srcdoc IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2023-10-23 05:00:07 Times Seen4 Hash 1de62a4f326c081c49d5fdbb380837a9 2306f80fa6c73543b3af799b105ef6fc812d89d0 71a8551572997ad5c34fb5e73b002d5b1ce1d900c9e5453f1fe24dfb68bd6c13 Loading...

	www.gstatic.com/firebasejs/6.2.4/firebase-app.js	11 kB	2023-03-08	2023-03-14
Pretty URL www.gstatic.com/firebasejs/6.2.4/firebase-app.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2023-03-14 07:21:18 Times Seen1 Hash 290e3eea2f5b3e0708f0d559c5a35956 c57f3cf71b0edabbeaf4abcf8c6855a1fa24351f 013deeec837f58b15d19f79b6dc4eb844e26edc6425c3bc95078413fff257397 Loading...

	cdn.segment.com/analytics-next/bundles/870.bundle.323974846b6d45afb45e.js	17 kB	2023-03-07	2024-01-01
Pretty URL cdn.segment.com/analytics-next/bundles/870.bundle.323974846b6d45afb45e.js IP 54.230.219.201 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:34 Last Seen2024-01-01 04:29:46 Times Seen7 Hash d471f2a8b801a51bbc09c91b3f90b749 b63c0c45c78e82c119eb7eef42aef828f390d704 85fa85cbca5efaa81351f2e9b1e8e53916644bff91da6ffc762a151247501ebc Loading...

	cdn.jsdelivr.net/npm/froala-editor@3.0.5/js/froala_editor.pkgd.min.js	651 kB	2023-03-08	2023-03-12
Pretty URL cdn.jsdelivr.net/npm/froala-editor@3.0.5/js/froala_editor.pkgd.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2023-03-12 14:41:33 Times Seen1 Hash 81fed5db04218932b3bfbfe37fa14078 bf23e23895fce61ae363b21920ff1daf7eaa6ed8 bf405b2607b600dc8bbd56468675b4e23add507f21d4f796f7ac0198c11794b4 Loading...

	cdnjs.cloudflare.com/ajax/libs/codemirror/5.3.0/codemirror.min.js	152 kB	2023-03-08	2023-11-28
Pretty URL cdnjs.cloudflare.com/ajax/libs/codemirror/5.3.0/codemirror.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2023-11-28 14:36:45 Times Seen8 Hash 6f32cd6aa66f77d2be0e2be59d50476b e40df11a10d335a2c2ed1c386a7191a949928a22 26520c527b2a22f38ff3a4b070910088c4f903311a4bd5d57794fff3abac2ade Loading...

	cdnjs.cloudflare.com/ajax/libs/codemirror/5.3.0/mode/xml/xml.min.js	5.5 kB	2023-03-08	2023-11-28
Pretty URL cdnjs.cloudflare.com/ajax/libs/codemirror/5.3.0/mode/xml/xml.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2023-11-28 14:36:45 Times Seen8 Hash f5984b6a33e9cfb15b8d3672c5aec38f 59ac960726f6fe55c5cc0f103ecc92388d7f19e7 6ecb56e43d6659a9fbf13139321beda6a42a15028e164fe6624ed58308842a70 Loading...

	api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?t=&u=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&r=	7.5 kB	2023-03-08	2023-03-08
Pretty URL api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?t=&u=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&r= IP 23.253.207.75 ASN #19994 RACKSPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:49:34 Last Seen2023-03-08 07:49:34 Times Seen1 Hash 158f97cfea6abd5c33f6787b622f29b3 6af3096f6cc883735cc95944dfbbeb43ffb88a60 05cdbee5309c8558fa3d266d93d3e9f4781768a044ef7891d63f92678b151d59 Loading...

	www.givemn.org/story/Whittier-2018	5.8 kB	2023-03-08	2023-03-08
Pretty URL www.givemn.org/story/Whittier-2018 IP 75.2.9.75 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2023-03-08 12:29:57 Times Seen1 Hash f0fee68002942069285cd87d259430fa f04a35367b3bbe0b0dffb8a46a23c75096ab94d1 5baf25e612ca4d208466099a1f60b34a7066af869a71b405959d90b02dafde27 Loading...

	www.givemn.org/story/Whittier-2018	750 B	2023-03-08	2023-03-12
Pretty URL www.givemn.org/story/Whittier-2018 IP 75.2.9.75 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2023-03-12 14:41:33 Times Seen1 Hash b41b1f4dbee39fbeb0f235e569fe8565 3f61808b8e50f44bb39f4fe888bba73a9d397d8d d178468a979a69323eadfb50c7c0efdb098dede915cb78a2433a0d8936165dee Loading...

	cdn.segment.com/analytics.js/v1/f0NjbawUhvfG9cA6t3mhItAiV7ROJCYl/analytics.min.js	98 kB	2023-03-08	2023-03-08
Pretty URL cdn.segment.com/analytics.js/v1/f0NjbawUhvfG9cA6t3mhItAiV7ROJCYl/analytics.min.js IP 54.230.219.201 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2023-03-08 12:29:57 Times Seen1 Hash 31a82cf962d74126a55bbdf07b0bc1e8 f1208eb43cd4054f3b31c061953747559b40943e b051cfc87eb16bc401473e373d5de59275e9c416cc5c4add6968880af7ecb464 Loading...

	cdn.segment.com/analytics-next/bundles/799.bundle.3370767d4bbb423fe139.js	12 kB	2023-03-08	2024-04-25
Pretty URL cdn.segment.com/analytics-next/bundles/799.bundle.3370767d4bbb423fe139.js IP 54.230.219.201 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2024-04-25 15:09:02 Times Seen341 Hash 2a10e0b62dd94cab4fb87eeeb2166fb3 1530f69a288d96d46b294449821e5adfa23e0291 fa7ceb8310af7309e525299d0706f0333239f7696a6838b8e57ce4704b362477 Loading...

	www.givemn.org/story/Whittier-2018	61 kB	2023-03-08	2023-03-17
Pretty URL www.givemn.org/story/Whittier-2018 IP 75.2.9.75 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2023-03-17 10:14:25 Times Seen1 Hash 92e5c2ed241b0019949c44e9bd72d795 d550301d224521d405a461cd6863877830e22b97 e8bc35c414cdd509129b6b0f5aff32f58ab356d5033429264beb14a50c8cc37d Loading...

	www.googleadservices.com/pagead/conversion_async.js	42 kB	2023-03-08	2023-03-10
Pretty URL www.googleadservices.com/pagead/conversion_async.js IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:14:45 Last Seen2023-03-10 12:04:35 Times Seen1 Hash 6b1e44d7f33db55b20cc445ef7a24ab5 24cafebc7ce5cefc025bc5cfce139afa7e7bfe10 f42283e0ca17a52688c5250e714ecd1b6a53af8b0f6e54ac64546499b0ec1b19 Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.hKV5EFt4BZM.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq7j522tUQPg3dC174dPSArletY_Q/m=el_main	271 kB	2023-03-08	2023-08-10
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.hKV5EFt4BZM.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq7j522tUQPg3dC174dPSArletY_Q/m=el_main IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:40:40 Last Seen2023-08-10 06:40:13 Times Seen3 Hash c389ccef18cab71fa782cec6bd448673 cb584b7e1ace18c9822e06d7e72f570dfef07960 230d5b562ff4610333fae11f3ba7205d4db13410fab519e987c18dd52f22ee89 Loading...

	api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/core.js	135 kB	2023-03-07	2024-04-16
Pretty URL api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/core.js IP 23.253.207.75 ASN #19994 RACKSPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:53 Last Seen2024-04-16 23:19:36 Times Seen199 Hash 161e10cdb3b3663118a4d62b706b7537 a707bb2b8365445e3586614615d3bd8337da7a27 228c4f21a9fe0418517e128ae40f56f92a3a51ed92a80d6b348a59119c2738ea Loading...

	www.googleadservices.com/pagead/conversion/876140014/?random=1665093352457&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4	1.8 kB	2023-03-08	2023-03-08
Pretty URL www.googleadservices.com/pagead/conversion/876140014/?random=1665093352457&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:49:34 Last Seen2023-03-08 07:49:34 Times Seen1 Hash 7b7f3b00201ec98e225c59037ae39f71 5f2e1834654c19ed494fc1f6e11785e84bb6f2be e57d79f02fa705dae39830aac20dab95861af30adf900a44bfd36385af373a26 Loading...

	connect.facebook.net/en_US/sdk.js?hash=79dad5a92c82c189f6010e37d4666ba8	308 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/en_US/sdk.js?hash=79dad5a92c82c189f6010e37d4666ba8 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:48:16 Last Seen2023-03-08 07:49:34 Times Seen1 Hash 0ae7bdf3bb716062ac2beddb6698db25 89586e8e7b90dbdfd7714f06e0e735c5694d060a 4ff4dcbcaabf97b60bfaaea63daefa2e80e63eace2b97126151c247768769184 Loading...

	www.givemn.org/api/v4/site_init.js	8.0 kB	2023-03-08	2023-03-08
Pretty URL www.givemn.org/api/v4/site_init.js IP 75.2.9.75 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:49:34 Last Seen2023-03-08 07:49:34 Times Seen1 Hash 6904a213be2a6e543bae7191a3b8ed0e 6f4f00468095f5318264fb104e78af87e6d16d79 523fb26b67bd1a43ee7487f922498212d6dd30cb6a953f07d6a21c304b37f329 Loading...

	kit.fontawesome.com/7c9f685347.js	11 kB	2023-03-08	2023-03-10
Pretty URL kit.fontawesome.com/7c9f685347.js IP 104.18.22.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2023-03-10 19:55:42 Times Seen1 Hash 2a3ab8c7fae79ee3ea3aa0d658e4ab73 d7efef986488ee773202c78db95d4a3000eae9a4 e9ff38de43a024010784d8d1cf8e87a7e680d4254a4ca19c00a1e2b51f57b927 Loading...

	cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js	1.6 kB	2023-03-07	2024-01-01
Pretty URL cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:34 Last Seen2024-01-01 04:29:45 Times Seen23 Hash 3e448afdfea355c0f19700d04431ce7d 596b746237018bdddd0ede5f65d9d854e2340a2c e8771b238c60c36fc935fd2dad0aed6e70cea50a635ff4f89f394a968a258c42 Loading...

	cdn.segment.com/next-integrations/integrations/google-analytics/2.18.5/google-analytics.dynamic.js.gz	16 kB	2023-03-08	2024-04-18
Pretty URL cdn.segment.com/next-integrations/integrations/google-analytics/2.18.5/google-analytics.dynamic.js.gz IP 54.230.219.201 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:19:31 Last Seen2024-04-18 22:04:52 Times Seen2512 Hash 9d64cc0fb18d44f3c06b25284719b46f d9aa11c8cdea16c7ce1baabb2cbd43c364d52893 fdda2bf7d8e87b5ac90a791a5131a9811c207171107482857b67f6b8329854fb Loading...

	www.googletagmanager.com/gtm.js?id=GTM-TG6ZFD&l=dataLayer	171 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-TG6ZFD&l=dataLayer IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:49:34 Last Seen2023-03-08 07:49:34 Times Seen1 Hash ee27aedda240f4a672a31a1d67a82f85 001d5d9d570faf1cdf20c4de981684370b00f1cf 36b30d394ae75662897c395a34fbe7f30e5d60c721e3761803d5945ef3a62523 Loading...

	api.autopilothq.com/anywhere/aa/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?t=&u=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&r=	0 B	2023-03-07	2024-04-27
Pretty URL api.autopilothq.com/anywhere/aa/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?t=&u=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&r= IP 23.253.207.75 ASN #19994 RACKSPACE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 03:07:25 Times Seen37109699 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.google-analytics.com/plugins/ua/linkid.js	1.6 kB	2023-03-07	2024-04-27
Pretty URL www.google-analytics.com/plugins/ua/linkid.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-27 02:03:51 Times Seen1976 Hash 0cc3a63fe10060af4a349e5df666eefe 3e8d3925b550345123f2cab26568221fd4154f9c 92fca55833f48b4289ac8f1cedd48752b580fce4ec4b5d81670b8193d6e51b54 Loading...

	translate.google.com/translate_a/element.js?cb=googleTranslateElementInit	78 kB	2023-03-08	2023-03-08
Pretty URL translate.google.com/translate_a/element.js?cb=googleTranslateElementInit IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:47:48 Last Seen2023-03-08 07:49:34 Times Seen1 Hash b6fb556bca6ff0f8a74a58b0f3c9e356 0d178777fb041358f108516bb603bc852c4cd2f7 d1a88c47da8dac8c5aef9ed1f862d4b47d753734ea0af245642504ebc1d829f2 Loading...

	www.givemn.org/story/Whittier-2018	6.1 kB	2023-03-08	2023-03-08
Pretty URL www.givemn.org/story/Whittier-2018 IP 75.2.9.75 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2023-03-08 12:29:57 Times Seen1 Hash 5b0ea7c0cee16df2aa68ad0b862e59c1 23685899e512cdeb874621d24ca8ef32058c465c 6bdacdac4e21f0a37144d51fb39f946a1019f58bb094c60a2c3575352d988025 Loading...

	connect.facebook.net/en_US/sdk.js	3.1 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/en_US/sdk.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:48:36 Last Seen2023-03-08 07:49:34 Times Seen1 Hash 8cdd9652c54e08c9c84b156c660d5c18 cfcefe6d6cc1b067443fda865e157b2dfa7d371d f16c2a70a20206e94323b85a739566e714a9e928674591a030a6084c7fadaaae Loading...

	www.googletagmanager.com/gtag/js?id=G-YGBQTZLV6G&l=dataLayer&cx=c	214 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-YGBQTZLV6G&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:49:34 Last Seen2023-03-08 07:49:34 Times Seen1 Hash 8479bc4f155d0d02b9b3e90300d67342 ae79d7b769e21c8e06f9ae271e0285ef6089a367 c1f9f4e46c4f21c130c58ac758307ccfa540b33919c135df5e4c566cf1bb9370 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/876140014/?random=1665093352460&cv=9&fst=1665093352460&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=path%3D%2Fstory%2FWhittier-2018%3Breferrer%3D%3Bsearch%3D%3Btitle%3DGive%20to%20the%20Max%20Day%202018%3Burl%3Dhttps%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018%3Bname%3DGive%20to%20the%20Max%20Day%202018&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4	2.6 kB	2023-03-08	2023-03-08
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/876140014/?random=1665093352460&cv=9&fst=1665093352460&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=path%3D%2Fstory%2FWhittier-2018%3Breferrer%3D%3Bsearch%3D%3Btitle%3DGive%20to%20the%20Max%20Day%202018%3Burl%3Dhttps%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018%3Bname%3DGive%20to%20the%20Max%20Day%202018&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 IP 172.217.21.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:49:34 Last Seen2023-03-08 07:49:34 Times Seen1 Hash 693a39030d48873e1b3894aafdcee4bd d07d716e13114c98fa1b89db5007653dc856e8bb 30738310a58af211f10e2ee26db66c350769add3af0637ec15dd077a4d1dd4ae Loading...

	translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback	17 kB	2023-03-07	2024-04-26
Pretty URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-26 20:22:36 Times Seen14195 Hash a3eefe14b1b4698460d992bd1673a26b a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4 87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067 Loading...

	cdn.embedly.com/widgets/platform.js	70 kB	2023-03-08	2023-03-14
Pretty URL cdn.embedly.com/widgets/platform.js IP 104.16.90.50 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:44:51 Last Seen2023-03-14 08:32:09 Times Seen1 Hash a1f1ece9e89111211731906a18ab7f95 4a7b31f6df15159a3015223e5f64e1cc811b3142 494aa5921e36f29d8078abe8c90d1322a897151e0b75dbcbff6a6bb2194d3aac Loading...

	cdn.segment.com/next-integrations/integrations/adwords/2.5.3/adwords.dynamic.js.gz	3.7 kB	2023-03-08	2024-04-23
Pretty URL cdn.segment.com/next-integrations/integrations/adwords/2.5.3/adwords.dynamic.js.gz IP 54.230.219.201 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:39:14 Last Seen2024-04-23 12:57:16 Times Seen410 Hash 8a559f63de9dad1f92578c5881ebbe0d bef77ac0b9dcacdabe91b5f64bf15c0ea8f7e44a 3cdfc45291898f113cf74b9db84cd914b2069a1bf948e51665789a627186f342 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-27
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-27 02:03:36 Times Seen1536 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	cdn.jsdelivr.net/npm/froala-editor@3.0.5/js/third_party/embedly.min.js	8.2 kB	2023-03-08	2023-03-12
Pretty URL cdn.jsdelivr.net/npm/froala-editor@3.0.5/js/third_party/embedly.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:17 Last Seen2023-03-12 14:41:32 Times Seen1 Hash 1e1f7173cc2e29535c8afefb3f9ddc47 3d75ac61120e8c5281d6ac88ac396739971fe53a 29f3d1299637f3bd28535a4a4ef7dee9dfc1febdab19b7a9f5c2cca97572c903 Loading...

	www.gstatic.com/firebasejs/6.2.4/firebase-database.js	182 kB	2023-03-08	2023-03-17
Pretty URL www.gstatic.com/firebasejs/6.2.4/firebase-database.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:49:34 Last Seen2023-03-17 12:34:55 Times Seen1 Hash d4b60c61b2249fec3465c1e8f4f1aefc 7f1261119b041dd092f7ba7df064b7e37a170cbe 812aa63ddd1e5643e0749dc2d1bfd955fa5b0c2d5cfa962a52ada468d1562552 Loading...

		Size	First Seen	Last Seen
	#1 Write - 0417a9442da49f1ec898ccdcf6878cee	382 B	2023-03-07	2023-11-29
Pretty Observations First Seen2023-03-07 01:02:58 Last Seen2023-11-29 07:01:06 Times Seen10 Hash 0417a9442da49f1ec898ccdcf6878cee e7dc523a66f6d88e36e1fcf13e9476bbe0758024 ed5190be636529fe44951890e8fa47120431aae198c2f6684fd65620546c2fff Loading...

HTTP Transactions (131)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

54.230.111.7

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
54.230.111.7:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HBSIvOycytKWPQzvAq7r3Pu0jwbF08nfmr99I1UYiHljTr46UqF3mg==
Age: 108509

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13409
Expires: Fri, 07 Oct 2022 01:39:17 GMT
Date: Thu, 06 Oct 2022 21:55:48 GMT
Connection: keep-alive

www.givemn.org/story/Whittier-2018

75.2.9.75

301 Moved Permanently

134 B

URL HTTP/1.1
www.givemn.org/story/Whittier-2018
IP
75.2.9.75:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
134 B (134 bytes)
Hash
4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a

HTTP Headers

GET /story/Whittier-2018 HTTP/1.1
Host: www.givemn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Thu, 06 Oct 2022 21:55:47 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://www.givemn.org:443/story/Whittier-2018

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ab7d8709d334de0e46dcb86aabfbff1
f221138a8ad9d0bfa3c054370dcdb363a67dc310
b91d37f606eaf448b9c7dfc05566a11de004ce44503409e1a776288ee2622805

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9266
Expires: Fri, 07 Oct 2022 00:30:14 GMT
Date: Thu, 06 Oct 2022 21:55:48 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: BECOBa3VuSOgM9KqtJzbp5hspXoSAVRCcQ9hP6k4Jwi/QsRRxfbEAjXT2K85N+JxjvcfD59bcGg=
x-amz-request-id: SXD4350VQBVCGKQG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 21:30:56 GMT
age: 1492
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 21:55:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
12c7e3b5264cce63801dd491906fdb10
a4c8b6ee17db6d7dc44140a0b61cdfc063802b74
1708c7168da89bbd5eca5c84a856c17a1f072d941023a75323e6bf3d60cad5a0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 21:55:48 GMT
Server: ECS (dcb/7EEA)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TeSSjY9yzVOXohz4gOKf3bMcKQasb2SD-ldl6h-OPv8w6izmDFxpZw==

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

54.230.111.7

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
54.230.111.7:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 21:01:58 GMT
Expires: Thu, 06 Oct 2022 21:07:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BIfcd5WBJpn4bII7JKuX2KC1aHlhHBaaSfxMT5AuGFdiKwA1BnOhVA==
Age: 3230

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3706
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:48 GMT
Last-Modified: Thu, 06 Oct 2022 20:54:02 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js

104.17.25.14

200 OK

28 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65447)
Size
28 kB (27938 bytes)
Hash
d900ca08873ee57d40616d39a44cc0aa
7ab3ac8b1504b7b914a6e94c979b8390bb492f6a
1eea479cc0abe04a0846f41031207f9511f12ffef017a6109d4efb6f5523465b

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 6138569
expires: Tue, 26 Sep 2023 21:55:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F%2FPVdl7qGfd6RJPCXUikXFQHvuzORNpLEZ1cqJgfGZ3PO8fXPjoTJ%2B6zofOIqqHzj1axHmbveDjpoCG5MfiRYGQYfT6kmlLKMdw6DL%2BTQVviPtSuZ6pibfSUu2uIoAwSdTNA4NRl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7561a4b72ca9b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.43.253.52

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.253.52:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A2x2WYtafs0muJfjSzXoHQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: C7ncBGOoey/U4K93xvk2SFTR8EE=

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
140799d3c25d1c79ab36106cedc33ee6
307db4e21a430039662b03553b7b47d818f52931
f6e9fa43110d3f6703aea8af975ce82e47363270722477eed692fa50e4b0b025

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 21:55:49 GMT
Server: ECS (dcb/7EA6)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: B82qe58MnPBX7519jzHXOScd8B3lCWwSlUycSA_6L6-7uYT-ma7HMQ==

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
140799d3c25d1c79ab36106cedc33ee6
307db4e21a430039662b03553b7b47d818f52931
f6e9fa43110d3f6703aea8af975ce82e47363270722477eed692fa50e4b0b025

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 21:55:49 GMT
Server: ECS (dcb/7F5E)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Yqr--tMTNIjf1V8vSAMBHF2PujYpM5IlrNbl2StQo4TD-4Enulrzcg==

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lexenddeca/v17/K2F1fZFYk-dHSE0UPPuwQ5qnJy8.woff2

216.58.207.195

200 OK

36 kB

URL HTTP/2
fonts.gstatic.com/s/lexenddeca/v17/K2F1fZFYk-dHSE0UPPuwQ5qnJy8.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 36200, version 1.0\012- data
Size
36 kB (36200 bytes)
Hash
513e591f9bba848df98eae4a3263dd91
89bf5fd0eb2f5dd57f099e6af5f19babc60ca853
2aa9b929e6ed9e06d10610f05ea3b4bb9b202dfc90a6833a50a1c04329b18a1c

HTTP Headers

GET /s/lexenddeca/v17/K2F1fZFYk-dHSE0UPPuwQ5qnJy8.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.givemn.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 36200
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 17:13:05 GMT
expires: Fri, 06 Oct 2023 17:13:05 GMT
cache-control: public, max-age=31536000
age: 16964
last-modified: Mon, 11 Jul 2022 20:29:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Bitter&display=swap

142.250.74.10

200 OK

980 B

URL HTTP/2
fonts.googleapis.com/css?family=Bitter&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
980 B (980 bytes)
Hash
67972f9d4e6d5db08a03ae9df3fe961f
926b972c0234623bc33107d7019e5f3f0e1920a9
8e7e4a91a38c36fa3959df53ac7fe5fb7a4357ffcc65aa32d46182cb3e185efd

HTTP Headers

GET /css?family=Bitter&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static-prod.mightycause.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 21:55:49 GMT
date: Thu, 06 Oct 2022 21:55:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/froala-editor@3.0.5/css/froala_style.min.css

151.101.85.229

200 OK

1.8 kB

URL HTTP/2
cdn.jsdelivr.net/npm/froala-editor@3.0.5/css/froala_style.min.css
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (7492)
Size
1.8 kB (1789 bytes)
Hash
ac3b7b2ab4b6ac6851d90a441268c56c
cb3cad62d7360915e093f8ee4aa6259b3c9c1e21
1a8b983fdc10931841acf2694234a55926e09db7e8c3a7054a8b859fdc034c09

HTTP Headers

GET /npm/froala-editor@3.0.5/css/froala_style.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 3.0.5
x-jsd-version-type: version
etag: W/"1de5-Hs9rr3zAbCh5acdgaSSgmAvTMCg"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 06 Oct 2022 21:55:50 GMT
age: 1459061
x-served-by: cache-fra19175-FRA, cache-bma1674-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1789
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.21.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
4af6ef5fbb74ce766be4387c1d682d5d
59eec581ff529d4e24614e01316bca6bbcc481d3
e140e0c319d895721ced144d1261cf61959bb6fd86e59865b1db24433afc2415

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 21:55:50 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "6FEE1BA6D01C6E008B7B8890052AD02DEA61ACC2"
Expires: Fri, 07 Oct 2022 08:00:00 GMT
Last-Modified: Thu, 06 Oct 2022 20:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3225
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7561a4bf7c75b4e8-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
a60dd2ff26ad2e596e898f363712b1ca
497c534ead1a09eda0f1c979080289a30f6ba9d2
672bd49b53f48b24ee43fd5eb4212f05f869ac31a14195d5e2c96281410457b1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 21:55:50 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 06 Oct 2022 14:20:18 GMT
Expires: Thu, 13 Oct 2022 14:20:17 GMT
Etag: "497c534ead1a09eda0f1c979080289a30f6ba9d2"
Cache-Control: max-age=576866,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7561a4bf4e5c1c16-OSL

cdn.embedly.com/widgets/platform.js

104.16.90.50

200 OK

21 kB

URL HTTP/1.1
cdn.embedly.com/widgets/platform.js
IP
104.16.90.50:0
ASN
#13335 CLOUDFLARENET

File type
C source, ASCII text, with very long lines (32016)
Size
21 kB (21261 bytes)
Hash
bde6a33e0dc7b4f0ccec946fafd10628
5ee6532d90070a6504071ac2def8cbb0abd36686
d7dea7a3634f76dc947cdb458a536ca8ddb23dae8cbace13605dd9c8192cbfc2

HTTP Headers

GET /widgets/platform.js HTTP/1.1
Host: cdn.embedly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 21:55:50 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-id-2: VvHZFILYy46JlSGO7cYvpsqYuemtwgb8+iPWh0BW5nAQ4Nw4f9cubO9t/c3zxxOucAOO52DcKNI=
x-amz-request-id: MG2D8YCS4RC8N6EW
Last-Modified: Wed, 28 Sep 2022 12:23:48 GMT
ETag: W/"a1f1ece9e89111211731906a18ab7f95"
Cache-Control: public, max-age=300
x-amz-version-id: D9F_az9KLct4og.3RoKtPq_phqTTUKAq
CF-Cache-Status: HIT
Expires: Thu, 06 Oct 2022 22:00:50 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7561a4bfac090b41-OSL
Content-Encoding: gzip

cdn.segment.com/analytics-next/bundles/870.bundle.323974846b6d45afb45e.js

54.230.219.201

200 OK

5.3 kB

URL HTTP/2
cdn.segment.com/analytics-next/bundles/870.bundle.323974846b6d45afb45e.js
IP
54.230.219.201:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (16955)
Size
5.3 kB (5326 bytes)
Hash
af9f7c143eca3a01db6230be911497d3
27a59464224b7b3a3056c488e0710e95f4d4badc
e6bae3c640d647e8563847163cc91558be5e805497fd34461f1cae5a59267490

HTTP Headers

GET /analytics-next/bundles/870.bundle.323974846b6d45afb45e.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Sat, 27 Aug 2022 01:38:35 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Fri, 26 Aug 2022 03:04:21 GMT
etag: W/"d471f2a8b801a51bbc09c91b3f90b749"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: qltndKW7QqDrf8ZSZrei2HuGEvEC2x.O
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: idtPbIVJLkRWjgeZdQewLGPaWRxzBGdJkcULXZiiQJsAduSv4lNMrw==
age: 3529036
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/js/pro.min.js?token=7c9f685347

104.18.22.52

200 OK

18 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/js/pro.min.js?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (61218), with no line terminators
Size
18 kB (17684 bytes)
Hash
f5027cc9ec3dbf51eb67f770aa265195
e11de610d7686f452c2e044f3bcaead8ffecdbe1
89f0da897479a401fcf647adb168534f71fc41f6a7c8543c28380a32b8a3e660

HTTP Headers

GET /releases/v6.2.0/js/pro.min.js?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 17684
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "630e352a-4514"
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7561a4bf6c58b50b-OSL
X-Firefox-Spdy: h2

cdn.segment.com/next-integrations/integrations/google-analytics/2.18.5/google-analytics.dynamic.js.gz

54.230.219.201

200 OK

4.7 kB

URL HTTP/2
cdn.segment.com/next-integrations/integrations/google-analytics/2.18.5/google-analytics.dynamic.js.gz
IP
54.230.219.201:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (15894)
Size
4.7 kB (4743 bytes)
Hash
36786f75981fc0efd629c4a89e1c78ec
53eae18749c15231d94fd55cc06d83ad287671e7
f41951564ca665482669a0c4e335b2720a64cd58fc983d64cbb825ef3e8df32e

HTTP Headers

GET /next-integrations/integrations/google-analytics/2.18.5/google-analytics.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 4743
date: Thu, 06 Oct 2022 06:27:24 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 21:38:20 GMT
etag: "36786f75981fc0efd629c4a89e1c78ec"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: i7V8adpJC0v_FV6MGqES_PT759Yi.CDp
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7CdmS_8YQaFyUHHe7Er1IPX_bX_u6dPucPes-heOzOnsBaOd188UXA==
age: 55707
X-Firefox-Spdy: h2

cdn.segment.com/next-integrations/integrations/google-tag-manager/2.5.1/google-tag-manager.dynamic.js.gz

54.230.219.201

200 OK

1.3 kB

URL HTTP/2
cdn.segment.com/next-integrations/integrations/google-tag-manager/2.5.1/google-tag-manager.dynamic.js.gz
IP
54.230.219.201:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (2963)
Size
1.3 kB (1342 bytes)
Hash
a1bed0458702cf863f2d24fb1b9d39ae
d39f92c601bbdb4b23ef82f8f2db000c8aef44da
58741d95ef94921adc6950bd1e59798f4dd43c6f04dfdb58ee425a99a925e279

HTTP Headers

GET /next-integrations/integrations/google-tag-manager/2.5.1/google-tag-manager.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 1342
date: Wed, 05 Oct 2022 16:58:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 21:38:20 GMT
etag: "a1bed0458702cf863f2d24fb1b9d39ae"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: Y4lwW_1LqKmsCq_EX8EGKACwF5NkY9as
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9Z5vkgkTGck6rVOM60adTKfPadb3vH465JwVH7vmlUQcAnOfv4Xp9w==
age: 104220
X-Firefox-Spdy: h2

cdn.segment.com/next-integrations/integrations/adwords/2.5.3/adwords.dynamic.js.gz

54.230.219.201

200 OK

1.4 kB

URL HTTP/2
cdn.segment.com/next-integrations/integrations/adwords/2.5.3/adwords.dynamic.js.gz
IP
54.230.219.201:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (3675)
Size
1.4 kB (1356 bytes)
Hash
257fe81df53dcd4819bc1a81e78fce58
c8359d1d27cce7de170e6aed63e157390b33e202
f5d159180db9c44e6f82b7fb33ef2983b42ef6d369ebe4c1c6ae299a7ec669e2

HTTP Headers

GET /next-integrations/integrations/adwords/2.5.3/adwords.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 1356
date: Thu, 29 Sep 2022 15:56:52 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 21:38:19 GMT
etag: "257fe81df53dcd4819bc1a81e78fce58"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: vKc0r1j8FDy9fsKra5HxQfs5MqLFpxB4
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 20C8ifLNnzzG9H_QKgi4JfcKjB8hmLVSyjOkuia78_LLLaQJjED81g==
age: 626339
X-Firefox-Spdy: h2

cdn.segment.com/next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz

54.230.219.201

200 OK

22 kB

URL HTTP/2
cdn.segment.com/next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz
IP
54.230.219.201:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size
22 kB (22177 bytes)
Hash
befb217271e2e926c7d898f1c85f6cb7
b6ca8f0b9eb7ddebc916cbc77eddab8532216748
21c28b41965eaf22aae5ee670f71227bd2d8fd32a024d62864873f7c8621e8f4

HTTP Headers

GET /next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 22177
date: Thu, 06 Oct 2022 07:55:17 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 19 Sep 2022 21:38:18 GMT
etag: "befb217271e2e926c7d898f1c85f6cb7"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: Z.cz1sApkVz0CAwS1aXBsP5bZXvNz24o
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jyy_k2cq_pGOU41KQUFDOEVCPr8pr3y0oIkfw-W2hPKqIaXVC71A5g==
age: 50434
X-Firefox-Spdy: h2

cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.35a8f6f19959bf2f455f.js

54.230.219.201

200 OK

3.7 kB

URL HTTP/2
cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.35a8f6f19959bf2f455f.js
IP
54.230.219.201:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (10259)
Size
3.7 kB (3713 bytes)
Hash
0162d5dde8b0e5e72799a2293b42ae6b
54008057ad460c9bee7920466277fcc32623c101
ea860baf8808a7f91b557f516c148b1688afd67ab3125af71f426679a1a48c71

HTTP Headers

GET /analytics-next/bundles/ajs-destination.bundle.35a8f6f19959bf2f455f.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Thu, 01 Sep 2022 06:12:31 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 30 Aug 2022 21:47:48 GMT
etag: W/"e0f89f667fb8d2b50aa8e29a86a4c9b1"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: 1ps0Y.cQfeUJnD6vrqu.rtfMUGfr8v9x
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wQ0ISKILeKbprvn2It4FHRtLobKNN4IiMv_TSWDyqa5La44kByVENg==
age: 3080600
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5eee2baed68ec922370bd283860860fd
7d1e7dfdb9577dcd11587bb162e17c56eaf8e4c4
7931afabb9286276c385564aa73ed67927d31e12ab35eb92da84048a7896f27d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5784
Expires: Thu, 06 Oct 2022 23:32:14 GMT
Date: Thu, 06 Oct 2022 21:55:50 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5784
Expires: Thu, 06 Oct 2022 23:32:14 GMT
Date: Thu, 06 Oct 2022 21:55:50 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5784
Expires: Thu, 06 Oct 2022 23:32:14 GMT
Date: Thu, 06 Oct 2022 21:55:50 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11080 bytes)
Hash
2277f8f2d93b4bc3b05d348343177892
531d9e4ec9078cd2d7376a19fcb287084af36c82
62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: LySueW1si-yWLwecUILV1s57IEV2FdcQ9_pH1Aoe4AYISi7QXXfd3A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:38:07 GMT
age: 1063
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7511 bytes)
Hash
9e520f87cae411cfc2ed1c8a14184385
69ad212cb7ae309d4f02019552887135bfae67da
723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 3lKuGlFCBN2wEsp9-Oa3ysQg62py090H30jy6_bR02Ufs0KGPrVC4w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:36:43 GMT
age: 1147
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.givemn.org/api/v4/story/Whittier-2018.json?include_all_details=true

75.2.9.75

200 OK

14 kB

URL HTTP/2
www.givemn.org/api/v4/story/Whittier-2018.json?include_all_details=true
IP
75.2.9.75:0
ASN
#16509 AMAZON-02

File type
data
Size
14 kB (14545 bytes)
Hash
434e82a04e531afeb890029336456646
e59a5aaeb2930c1518bc1032ac360dadd3196bd7
5c74810bf2a23a0820d3f6676d91abf9ae0b33e7028cec951ead0b9683cf540c

HTTP Headers

GET /api/v4/story/Whittier-2018.json?include_all_details=true HTTP/1.1
Host: www.givemn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/story/Whittier-2018
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; angular_http_referrer=; tz=Africa%2FAbidjan
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:50 GMT
content-type: application/json; charset=utf-8
server: nginx
x-frame-options: SAMEORIGIN
cache-control: no-store
pragma: no-cache
expires: -1
chid: 19
vary: Accept-Encoding
content-encoding: gzip
etag: W/"30f84b4cdf2fff6873ff82bacada83c9"
set-cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; domain=.givemn.org; path=/; expires=Sun, 09 Oct 2022 21:55:50 GMT; secure; HttpOnly
x-request-id: 5234db01-0b09-4702-a707-36c7b2838df1
x-runtime: 0.125925
strict-transport-security: max-age=7776000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
expect-ct: max-age=0, report-uri='https://mightycause.report-uri.com/r/d/ct/reportOnly'
permissions-policy: accelerometer=(), autoplay=*, camera=*, cross-origin-isolated=(self), fullscreen=*, geolocation=*, gyroscope=(), magnetometer=(), microphone=*, clipboard-read=(self), clipboard-write=(self)
content-security-policy: default-src https: wss: 'self' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; script-src https: 'self' 'unsafe-eval' 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com nimbleswan.io static.tagboard.com; style-src 'self' https: 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; img-src 'unsafe-eval' https: data: blob: mediastream:; media-src https: 'self' *.mightycause.com w.chatlio.com blob:; font-src https: data: 'self' *.mightycause.com *.gstatic.com cdn.embedly.com; manifest-src 'self' *.mightycause.com; report-uri https://mightycause.report-uri.com/r/d/csp/reportOnly
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://mightycause.report-uri.com/a/d/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":31536000,"include_subdomains":true}
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.1 kB (4140 bytes)
Hash
dbba56f647bf5989ca51863632bbebfc
26694f34166345ee5693653e0101db6b910e68ba
ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: 13fcd792-1fcc-44b5-aa9e-d2773a60fe77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uHrbIAMFbqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-5b5f5d781b9d651b68c04f2e;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: wfnbRpTKni8hbAmJXO9vdisV6ZPoRP-eBb3wP4RzPS7MlXvp7282dw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:36:43 GMT
age: 1147
etag: "26694f34166345ee5693653e0101db6b910e68ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7270 bytes)
Hash
e238ccaa3b9fa88476a8514855e8232f
447cbf348ef10d0136a1811e843c46937defbba1
43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7270
x-amzn-requestid: f2f15f43-6054-40f5-943a-530671e772dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZjF3aIAMFW9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-5e2253791a927c8c40a0ff0d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: xRuMce_9OkP3R2DqHjZI34GwkDezdfGKsgntCMTZG2c6SJUcyv0Ckg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:56:40 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
content-type: image/jpeg
age: 86350
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.4 kB (3430 bytes)
Hash
488ec5b4267ccb1cdc4e6e08556f7f3b
42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88
d9b05fe92962a58b9a8e8dbd4757969aa361be12018107ae649ffcdb8a0f8d84

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3430
x-amzn-requestid: 9b3b52d6-08b4-4893-962b-3dfe67e2f11d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjTijF0vIAMFq3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dffa9-0a128734418b6c4d6375e2ac;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 22:05:29 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: iRuujAZLL_0mf5_-FhMXpuWwHy-jidhBkFuBIZLo0tLlJArZgFEcbA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 45d6a557ecb29942f314e3dd736d817a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 16:10:55 GMT
age: 20695
etag: "42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-TG6ZFD&l=dataLayer

142.250.74.168

200 OK

63 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-TG6ZFD&l=dataLayer
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (11312)
Size
63 kB (63273 bytes)
Hash
9d98abe2e4d7b0f0d0590fa018748b63
0a612cf5ffe657f10f40a0fb5ff1ec985b804d52
61324a491187f5c17f8ef6b8f44d7014c59489daab53d0b24a9d337386bbd002

HTTP Headers

GET /gtm.js?id=GTM-TG6ZFD&l=dataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 06 Oct 2022 21:55:50 GMT
expires: Thu, 06 Oct 2022 21:55:50 GMT
cache-control: private, max-age=900
last-modified: Thu, 06 Oct 2022 21:29:37 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 63273
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

api.autopilothq.com/anywhere/aa/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?t=&u=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&r=

23.253.207.75

200 OK

0 B

URL HTTP/1.1
api.autopilothq.com/anywhere/aa/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?t=&u=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&r=
IP
23.253.207.75:0
ASN
#19994 RACKSPACE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /anywhere/aa/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?t=&u=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&r= HTTP/1.1
Host: api.autopilothq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private,max-age=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: text/javascript
Content-Length: 0
Date: Thu, 06 Oct 2022 21:55:50 GMT
Connection: close

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5eee2baed68ec922370bd283860860fd
7d1e7dfdb9577dcd11587bb162e17c56eaf8e4c4
7931afabb9286276c385564aa73ed67927d31e12ab35eb92da84048a7896f27d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ecc594c8ad8a58175abca6f74592cad0
bc3eb5409877f214ca5d45c39d39754fd80997ae
4376e30946f541ed958cbbff449d18b6acb24608aa48fa078440cb99291dc7d1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5297
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:50 GMT
Last-Modified: Thu, 06 Oct 2022 20:27:33 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

cdn.segment.com/analytics-next/bundles/799.bundle.3370767d4bbb423fe139.js

54.230.219.201

200 OK

5.7 kB

URL HTTP/2
cdn.segment.com/analytics-next/bundles/799.bundle.3370767d4bbb423fe139.js
IP
54.230.219.201:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (12317)
Size
5.7 kB (5667 bytes)
Hash
eced5e92220a22ab0e962d81ccfe4c16
540555075ad1573b8d28c10fcbdcc1d2f9bcf958
f4cac19d7a1dab3151f726702d1dd49a1429a4af67078e63690c3cd4c77fd906

HTTP Headers

GET /analytics-next/bundles/799.bundle.3370767d4bbb423fe139.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Sun, 11 Sep 2022 21:37:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sat, 10 Sep 2022 01:17:37 GMT
etag: W/"2a10e0b62dd94cab4fb87eeeb2166fb3"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: EA0U9mJA8VQou_eS3Bc3rokuYBuAq_VM
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NZv8Wo20mI9wKNH_hq3oMYWBHlMAW_qGfYxjVuHvNp-a6UcSnJti-w==
age: 2161080
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/6.2.4/firebase-app.js

142.250.74.163

200 OK

3.8 kB

URL HTTP/2
www.gstatic.com/firebasejs/6.2.4/firebase-app.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (11305)
Size
3.8 kB (3849 bytes)
Hash
f0572d8d9abfdcb6669e8f696483005e
804d94dd37cac4470dce2b39303e98fc2d7b85fe
6b264ddcdeb8f34be6c94160c4658d755da7a6c00d38af1d485ab5d4dd49b344

HTTP Headers

GET /firebasejs/6.2.4/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 3849
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 01:57:50 GMT
expires: Sun, 01 Oct 2023 01:57:50 GMT
cache-control: public, max-age=31536000
age: 503880
last-modified: Thu, 27 Jun 2019 23:53:04 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 06 Oct 2022 20:41:09 GMT
expires: Thu, 06 Oct 2022 22:41:09 GMT
cache-control: public, max-age=7200
age: 4481
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
664956675c2fb79300109442ba317063
b68de691e1c0c1050e3414c2ae7aa598b775814d
b50256be7178c0393f7f5d684804fef1320a2ee87e664b75129dad6909a9e0fd

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion_async.js

142.250.74.34

200 OK

15 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion_async.js
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1654)
Size
15 kB (15192 bytes)
Hash
3f6af00987331c2127d76c53ad1e07cb
4cd4976eb4921e3bd9a96b6a2a29b17251de939b
4ea0a9748c3e5fe15fc2ae185f43e6928db62b8b2250c3b4df092737938168c1

HTTP Headers

GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 06 Oct 2022 21:55:50 GMT
expires: Thu, 06 Oct 2022 21:55:50 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 699633608045481581
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15192
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ecc594c8ad8a58175abca6f74592cad0
bc3eb5409877f214ca5d45c39d39754fd80997ae
4376e30946f541ed958cbbff449d18b6acb24608aa48fa078440cb99291dc7d1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5297
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:50 GMT
Last-Modified: Thu, 06 Oct 2022 20:27:33 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
68cae76ca08d4e9629466fe6e31c4401
174a7298fb239a33068a15a2e900956dee1f5c2c
e0a2fb0dd6b622408d720f55ba8a8e21edd3d6ab6072aaa716e13ae6af3f6381

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

imagecdn.mightycause.com/a4df9714-9103-49a6-9938-21056e66c409/-/crop/766x584/345,183/-/preview/-/resize/16x/

23.36.79.27

200 OK

579 B

URL HTTP/2
imagecdn.mightycause.com/a4df9714-9103-49a6-9938-21056e66c409/-/crop/766x584/345,183/-/preview/-/resize/16x/
IP
23.36.79.27:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 16 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
579 B (579 bytes)
Hash
33d1e581d33274dad0a17d9db3d9a054
5494dd4c862fb72e3de9334144d28832951e329e
ba21e4415dd22316bdb0327075db8f10ee1df67d45876f4047303ff2e7cd5c0b

HTTP Headers

GET /a4df9714-9103-49a6-9938-21056e66c409/-/crop/766x584/345,183/-/preview/-/resize/16x/ HTTP/1.1
Host: imagecdn.mightycause.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Etag, X-Image-Width, X-Image-Height, X-Image-Acceptable-Original, X-Image-Acceptable-Improved
content-disposition: inline
content-type: image/png
etag: "82521d72cda422061a37a32363c4c72b"
server: nginx
x-image-height: 12
x-image-width: 16
content-length: 579
cache-control: public, max-age=31047005
date: Thu, 06 Oct 2022 21:55:50 GMT
X-Firefox-Spdy: h2

ucarecdn.com/libs/widget/3.x/uploadcare.full.min.js

23.36.76.131

200 OK

118 kB

URL HTTP/2
ucarecdn.com/libs/widget/3.x/uploadcare.full.min.js
IP
23.36.76.131:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (56386)
Size
118 kB (118013 bytes)
Hash
f3e4c854bcaf7f3fbbc8f0371a38c8f5
3cc4bbb9e3aaa72658fb2c946a9e75f456eb21d3
03b4faf6a0bc156c51936326b76e4f111d03e0340fc8faba83b3d1494318beb2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /libs/widget/3.x/uploadcare.full.min.js HTTP/1.1
Host: ucarecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
content-encoding: gzip
last-modified: Mon, 29 Aug 2022 11:26:05 GMT
server: nginx
etag: W/"35b64f8af6e3ea661736b18f35a1c5f4"
content-length: 118013
strict-transport-security: max-age=2628000
cache-control: public, max-age=1827
date: Thu, 06 Oct 2022 21:55:50 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

www.givemn.org/api/v4/story/Whittier-2018/recent_donations.json?page=1&per_page=20

75.2.9.75

200 OK

4.8 kB

URL HTTP/2
www.givemn.org/api/v4/story/Whittier-2018/recent_donations.json?page=1&per_page=20
IP
75.2.9.75:0
ASN
#16509 AMAZON-02

File type
data
Size
4.8 kB (4769 bytes)
Hash
b93eb06c15af54643c484a15679d8b70
08535b532044dc119a7f370154282b85e0e0f446
b08ee0622c0aee3d20b272cd1eba911bd0d497594630c65f24abe37dbb126227

HTTP Headers

GET /api/v4/story/Whittier-2018/recent_donations.json?page=1&per_page=20 HTTP/1.1
Host: www.givemn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/story/Whittier-2018
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; angular_http_referrer=; tz=Africa%2FAbidjan
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:50 GMT
content-type: application/json; charset=utf-8
server: nginx
x-frame-options: SAMEORIGIN
cache-control: no-store
pragma: no-cache
expires: -1
chid: 19
vary: Accept-Encoding
content-encoding: gzip
etag: W/"1af866b0fb163cbc69aad13707b6cae6"
set-cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; domain=.givemn.org; path=/; expires=Sun, 09 Oct 2022 21:55:50 GMT; secure; HttpOnly
x-request-id: 6bd77e08-b627-445a-bc99-072d46173348
x-runtime: 0.059186
strict-transport-security: max-age=7776000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
expect-ct: max-age=0, report-uri='https://mightycause.report-uri.com/r/d/ct/reportOnly'
permissions-policy: accelerometer=(), autoplay=*, camera=*, cross-origin-isolated=(self), fullscreen=*, geolocation=*, gyroscope=(), magnetometer=(), microphone=*, clipboard-read=(self), clipboard-write=(self)
content-security-policy: default-src https: wss: 'self' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; script-src https: 'self' 'unsafe-eval' 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com nimbleswan.io static.tagboard.com; style-src 'self' https: 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; img-src 'unsafe-eval' https: data: blob: mediastream:; media-src https: 'self' *.mightycause.com w.chatlio.com blob:; font-src https: data: 'self' *.mightycause.com *.gstatic.com cdn.embedly.com; manifest-src 'self' *.mightycause.com; report-uri https://mightycause.report-uri.com/r/d/csp/reportOnly
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://mightycause.report-uri.com/a/d/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":31536000,"include_subdomains":true}
X-Firefox-Spdy: h2

imagecdn.mightycause.com/0323c3c1-51c4-4d42-b41f-263484f5ec62/-/crop/1440x810/0,45/-/preview/-/stretch/off/-/resize/1500x/-/progressive/yes/-/sharp/5/-/format/auto/

23.36.79.27

200 OK

114 kB

URL HTTP/2
imagecdn.mightycause.com/0323c3c1-51c4-4d42-b41f-263484f5ec62/-/crop/1440x810/0,45/-/preview/-/stretch/off/-/resize/1500x/-/progressive/yes/-/sharp/5/-/format/auto/
IP
23.36.79.27:0
ASN
#20940 Akamai International B.V.

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1440x810, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
114 kB (113632 bytes)
Hash
7ff800c0600cd26529b867ebc6450b24
7ae9cd77422565dc80c1f9b8d4ccb8a0c2bf6497
4ae6668e3337b93430d33245507bccef0d1257e7f73f223873a6f6dd62c0fb89

HTTP Headers

GET /0323c3c1-51c4-4d42-b41f-263484f5ec62/-/crop/1440x810/0,45/-/preview/-/stretch/off/-/resize/1500x/-/progressive/yes/-/sharp/5/-/format/auto/ HTTP/1.1
Host: imagecdn.mightycause.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Etag, X-Image-Width, X-Image-Height, X-Image-Acceptable-Original, X-Image-Acceptable-Improved
content-disposition: inline
content-type: image/webp
etag: "f4aafd67066eae52150e8727a125c299"
server: nginx
x-image-height: 810
x-image-width: 1440
content-length: 113632
cache-control: public, max-age=31455236
date: Thu, 06 Oct 2022 21:55:51 GMT
X-Firefox-Spdy: h2

imagecdn.mightycause.com/85eaa616-8976-44fe-aa81-4c561bdb06bf/-/resize/100x100/

23.36.79.27

200 OK

2.8 kB

URL HTTP/2
imagecdn.mightycause.com/85eaa616-8976-44fe-aa81-4c561bdb06bf/-/resize/100x100/
IP
23.36.79.27:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Size
2.8 kB (2819 bytes)
Hash
419fb18f480e7b80d498a96c39f00308
3ea854d11e5bed594af2973ee27a2cce8cb2fec3
f2303780522ddbe39782eaf320ce6807ca553b590975d0ee91c85844e4e7533d

HTTP Headers

GET /85eaa616-8976-44fe-aa81-4c561bdb06bf/-/resize/100x100/ HTTP/1.1
Host: imagecdn.mightycause.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Etag, X-Image-Width, X-Image-Height, X-Image-Acceptable-Original, X-Image-Acceptable-Improved
content-disposition: inline
content-type: image/jpeg
etag: "f65984f3c283b9e0ac6a554a59fe75b4"
server: nginx
x-image-height: 100
x-image-width: 100
content-length: 2819
cache-control: public, max-age=31556926
date: Thu, 06 Oct 2022 21:55:51 GMT
X-Firefox-Spdy: h2

kit.fontawesome.com/7c9f685347.js

104.18.22.52

200 OK

16 kB

URL HTTP/2
kit.fontawesome.com/7c9f685347.js
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
16 kB (16398 bytes)
Hash
bf28c2ff28a2611c89b58bbc7ca329ee
595ce5e8c8de7faa2342613af39aba752ca70d02
6c48c0074e77c3d0754a1109cff834a4bd4fe1a4312f3479c54b4d7a2f8bf7ff

HTTP Headers

GET /7c9f685347.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:50 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FxCKksemfL4JM2EDwnyh
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 7561a4be9dec0b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.segment.com/analytics.js/v1/f0NjbawUhvfG9cA6t3mhItAiV7ROJCYl/analytics.min.js

54.230.219.201

200 OK

40 kB

URL HTTP/2
cdn.segment.com/analytics.js/v1/f0NjbawUhvfG9cA6t3mhItAiV7ROJCYl/analytics.min.js
IP
54.230.219.201:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
40 kB (39600 bytes)
Hash
6bead7dbf0d0043c604c53de5baeda38
d91bc5ee34ea9b09d4fc47cdd7ff719796ff2663
cb6f927bc841d5a7dd303c6cbc25d4d808051e17ce2ce89e451c626cc343fcd9

HTTP Headers

GET /analytics.js/v1/f0NjbawUhvfG9cA6t3mhItAiV7ROJCYl/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 31 Aug 2022 18:59:12 GMT
x-amz-version-id: gpLPVHs_tUhNhTomnY5txvzEfiWhYHKa
server: AmazonS3
content-encoding: br
date: Thu, 06 Oct 2022 21:55:50 GMT
cache-control: public, max-age=120
etag: W/"31a82cf962d74126a55bbdf07b0bc1e8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -WheYRRrhcMW6Ul39bgRvMlhRwZFAoj8-pjJemyxJGU5U_DyoaUwVQ==
age: 66
X-Firefox-Spdy: h2

imagecdn.mightycause.com/b4a1ed63-73cb-4a3d-8ef6-2ba2b5327c31/-/overlay/2777a763-355c-4dc4-88b2-4ee87b2c0c1d/80px80p/center/

23.36.79.27

200 OK

92 kB

URL HTTP/2
imagecdn.mightycause.com/b4a1ed63-73cb-4a3d-8ef6-2ba2b5327c31/-/overlay/2777a763-355c-4dc4-88b2-4ee87b2c0c1d/80px80p/center/
IP
23.36.79.27:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1146x1146, components 3\012- data
Size
92 kB (92082 bytes)
Hash
857f3599650df7e051f3329c3f1d046f
fc40a8c5817f342314abed66605429d0cd27f1dd
44336eb3f806636f032a5fc072a000633ed34226dd615ddca02bf3cd0946d131

HTTP Headers

GET /b4a1ed63-73cb-4a3d-8ef6-2ba2b5327c31/-/overlay/2777a763-355c-4dc4-88b2-4ee87b2c0c1d/80px80p/center/ HTTP/1.1
Host: imagecdn.mightycause.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Etag, X-Image-Width, X-Image-Height, X-Image-Acceptable-Original, X-Image-Acceptable-Improved
content-disposition: inline
content-type: image/jpeg
etag: "1713c1c775a7892817ccf0acd8d6a35d"
server: nginx
x-image-height: 1146
x-image-width: 1146
content-length: 92082
cache-control: public, max-age=31556888
date: Thu, 06 Oct 2022 21:55:51 GMT
X-Firefox-Spdy: h2

www.givemn.org/api/v4/cart.json

75.2.9.75

200 OK

134 kB

URL HTTP/2
www.givemn.org/api/v4/cart.json
IP
75.2.9.75:0
ASN
#16509 AMAZON-02

File type
data
Size
134 kB (134314 bytes)
Hash
9e7b564e24e139ca3b337d2f74c4da92
2cd1a9b5d4386e9f4b01aea00283f6f000b5707a
005a751bb4f75b9ddc8c30d910c23ef5290d36c24a3248702d252294f69d31fd

HTTP Headers

GET /api/v4/cart.json HTTP/1.1
Host: www.givemn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/story/Whittier-2018
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; angular_http_referrer=; tz=Africa%2FAbidjan
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:50 GMT
content-type: application/json; charset=utf-8
server: nginx
x-frame-options: SAMEORIGIN
cache-control: no-store
pragma: no-cache
expires: -1
chid: 20
vary: Accept-Encoding
content-encoding: gzip
etag: W/"9e09e62dc85b33f45d31edd18ae35c35"
set-cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; domain=.givemn.org; path=/; expires=Sun, 09 Oct 2022 21:55:50 GMT; secure; HttpOnly
x-request-id: 068a3721-4740-4215-af66-ea99a51886ec
x-runtime: 0.005786
strict-transport-security: max-age=7776000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
expect-ct: max-age=0, report-uri='https://mightycause.report-uri.com/r/d/ct/reportOnly'
permissions-policy: accelerometer=(), autoplay=*, camera=*, cross-origin-isolated=(self), fullscreen=*, geolocation=*, gyroscope=(), magnetometer=(), microphone=*, clipboard-read=(self), clipboard-write=(self)
content-security-policy: default-src https: wss: 'self' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; script-src https: 'self' 'unsafe-eval' 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com nimbleswan.io static.tagboard.com; style-src 'self' https: 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; img-src 'unsafe-eval' https: data: blob: mediastream:; media-src https: 'self' *.mightycause.com w.chatlio.com blob:; font-src https: data: 'self' *.mightycause.com *.gstatic.com cdn.embedly.com; manifest-src 'self' *.mightycause.com; report-uri https://mightycause.report-uri.com/r/d/csp/reportOnly
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://mightycause.report-uri.com/a/d/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":31536000,"include_subdomains":true}
X-Firefox-Spdy: h2

imagecdn.mightycause.com/a56de7f3-d569-42a6-ae81-211d9db161b8/-/stretch/off/-/resize/1600x/-/sharp/10/

23.36.79.27

200 OK

351 kB

URL HTTP/2
imagecdn.mightycause.com/a56de7f3-d569-42a6-ae81-211d9db161b8/-/stretch/off/-/resize/1600x/-/sharp/10/
IP
23.36.79.27:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x621, components 3\012- data
Size
351 kB (350708 bytes)
Hash
5d19f0401ae47296de93a85d68ba715f
318c7cff688fabc4b7725d6099fbab919da4b817
9ec79847b6be9549881d67e4488d940aa544ea97b8b3f171cf96456ec6c01567

HTTP Headers

GET /a56de7f3-d569-42a6-ae81-211d9db161b8/-/stretch/off/-/resize/1600x/-/sharp/10/ HTTP/1.1
Host: imagecdn.mightycause.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Etag, X-Image-Width, X-Image-Height, X-Image-Acceptable-Original, X-Image-Acceptable-Improved
content-disposition: inline
content-type: image/jpeg
etag: "d66f10f3859e4d66c5ba8cf03d5128df"
server: nginx
x-image-height: 621
x-image-width: 1600
content-length: 350708
cache-control: public, max-age=31556926
date: Thu, 06 Oct 2022 21:55:51 GMT
X-Firefox-Spdy: h2

imagecdn.mightycause.com/bc554109-9caf-4a49-bfd4-071e7d30070f/-/stretch/off/-/resize/1600x/-/sharp/10/

23.36.79.27

200 OK

242 kB

URL HTTP/2
imagecdn.mightycause.com/bc554109-9caf-4a49-bfd4-071e7d30070f/-/stretch/off/-/resize/1600x/-/sharp/10/
IP
23.36.79.27:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x703, components 3\012- data
Size
242 kB (242427 bytes)
Hash
3e40ab621992f221941b35b61a5c146d
febc6dc3cdf9bbed8d5e00d4efcb435ad4976b45
c1e036a2d002c331a9b34317400553c25d752b14cd52d61b03f3276800a0fd7a

HTTP Headers

GET /bc554109-9caf-4a49-bfd4-071e7d30070f/-/stretch/off/-/resize/1600x/-/sharp/10/ HTTP/1.1
Host: imagecdn.mightycause.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Etag, X-Image-Width, X-Image-Height, X-Image-Acceptable-Original, X-Image-Acceptable-Improved
content-disposition: inline
content-type: image/jpeg
etag: "85a7eadd30024a434e9ee98619080b94"
server: nginx
x-image-height: 703
x-image-width: 1600
content-length: 242427
cache-control: public, max-age=31556909
date: Thu, 06 Oct 2022 21:55:51 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
87465c15992fe10c24c62a185f8c171d
fa938b624d06d1e2927c8eda6a44b2a32d930f59
239ef7fe5df8c396d96a928c20d66c842a5ec3e9ff71a3cd7c0068906fc3e537

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
08b649be90223337575ec4c6cb327a80
8c686bebc07b21262d5c20afb249f3c5cb539291
fa80f5a250da050fd7e403141c9b1a0ba59eed4541b1dda7421c529008bafd1d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 21:55:52 GMT
Last-Modified: Thu, 06 Oct 2022 20:42:31 GMT
Server: ECS (dcb/7EC8)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JkMRneCMe1e9XaVrMQA-8jkfn1jG0aXD3YvrWRz9lHTQxmSn3SRF7g==
Age: 4401

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
08b649be90223337575ec4c6cb327a80
8c686bebc07b21262d5c20afb249f3c5cb539291
fa80f5a250da050fd7e403141c9b1a0ba59eed4541b1dda7421c529008bafd1d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 21:55:52 GMT
Last-Modified: Thu, 06 Oct 2022 21:04:50 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SZ-dDPLCDxyfzMBP60wsKxGuB2JbkKKNKPGsvgMJpWm6c79VHfCgjA==
Age: 3062

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
87465c15992fe10c24c62a185f8c171d
fa938b624d06d1e2927c8eda6a44b2a32d930f59
239ef7fe5df8c396d96a928c20d66c842a5ec3e9ff71a3cd7c0068906fc3e537

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/times.svg?token=7c9f685347

104.18.22.52

200 OK

305 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/times.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- exported SGML document, ASCII text, with very long lines (526), with no line terminators
Size
305 B (305 bytes)
Hash
8d2f2b883b69ea8a81137e3dc5f6e883
d52230a22f4be0d53067f5082c92a800e53be568
fcf28a24f5f7243082794dbe15fafc2d962b04157618835d0b9eb44c497b6bdf

HTTP Headers

GET /releases/v6.2.0/svgs/solid/times.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e36e3-20e"
last-modified: Tue, 30 Aug 2022 16:12:19 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c8ad18b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

upload.uploadcare.com/info/?jsonerrors=1&file_id=732af256-16ae-40ab-9d87-933828080e49&pub_key=e9c2c4eafd5a3b5e5edd&wait_is_ready=1&_=1665093351569

52.6.139.135

200 OK

444 B

URL HTTP/1.1
upload.uploadcare.com/info/?jsonerrors=1&file_id=732af256-16ae-40ab-9d87-933828080e49&pub_key=e9c2c4eafd5a3b5e5edd&wait_is_ready=1&_=1665093351569
IP
52.6.139.135:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with very long lines (935), with no line terminators
Size
444 B (444 bytes)
Hash
514ec74ffdc92ce95180b6d2aad2235a
520374a74b055e0ae5f773ead224696425f97662
3a90bdbe62b867263639329205c32060221c5422a1480e70640a52cdb001ee8d

HTTP Headers

GET /info/?jsonerrors=1&file_id=732af256-16ae-40ab-9d87-933828080e49&pub_key=e9c2c4eafd5a3b5e5edd&wait_is_ready=1&_=1665093351569 HTTP/1.1
Host: upload.uploadcare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
X-UC-User-Agent: UploadcareWidget/3.19.0/e9c2c4eafd5a3b5e5edd (JavaScript)
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 21:55:52 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding, Origin
Access-Control-Allow-Origin: https://www.givemn.org
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: X-UC-User-Agent, X-PINGOTHER, DNT
Access-Control-Max-Age: 1
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: Warning, Retry-After
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Uploadcare-Request-Id: 8723e501-4f47-4148-9e88-629d69255e83
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05cdf02bcbbeed0122679c1118a350ce
b5311d6866b69206bec8f67a19cfeeefed233ef1
4b7235ec2ca2295957e75e79fdc718fbacc13bfd5674d1aeb7cbe5bed9fe9ead

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05cdf02bcbbeed0122679c1118a350ce
b5311d6866b69206bec8f67a19cfeeefed233ef1
4b7235ec2ca2295957e75e79fdc718fbacc13bfd5674d1aeb7cbe5bed9fe9ead

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/viewthroughconversion/876140014/?random=1665093352460&cv=9&fst=1665093352460&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=path%3D%2Fstory%2FWhittier-2018%3Breferrer%3D%3Bsearch%3D%3Btitle%3DGive%20to%20the%20Max%20Day%202018%3Burl%3Dhttps%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018%3Bname%3DGive%20to%20the%20Max%20Day%202018&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4

172.217.21.162

200 OK

1.1 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/876140014/?random=1665093352460&cv=9&fst=1665093352460&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=path%3D%2Fstory%2FWhittier-2018%3Breferrer%3D%3Bsearch%3D%3Btitle%3DGive%20to%20the%20Max%20Day%202018%3Burl%3Dhttps%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018%3Bname%3DGive%20to%20the%20Max%20Day%202018&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2642), with no line terminators
Size
1.1 kB (1078 bytes)
Hash
f5bd00f2ecd35e6b6dd00a438485c9c0
72b6bcc38158d2a6627d41abc1957dd83dc70536
35a5fd20762596e413552543c8bd33cd6a517e279556b4fe30966e5a02af19ba

HTTP Headers

GET /pagead/viewthroughconversion/876140014/?random=1665093352460&cv=9&fst=1665093352460&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=path%3D%2Fstory%2FWhittier-2018%3Breferrer%3D%3Bsearch%3D%3Btitle%3DGive%20to%20the%20Max%20Day%202018%3Burl%3Dhttps%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018%3Bname%3DGive%20to%20the%20Max%20Day%202018&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 21:55:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1078
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 06-Oct-2022 22:10:52 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.facebook.com/x/oauth/status?client_id=250457581338&input_token&origin=1&redirect_uri=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&sdk=joey&wants_cookie_data=true

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/x/oauth/status?client_id=250457581338&input_token&origin=1&redirect_uri=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&sdk=joey&wants_cookie_data=true
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /x/oauth/status?client_id=250457581338&input_token&origin=1&redirect_uri=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&sdk=joey&wants_cookie_data=true HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
access-control-expose-headers: fb-s
access-control-allow-credentials: true
access-control-allow-origin: https://www.givemn.org
fb-s: unknown
document-policy: force-load-at-top
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
strict-transport-security: max-age=15552000; preload
x-fb-debug: K18XSv+kJrXs4WnwlGMGg4DMjXrYsD3lmB5qu1sqLC+q39eCRlfkaam0Si67D1JsKzzQtaPvHB+GLWV988fNYA==
content-length: 0
date: Thu, 06 Oct 2022 21:55:52 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

142.250.74.46

200 OK

27 kB

URL HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
data
Size
27 kB (26806 bytes)
Hash
0df08b706aee3f1ab5766ebcc2c9b8c5
df5c3ee15732f9bf82eef47c5367f1ee86580df6
5a6f0fccf1d0c455b2a2b1d2911f1270b3d5f7659e268f3e33ae6ee1029a9699

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 06 Oct 2022 21:55:52 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+384; expires=Sat, 05-Oct-2024 21:55:52 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/876140014/?random=515799431&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=6E4_Y5qqIZmZ7gTzvoH4DQ&sscte=1&crd=CJqqsQI

172.217.21.162

302 Found

42 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/876140014/?random=515799431&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=6E4_Y5qqIZmZ7gTzvoH4DQ&sscte=1&crd=CJqqsQI
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/viewthroughconversion/876140014/?random=515799431&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=6E4_Y5qqIZmZ7gTzvoH4DQ&sscte=1&crd=CJqqsQI HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 21:55:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/876140014/?random=515799431&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=CJqqsQI&is_vtc=1&ocp_id=6E4_Y5qqIZmZ7gTzvoH4DQ&random=2772140330&resp=GooglemKTybQhCsO
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 06-Oct-2022 22:10:52 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05cdf02bcbbeed0122679c1118a350ce
b5311d6866b69206bec8f67a19cfeeefed233ef1
4b7235ec2ca2295957e75e79fdc718fbacc13bfd5674d1aeb7cbe5bed9fe9ead

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1cecd042e106c70af7e8f0d9863ca3d9
fa94604e9e99c752d18708abcec8584a5eee66ea
3525f542ce5a72795646c2bba144333920f67f3e9938748f9d3bd3aff9ac496e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
38c8ed81c69d2af0003394c9fb9274c5
a71c6fb6d685275f8a8c7d9d87860df08a450038
fdff30d374603ecd62c6d244a1175731787725dba48777122802055969be28f4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

region1.google-analytics.com/g/collect?v=2&tid=G-YGBQTZLV6G&gtm=2oea50&_p=556218466&cid=361761556.1665093352&ul=en-us&sr=1280x1024&_s=1&sid=1665093352&sct=1&seg=0&dl=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&dt=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&en=page_view&_fv=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-YGBQTZLV6G&gtm=2oea50&_p=556218466&cid=361761556.1665093352&ul=en-us&sr=1280x1024&_s=1&sid=1665093352&sct=1&seg=0&dl=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&dt=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&en=page_view&_fv=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-YGBQTZLV6G&gtm=2oea50&_p=556218466&cid=361761556.1665093352&ul=en-us&sr=1280x1024&_s=1&sid=1665093352&sct=1&seg=0&dl=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&dt=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.givemn.org
date: Thu, 06 Oct 2022 21:55:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4int/S8bfnalmCqs

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4int/S8bfnalmCqs
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e7f8cad6ff30edbf13905341ffc561ba
3c74dcc47ee558b8d10da6bd6fb5de15d477e5d1
bfcbe2d2e0705a394cc9726e36498faa00a08b64c06f0390246f06eab43b03e8

HTTP Headers

POST /s/gts1d4int/S8bfnalmCqs HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:52 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
38c8ed81c69d2af0003394c9fb9274c5
a71c6fb6d685275f8a8c7d9d87860df08a450038
fdff30d374603ecd62c6d244a1175731787725dba48777122802055969be28f4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/pagead/1p-user-list/876140014/?random=1665093352460&cv=9&fst=1665090000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2Fstory%2FWhittier-2018%3Breferrer%3D%3Bsearch%3D%3Btitle%3DGive%20to%20the%20Max%20Day%202018%3Burl%3Dhttps%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018%3Bname%3DGive%20to%20the%20Max%20Day%202018&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&async=1&fmt=3&is_vtc=1&random=733352199&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/876140014/?random=1665093352460&cv=9&fst=1665090000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2Fstory%2FWhittier-2018%3Breferrer%3D%3Bsearch%3D%3Btitle%3DGive%20to%20the%20Max%20Day%202018%3Burl%3Dhttps%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018%3Bname%3DGive%20to%20the%20Max%20Day%202018&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&async=1&fmt=3&is_vtc=1&random=733352199&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/876140014/?random=1665093352460&cv=9&fst=1665090000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2Fstory%2FWhittier-2018%3Breferrer%3D%3Bsearch%3D%3Btitle%3DGive%20to%20the%20Max%20Day%202018%3Burl%3Dhttps%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018%3Bname%3DGive%20to%20the%20Max%20Day%202018&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&async=1&fmt=3&is_vtc=1&random=733352199&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 21:55:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/pagead/1p-user-list/876140014/?random=1665093352460&cv=9&fst=1665090000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2Fstory%2FWhittier-2018%3Breferrer%3D%3Bsearch%3D%3Btitle%3DGive%20to%20the%20Max%20Day%202018%3Burl%3Dhttps%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018%3Bname%3DGive%20to%20the%20Max%20Day%202018&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&async=1&fmt=3&is_vtc=1&random=733352199&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/876140014/?random=1665093352460&cv=9&fst=1665090000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2Fstory%2FWhittier-2018%3Breferrer%3D%3Bsearch%3D%3Btitle%3DGive%20to%20the%20Max%20Day%202018%3Burl%3Dhttps%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018%3Bname%3DGive%20to%20the%20Max%20Day%202018&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&async=1&fmt=3&is_vtc=1&random=733352199&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/876140014/?random=1665093352460&cv=9&fst=1665090000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2Fstory%2FWhittier-2018%3Breferrer%3D%3Bsearch%3D%3Btitle%3DGive%20to%20the%20Max%20Day%202018%3Burl%3Dhttps%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018%3Bname%3DGive%20to%20the%20Max%20Day%202018&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&async=1&fmt=3&is_vtc=1&random=733352199&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 21:55:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/images/cleardot.gif

142.250.74.164

200 OK

43 B

URL HTTP/2
www.google.com/images/cleardot.gif
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

HTTP Headers

GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Thu, 06 Oct 2022 21:55:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/pagead/1p-conversion/876140014/?random=515799431&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=CJqqsQI&is_vtc=1&ocp_id=6E4_Y5qqIZmZ7gTzvoH4DQ&random=2772140330&resp=GooglemKTybQhCsO

142.250.74.164

302 Found

42 B

URL HTTP/2
www.google.com/pagead/1p-conversion/876140014/?random=515799431&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=CJqqsQI&is_vtc=1&ocp_id=6E4_Y5qqIZmZ7gTzvoH4DQ&random=2772140330&resp=GooglemKTybQhCsO
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-conversion/876140014/?random=515799431&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=CJqqsQI&is_vtc=1&ocp_id=6E4_Y5qqIZmZ7gTzvoH4DQ&random=2772140330&resp=GooglemKTybQhCsO HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 21:55:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/876140014/?random=515799431&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=CJqqsQI&is_vtc=1&ocp_id=6E4_Y5qqIZmZ7gTzvoH4DQ&random=2772140330&resp=GooglemKTybQhCsO&ipr=y&prhg=0
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/pagead/1p-conversion/876140014/?random=515799431&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=CJqqsQI&is_vtc=1&ocp_id=6E4_Y5qqIZmZ7gTzvoH4DQ&random=2772140330&resp=GooglemKTybQhCsO&ipr=y&prhg=0

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-conversion/876140014/?random=515799431&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=CJqqsQI&is_vtc=1&ocp_id=6E4_Y5qqIZmZ7gTzvoH4DQ&random=2772140330&resp=GooglemKTybQhCsO&ipr=y&prhg=0
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-conversion/876140014/?random=515799431&cv=9&fst=1665093352457&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&tiba=Give%20to%20the%20Max%20Day%202018%20%7C%20GiveMN&hn=www.googleadservices.com&async=1&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=CJqqsQI&is_vtc=1&ocp_id=6E4_Y5qqIZmZ7gTzvoH4DQ&random=2772140330&resp=GooglemKTybQhCsO&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 21:55:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1cecd042e106c70af7e8f0d9863ca3d9
fa94604e9e99c752d18708abcec8584a5eee66ea
3525f542ce5a72795646c2bba144333920f67f3e9938748f9d3bd3aff9ac496e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5cf0b96d292d0d5501e7987b39f6ffd8
5fddc7cbf215d017c19836923efb509060f56f59
b14ec26e2631b7d5438a7556f3211524cd4b57773921094fe9c574944eddc034

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

razoo-prod.firebaseio.com/.ws?v=5

34.120.160.131

101 Switching Protocols

0 B

URL HTTP/1.1
razoo-prod.firebaseio.com/.ws?v=5
IP
34.120.160.131:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /.ws?v=5 HTTP/1.1
Host: razoo-prod.firebaseio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.givemn.org
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: e91KrBPhddAPyz1LEc0DQQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Thu, 06 Oct 2022 21:55:52 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kWZXy3rnLdDNYzeWUWo6TfNqx7c=
Strict-Transport-Security: max-age=31556926; includeSubDomains; preload

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
0998cf0dcc74b2850cfcef6308d3dada
eb1a05abe77dcad445ee92c8f57ad158bb5bc2b0
93e9b66faaba0b5593ee7b620cbb378fa747869695f544a67b0102d91740d03d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 21:55:52 GMT
Last-Modified: Thu, 06 Oct 2022 20:25:39 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zmF-tOEw-8dLGWfSYAwRPNo23wZuMEM3XyGzGyQJ6zLNFDH_BVtfXg==
Age: 5413

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5cf0b96d292d0d5501e7987b39f6ffd8
5fddc7cbf215d017c19836923efb509060f56f59
b14ec26e2631b7d5438a7556f3211524cd4b57773921094fe9c574944eddc034

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 21:55:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

api.segment.io/v1/p

54.69.86.105

200 OK

21 B

URL HTTP/2
api.segment.io/v1/p
IP
54.69.86.105:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text
Size
21 B (21 bytes)
Hash
90749a50019a27e1f32cebdbaa7a1bc1
8329e3339f928f8591024bb0f938dab99c0ad4b8
12f71cb993958eefc4bdb41d7dbbda490779a9c7aba448f7be52bb63912e0254

HTTP Headers

POST /v1/p HTTP/1.1
Host: api.segment.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Content-Type: text/plain
Origin: https://www.givemn.org
Content-Length: 1024
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:53 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: https://www.givemn.org
strict-transport-security: max-age=31536000
vary: Origin
X-Firefox-Spdy: h2

api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?t=&u=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&r=

23.253.207.75

200 OK

7.5 kB

URL HTTP/1.1
api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?t=&u=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&r=
IP
23.253.207.75:0
ASN
#19994 RACKSPACE

File type
ASCII text, with very long lines (7502), with no line terminators
Size
7.5 kB (7502 bytes)
Hash
158f97cfea6abd5c33f6787b622f29b3
6af3096f6cc883735cc95944dfbbeb43ffb88a60
05cdbee5309c8558fa3d266d93d3e9f4781768a044ef7891d63f92678b151d59

HTTP Headers

GET /anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?t=&u=https%3A%2F%2Fwww.givemn.org%2Fstory%2FWhittier-2018&r= HTTP/1.1
Host: api.autopilothq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private,max-age=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: text/javascript
Content-Length: 7502
Date: Thu, 06 Oct 2022 21:55:53 GMT
P3P: CP="Intentionally invalid"
Set-Cookie: f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613=633f4ee906629b02ac9124b7; Path=/anywhere; Expires=Fri, 06 Oct 2023 21:55:53 GMT; SameSite=None; Secure; HttpOnly
cda_nimbleswan.io=v1; Path=/anywhere; Expires=Fri, 06 Oct 2023 21:55:53 GMT; SameSite=None; Secure; HttpOnly
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS
X-Timing: lt=0,fs=79,tfc=81,fpcd=82
Connection: close

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
20739eb7d8c6569343acbb11953f4dbf
e1f2705d6b8a76a0ac266804bed39d03e34992c1
972c7e888f3e221ec6fe24cea861a142e606063bb64486a1a378833567735a2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "972C7E888F3E221EC6FE24CEA861A142E606063BB64486A1A378833567735A2D"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=454
Expires: Thu, 06 Oct 2022 22:03:27 GMT
Date: Thu, 06 Oct 2022 21:55:53 GMT
Connection: keep-alive

nimbleswan.io/anywhere/cda/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?sid=633f4ee906629b02ac9124b7

162.242.174.138

200 OK

0 B

URL HTTP/1.1
nimbleswan.io/anywhere/cda/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?sid=633f4ee906629b02ac9124b7
IP
162.242.174.138:0
ASN
#19994 RACKSPACE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /anywhere/cda/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613?sid=633f4ee906629b02ac9124b7 HTTP/1.1
Host: nimbleswan.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
P3P: CP="Intentionally invalid"
Set-Cookie: f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613=633f4ee906629b02ac9124b7; Path=/anywhere; Expires=Fri, 06 Oct 2023 21:55:53 GMT; SameSite=None; Secure; HttpOnly
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS
Date: Thu, 06 Oct 2022 21:55:53 GMT
Connection: close
Transfer-Encoding: chunked

api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/core.js

23.253.207.75

200 OK

45 kB

URL HTTP/1.1
api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/core.js
IP
23.253.207.75:0
ASN
#19994 RACKSPACE

File type
ASCII text, with very long lines (32025)
Size
45 kB (44702 bytes)
Hash
e2b773327d56fe9d156150a03fa89df1
f87063d79523e4814763c70d543151ffe54bbf5a
f96e6cc875857f25abf20efd821137c93e3261b8d5024f1bc317e761ab0f5604

HTTP Headers

GET /anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/core.js HTTP/1.1
Host: api.autopilothq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Cookie: f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613=633f4ee906629b02ac9124b7; cda_nimbleswan.io=v1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: public,no-transform,max-age=604800,s-maxage=604800
Expires: Thu, 13 Oct 2022 21:55:53 GMT
Date: Thu, 06 Oct 2022 21:55:53 GMT
Content-Encoding: gzip
Content-Length: 44702
ETag: e2b773327d56fe9d156150a03fa89df1
Content-Type: text/javascript
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS
X-Timing: lt=1,lso-n=2,fs=2
Connection: close

api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/633f4ee906629b02ac9124b7

23.253.207.75

200 OK

0 B

URL HTTP/1.1
api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/633f4ee906629b02ac9124b7
IP
23.253.207.75:0
ASN
#19994 RACKSPACE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/633f4ee906629b02ac9124b7 HTTP/1.1
Host: api.autopilothq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: PUT
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS
Access-Control-Allow-Headers: Null, Accept, Content-Type
Allow: GET, POST, PUT, OPTIONS
Date: Thu, 06 Oct 2022 21:55:54 GMT
Connection: close
Transfer-Encoding: chunked

api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/633f4ee906629b02ac9124b7

23.253.207.75

200 OK

0 B

URL HTTP/1.1
api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/633f4ee906629b02ac9124b7
IP
23.253.207.75:0
ASN
#19994 RACKSPACE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

PUT /anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/633f4ee906629b02ac9124b7 HTTP/1.1
Host: api.autopilothq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Content-Type: text/plain;charset=UTF-8
Content-Length: 76
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: text/plain
Content-Length: 0
P3P: CP="Intentionally invalid"
Set-Cookie: f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613=633f4ee906629b02ac9124b7; Path=/anywhere; Expires=Fri, 06 Oct 2023 21:55:54 GMT; SameSite=None; Secure; HttpOnly
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS
X-Timing: lt=0,lso-n=1,fs=1
Date: Thu, 06 Oct 2022 21:55:54 GMT
Connection: close

api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/633f4ee906629b02ac9124b7

23.253.207.75

200 OK

2 B

URL HTTP/1.1
api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/633f4ee906629b02ac9124b7
IP
23.253.207.75:0
ASN
#19994 RACKSPACE

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

PUT /anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/633f4ee906629b02ac9124b7 HTTP/1.1
Host: api.autopilothq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Content-Type: text/plain;charset=UTF-8
Content-Length: 74
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 2
P3P: CP="Intentionally invalid"
Set-Cookie: f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613=633f4ee906629b02ac9124b7; Path=/anywhere; Expires=Fri, 06 Oct 2023 21:55:54 GMT; SameSite=None; Secure; HttpOnly
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS
X-Timing: lt=0,lso-n=0,fs=1
Date: Thu, 06 Oct 2022 21:55:54 GMT
Connection: close

api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/633f4ee906629b02ac9124b7

23.253.207.75

200 OK

2 B

URL HTTP/1.1
api.autopilothq.com/anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/633f4ee906629b02ac9124b7
IP
23.253.207.75:0
ASN
#19994 RACKSPACE

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

PUT /anywhere/f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613/633f4ee906629b02ac9124b7 HTTP/1.1
Host: api.autopilothq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Content-Type: text/plain;charset=UTF-8
Content-Length: 74
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 2
P3P: CP="Intentionally invalid"
Set-Cookie: f1bf5109e87a4e08902635169fe5d7b411b8fc4d84dc442d89078afddd353613=633f4ee906629b02ac9124b7; Path=/anywhere; Expires=Fri, 06 Oct 2023 21:55:56 GMT; SameSite=None; Secure; HttpOnly
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS
X-Timing: lt=0,lso-n=0,fs=1
Date: Thu, 06 Oct 2022 21:55:56 GMT
Connection: close

ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/share-alt.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/share-alt.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/solid/share-alt.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e36d9-254"
last-modified: Tue, 30 Aug 2022 16:12:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c54a15b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/light/cogs.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/light/cogs.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/light/cogs.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e35a5-126b"
last-modified: Tue, 30 Aug 2022 16:07:01 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c539feb50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/light/file-invoice-dollar.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/light/file-invoice-dollar.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/light/file-invoice-dollar.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e35ab-6d6"
last-modified: Tue, 30 Aug 2022 16:07:07 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c529fab50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/regular/donate.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/regular/donate.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/regular/donate.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e3605-80e"
last-modified: Tue, 30 Aug 2022 16:08:37 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c509b5b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/code.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/code.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/solid/code.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e36bf-2c6"
last-modified: Tue, 30 Aug 2022 16:11:43 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c53a10b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/box-heart.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/box-heart.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/solid/box-heart.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e36b9-251"
last-modified: Tue, 30 Aug 2022 16:11:37 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c509c6b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/regular/search.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/regular/search.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/regular/search.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e3620-248"
last-modified: Tue, 30 Aug 2022 16:09:04 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c54a16b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/brands/facebook-f.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/brands/facebook-f.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/brands/facebook-f.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e352e-1a4"
last-modified: Tue, 30 Aug 2022 16:05:02 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c53a08b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.givemn.org/story/Whittier-2018

75.2.9.75

200 OK

0 B

URL HTTP/2
www.givemn.org/story/Whittier-2018
IP
75.2.9.75:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /story/Whittier-2018 HTTP/1.1
Host: www.givemn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:48 GMT
content-type: text/html
server: nginx
vary: Accept-Encoding
last-modified: Mon, 19 Sep 2022 22:49:10 GMT
cache-control: public, max-age=60
strict-transport-security: max-age=7776000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
expect-ct: max-age=0, report-uri='https://mightycause.report-uri.com/r/d/ct/reportOnly'
permissions-policy: accelerometer=(), autoplay=*, camera=*, cross-origin-isolated=(self), fullscreen=*, geolocation=*, gyroscope=(), magnetometer=(), microphone=*, clipboard-read=(self), clipboard-write=(self)
content-security-policy: default-src https: wss: 'self' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; script-src https: 'self' 'unsafe-eval' 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com nimbleswan.io static.tagboard.com; style-src 'self' https: 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; img-src 'unsafe-eval' https: data: blob: mediastream:; media-src https: 'self' *.mightycause.com w.chatlio.com blob:; font-src https: data: 'self' *.mightycause.com *.gstatic.com cdn.embedly.com; manifest-src 'self' *.mightycause.com; report-uri https://mightycause.report-uri.com/r/d/csp/reportOnly
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://mightycause.report-uri.com/a/d/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":31536000,"include_subdomains":true}
x-frame-options: SAMEORIGIN
x-cache: HIT Thu, 06 Oct 2022 21:55:45 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.segment.com/v1/projects/f0NjbawUhvfG9cA6t3mhItAiV7ROJCYl/settings

54.230.219.201

200 OK

0 B

URL HTTP/2
cdn.segment.com/v1/projects/f0NjbawUhvfG9cA6t3mhItAiV7ROJCYl/settings
IP
54.230.219.201:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v1/projects/f0NjbawUhvfG9cA6t3mhItAiV7ROJCYl/settings HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 09 May 2022 20:49:35 GMT
x-amz-version-id: SO7E9gWSTJsofMAVSA74W9_yCDbpskq_
server: AmazonS3
content-encoding: gzip
date: Thu, 06 Oct 2022 20:14:56 GMT
cache-control: public, max-age=10800
etag: W/"23b1009554e95a41d63545f1b9fbff02"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0sxnZ3vG3oUiv9yWebXuWWIhyw6uOTRa9xOoqnanoFjRS4ttsqsa4Q==
age: 6055
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/regular/home-heart.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/regular/home-heart.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/regular/home-heart.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e3610-360"
last-modified: Tue, 30 Aug 2022 16:08:48 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c509c4b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/envelope.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/envelope.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/solid/envelope.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e36c2-1fb"
last-modified: Tue, 30 Aug 2022 16:11:46 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c53a0fb50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.givemn.org/api/v4/site_init.js

75.2.9.75

200 OK

0 B

URL HTTP/2
www.givemn.org/api/v4/site_init.js
IP
75.2.9.75:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/v4/site_init.js HTTP/1.1
Host: www.givemn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/story/Whittier-2018
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:49 GMT
content-type: text/javascript; charset=utf-8
server: nginx
x-frame-options: SAMEORIGIN
cache-control: no-store
pragma: no-cache
expires: -1
chid: 20
vary: Accept-Encoding
content-encoding: gzip
etag: W/"9130e2429ed666373e483cf41da563df"
set-cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; domain=.givemn.org; path=/; expires=Sun, 09 Oct 2022 21:55:49 GMT; secure; HttpOnly
x-request-id: a9f411a9-0918-4dc2-a8b1-e212919f2495
x-runtime: 0.013980
strict-transport-security: max-age=7776000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
expect-ct: max-age=0, report-uri='https://mightycause.report-uri.com/r/d/ct/reportOnly'
permissions-policy: accelerometer=(), autoplay=*, camera=*, cross-origin-isolated=(self), fullscreen=*, geolocation=*, gyroscope=(), magnetometer=(), microphone=*, clipboard-read=(self), clipboard-write=(self)
content-security-policy: default-src https: wss: 'self' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; script-src https: 'self' 'unsafe-eval' 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com nimbleswan.io static.tagboard.com; style-src 'self' https: 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; img-src 'unsafe-eval' https: data: blob: mediastream:; media-src https: 'self' *.mightycause.com w.chatlio.com blob:; font-src https: data: 'self' *.mightycause.com *.gstatic.com cdn.embedly.com; manifest-src 'self' *.mightycause.com; report-uri https://mightycause.report-uri.com/r/d/csp/reportOnly
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://mightycause.report-uri.com/a/d/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":31536000,"include_subdomains":true}
X-Firefox-Spdy: h2

www.givemn.org/api/v4/track_page_view.json

75.2.9.75

200 OK

0 B

URL HTTP/2
www.givemn.org/api/v4/track_page_view.json
IP
75.2.9.75:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /api/v4/track_page_view.json HTTP/1.1
Host: www.givemn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/story/Whittier-2018
X-Requested-With: XMLHttpRequest
Content-Type: application/json;charset=utf-8
Content-Length: 74
Origin: https://www.givemn.org
Connection: keep-alive
Cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; angular_http_referrer=; tz=Africa%2FAbidjan
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:50 GMT
content-type: application/json; charset=utf-8
server: nginx
x-frame-options: SAMEORIGIN
cache-control: no-store
pragma: no-cache
expires: -1
chid: 20
vary: Accept-Encoding
content-encoding: gzip
etag: W/"cec8e89dc6c948393924182a1ec574ca"
set-cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; domain=.givemn.org; path=/; expires=Sun, 09 Oct 2022 21:55:50 GMT; secure; HttpOnly
x-request-id: d58507a9-c0f1-4494-9059-077b935c273a
x-runtime: 0.045233
strict-transport-security: max-age=7776000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
expect-ct: max-age=0, report-uri='https://mightycause.report-uri.com/r/d/ct/reportOnly'
permissions-policy: accelerometer=(), autoplay=*, camera=*, cross-origin-isolated=(self), fullscreen=*, geolocation=*, gyroscope=(), magnetometer=(), microphone=*, clipboard-read=(self), clipboard-write=(self)
content-security-policy: default-src https: wss: 'self' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; script-src https: 'self' 'unsafe-eval' 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com nimbleswan.io static.tagboard.com; style-src 'self' https: 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; img-src 'unsafe-eval' https: data: blob: mediastream:; media-src https: 'self' *.mightycause.com w.chatlio.com blob:; font-src https: data: 'self' *.mightycause.com *.gstatic.com cdn.embedly.com; manifest-src 'self' *.mightycause.com; report-uri https://mightycause.report-uri.com/r/d/csp/reportOnly
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://mightycause.report-uri.com/a/d/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":31536000,"include_subdomains":true}
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/search.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/search.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/solid/search.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e36d9-203"
last-modified: Tue, 30 Aug 2022 16:12:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c519d6b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/plus-circle.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/plus-circle.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/solid/plus-circle.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e36d5-1fd"
last-modified: Tue, 30 Aug 2022 16:12:05 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c4f9acb50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/light/sign-in.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/light/sign-in.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/light/sign-in.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e35be-2cd"
last-modified: Tue, 30 Aug 2022 16:07:26 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c53a01b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.givemn.org/api/v4/matching_grants/live_grants.json?urn=Whittier-2018

75.2.9.75

200 OK

0 B

URL HTTP/2
www.givemn.org/api/v4/matching_grants/live_grants.json?urn=Whittier-2018
IP
75.2.9.75:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/v4/matching_grants/live_grants.json?urn=Whittier-2018 HTTP/1.1
Host: www.givemn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/story/Whittier-2018
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; angular_http_referrer=; tz=Africa%2FAbidjan
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:50 GMT
content-type: application/json; charset=utf-8
server: nginx
x-frame-options: SAMEORIGIN
cache-control: no-store
pragma: no-cache
expires: -1
chid: 20
vary: Accept-Encoding
content-encoding: gzip
etag: W/"9e17f613c1fc4da1b210acab691b4da5"
set-cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; domain=.givemn.org; path=/; expires=Sun, 09 Oct 2022 21:55:50 GMT; secure; HttpOnly
x-request-id: f7dd0d64-2196-4d07-a9fb-2b50c00449f8
x-runtime: 0.026674
strict-transport-security: max-age=7776000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
expect-ct: max-age=0, report-uri='https://mightycause.report-uri.com/r/d/ct/reportOnly'
permissions-policy: accelerometer=(), autoplay=*, camera=*, cross-origin-isolated=(self), fullscreen=*, geolocation=*, gyroscope=(), magnetometer=(), microphone=*, clipboard-read=(self), clipboard-write=(self)
content-security-policy: default-src https: wss: 'self' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; script-src https: 'self' 'unsafe-eval' 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com nimbleswan.io static.tagboard.com; style-src 'self' https: 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; img-src 'unsafe-eval' https: data: blob: mediastream:; media-src https: 'self' *.mightycause.com w.chatlio.com blob:; font-src https: data: 'self' *.mightycause.com *.gstatic.com cdn.embedly.com; manifest-src 'self' *.mightycause.com; report-uri https://mightycause.report-uri.com/r/d/csp/reportOnly
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://mightycause.report-uri.com/a/d/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":31536000,"include_subdomains":true}
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/regular/users.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/regular/users.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/regular/users.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e3657-4d1"
last-modified: Tue, 30 Aug 2022 16:09:59 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c509c0b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/share.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/share.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/solid/share.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e36d9-259"
last-modified: Tue, 30 Aug 2022 16:12:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c53a12b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/regular/envelope.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/regular/envelope.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/regular/envelope.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e3606-28f"
last-modified: Tue, 30 Aug 2022 16:08:38 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c54a1eb50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

static-prod.mightycause.com/razoo.min.js?v=8.19.86

54.230.111.9

200 OK

0 B

URL HTTP/2
static-prod.mightycause.com/razoo.min.js?v=8.19.86
IP
54.230.111.9:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /razoo.min.js?v=8.19.86 HTTP/1.1
Host: static-prod.mightycause.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 19 Sep 2022 23:17:13 GMT
last-modified: Mon, 19 Sep 2022 22:49:05 GMT
etag: W/"726d61ea385ee591e8cb1e897500cc5f"
cache-control: public, max-age=30672000
x-amz-version-id: _ejnZSwDV6Gu7nv2vkHeFaYGkigy7ZMs
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Fjj9Gj9lUR1Cw9f7IOh_o1cFOXIcm2wd2VPv6FhMVju1xszpd4rGfg==
age: 1463916
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/link.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/link.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/solid/link.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e36cd-402"
last-modified: Tue, 30 Aug 2022 16:11:57 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c54a1db50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

static-prod.mightycause.com/css_bundle.min.css?v=8.19.86

54.230.111.9

200 OK

0 B

URL HTTP/2
static-prod.mightycause.com/css_bundle.min.css?v=8.19.86
IP
54.230.111.9:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css_bundle.min.css?v=8.19.86 HTTP/1.1
Host: static-prod.mightycause.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
date: Mon, 19 Sep 2022 23:17:13 GMT
last-modified: Mon, 19 Sep 2022 22:49:05 GMT
etag: W/"e90b9305166796b576b4cf3ed5756460"
cache-control: public, max-age=30672000
x-amz-version-id: O1bbSfzqdEB2xrQtNyvH.TppybJ1AG8_
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Bn9-eQpn1hS7JZrpEMOWlVAUV3NUPR1GiFeqkE0u16maq25jXa638w==
age: 1463917
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/regular/calendar-star.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/regular/calendar-star.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/regular/calendar-star.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e35fe-36d"
last-modified: Tue, 30 Aug 2022 16:08:30 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c509c1b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/user-circle.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/user-circle.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/solid/user-circle.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e371a-20c"
last-modified: Tue, 30 Aug 2022 16:13:14 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c519d9b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/calendar-alt.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/solid/calendar-alt.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/solid/calendar-alt.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e36ba-424"
last-modified: Tue, 30 Aug 2022 16:11:38 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c53a06b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/brands/facebook.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/brands/facebook.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/brands/facebook.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e352e-200"
last-modified: Tue, 30 Aug 2022 16:05:02 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c54a21b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/light/bullhorn.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/light/bullhorn.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/light/bullhorn.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e35a0-4a7"
last-modified: Tue, 30 Aug 2022 16:06:56 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c529f1b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/light/pencil.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/light/pencil.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/light/pencil.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e35b9-381"
last-modified: Tue, 30 Aug 2022 16:07:21 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c529e6b50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v6.2.0/svgs/brands/twitter.svg?token=7c9f685347

104.18.22.52

200 OK

0 B

URL HTTP/2
ka-p.fontawesome.com/releases/v6.2.0/svgs/brands/twitter.svg?token=7c9f685347
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.0/svgs/brands/twitter.svg?token=7c9f685347 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/
Origin: https://www.givemn.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31556926
etag: W/"630e3533-40f"
last-modified: Tue, 30 Aug 2022 16:05:07 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
server: cloudflare
cf-ray: 7561a4c53a0bb50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.givemn.org/api/v4/cart.json

75.2.9.75

200 OK

0 B

URL HTTP/2
www.givemn.org/api/v4/cart.json
IP
75.2.9.75:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /api/v4/cart.json HTTP/1.1
Host: www.givemn.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.givemn.org/story/Whittier-2018
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; angular_http_referrer=; tz=Africa%2FAbidjan
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 21:55:50 GMT
content-type: application/json; charset=utf-8
server: nginx
x-frame-options: SAMEORIGIN
cache-control: no-store
pragma: no-cache
expires: -1
chid: 19
vary: Accept-Encoding
content-encoding: gzip
etag: W/"9e09e62dc85b33f45d31edd18ae35c35"
set-cookie: _mightycause_session=c84f82e3c1cb5ce64c3ad601f952b3f5; domain=.givemn.org; path=/; expires=Sun, 09 Oct 2022 21:55:50 GMT; secure; HttpOnly
x-request-id: 0b65dcb4-75aa-4237-95d7-2a6df261d90b
x-runtime: 0.007376
strict-transport-security: max-age=7776000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
expect-ct: max-age=0, report-uri='https://mightycause.report-uri.com/r/d/ct/reportOnly'
permissions-policy: accelerometer=(), autoplay=*, camera=*, cross-origin-isolated=(self), fullscreen=*, geolocation=*, gyroscope=(), magnetometer=(), microphone=*, clipboard-read=(self), clipboard-write=(self)
content-security-policy: default-src https: wss: 'self' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; script-src https: 'self' 'unsafe-eval' 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com nimbleswan.io static.tagboard.com; style-src 'self' https: 'unsafe-inline' *.mightycause.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net api.autopilothq.com *.braintreegateway.com *.chatlio.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com; img-src 'unsafe-eval' https: data: blob: mediastream:; media-src https: 'self' *.mightycause.com w.chatlio.com blob:; font-src https: data: 'self' *.mightycause.com *.gstatic.com cdn.embedly.com; manifest-src 'self' *.mightycause.com; report-uri https://mightycause.report-uri.com/r/d/csp/reportOnly
report-to: {"group":"default","max_age":31536000,"endpoints":[{"url":"https://mightycause.report-uri.com/a/d/g"}],"include_subdomains":true}
nel: {"report_to":"default","max_age":31536000,"include_subdomains":true}
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (45)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations