everfi.com/courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Opt_Feb1_L_SaveUp_3things_TP1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/
141.193.213.20301 Moved Permanently 162 B URL HTTP/1.1 everfi.com/courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Opt_Feb1_L_SaveUp_3things_TP1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Opt_Feb1_L_SaveUp_3things_TP1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/ HTTP/1.1
Host: everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 19:35:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Opt_Feb1_L_SaveUp_3things_TP1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/
Permissions-Policy: midi=(), camera=(), microphone=(), payment=()
Referrer-Policy: origin
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792d2113dbc5b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7613
Expires: Wed, 01 Feb 2023 21:42:09 GMT
Date: Wed, 01 Feb 2023 19:35:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14617
Expires: Wed, 01 Feb 2023 23:38:53 GMT
Date: Wed, 01 Feb 2023 19:35:16 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 18:36:02 GMT
content-type: application/json
age: 3554
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12438
Expires: Wed, 01 Feb 2023 23:02:34 GMT
Date: Wed, 01 Feb 2023 19:35:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7be1cdc9c7fb82bc3858259dc8e3307f
ef96fec934f87c1d1bf3ecd4134c65efeb4d17d5
e48ace850e99704e9be8f7a184b202550eb7512961659310406c7ba203c8862a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E48ACE850E99704E9BE8F7A184B202550EB7512961659310406C7BA203C8862A"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10071
Expires: Wed, 01 Feb 2023 22:23:07 GMT
Date: Wed, 01 Feb 2023 19:35:16 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: a59zdCnNY3lG8z+A/ZPNz6+fGaTwm0WhuOibNtpWnUsjQMkFE7E3+NE1xiNsc0uBJ2N25AI6Ls8=
x-amz-request-id: 8SN1A3FNC1FYRHH8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 18:51:40 GMT
age: 2616
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 19:35:16 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 18:41:42 GMT
age: 3214
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5566
Expires: Wed, 01 Feb 2023 21:08:02 GMT
Date: Wed, 01 Feb 2023 19:35:16 GMT
Connection: keep-alive
push.services.mozilla.com/
35.82.48.240101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.82.48.240:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: r49uq0Ug0RXGqBRunTlg7Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZW55QF2CKI1QTVnkIsT83/V2cW4=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7be1cdc9c7fb82bc3858259dc8e3307f
ef96fec934f87c1d1bf3ecd4134c65efeb4d17d5
e48ace850e99704e9be8f7a184b202550eb7512961659310406c7ba203c8862a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E48ACE850E99704E9BE8F7A184B202550EB7512961659310406C7BA203C8862A"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10070
Expires: Wed, 01 Feb 2023 22:23:07 GMT
Date: Wed, 01 Feb 2023 19:35:17 GMT
Connection: keep-alive
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.sync.js
95.101.172.235200 OK 639 B URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.sync.js
IP 95.101.172.235:0
Hash da0d1bcd1b196bf584b866a23547dd5b
e15fef73674a61aed29b1b96f41058395aa6e8a0
1cb0c8ca65801fc0b2d1c3411e88f5172acad285b43ca49449626e3c926ffb9d
GET /utag/blackbaud/main/prod/utag.sync.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "da0d1bcd1b196bf584b866a23547dd5b:1674847152.078922"
last-modified: Fri, 27 Jan 2023 19:19:12 GMT
server: AkamaiNetStorage
content-length: 639
cache-control: max-age=300
expires: Wed, 01 Feb 2023 19:40:17 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-visible/1.2.0/jquery.visible.min.js?ver=6.1.1
104.17.25.14200 OK 382 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-visible/1.2.0/jquery.visible.min.js?ver=6.1.1
IP 104.17.25.14:0
File type ASCII text, with very long lines (802)
Hash f2095dd733ec7385989c812e1f476de9
84df5212d2e505e8804d4f658d7ae54ec510bf50
a71c9ced606de75b437126955a4b047518c4575c9d45d7a222c9eada08fd5d0c
GET /ajax/libs/jquery-visible/1.2.0/jquery.visible.min.js?ver=6.1.1 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 382
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-323"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 12625491
expires: Mon, 22 Jan 2024 19:35:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zhsXN4uyc5FTGiRavVanfN3EKALVZd5JLmBp4B0iQBHEOWIaNGIyv5acjrxv69RZqOhw31NIipjUYX8oxERSoqjV1hsj3PP2ePJnqV2FdAT07TapHNPf%2FLzuJaOoPJj3K0%2BRWXeh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792d211d790db515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
client-registry.mutinycdn.com/personalize/client/16919262ebbbde25.js
151.101.2.217200 OK 28 kB URL HTTP/2 client-registry.mutinycdn.com/personalize/client/16919262ebbbde25.js
IP 151.101.2.217:0
File type Unicode text, UTF-8 text, with very long lines (62663)
Hash 3ba7569bb9a4f265560f4168bbe4ef29
cdf85386760328e5c0f4e0a9d9fb923dad4f337b
522f8529e51c99a922a9f3c20506d82544a90388a22183372e99452a2091cfdb
GET /personalize/client/16919262ebbbde25.js HTTP/1.1
Host: client-registry.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Q/ju5ydW3Msb81nL0uqKV7xwGu9e4su5SmlitxUlo0MEI9QJV3tkSxm9Gk/iK5iBwyX8yc9kWCc=
x-amz-request-id: ME4W3XRAVTECZSDG
last-modified: Fri, 27 Jan 2023 20:07:36 GMT
etag: "0888966d463b49b9236b396a577c9c9a"
cache-control: s-maxage=3600, max-age=0
x-amz-version-id: .ENpK.fYYTTLS_O5vSIWD.qOIoS0HBh1
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
x-continent-code: EU
content-encoding: gzip
accept-ranges: bytes
date: Wed, 01 Feb 2023 19:35:17 GMT
via: 1.1 varnish
age: 186
x-served-by: cache-bma1628-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675280117.411847,VS0,VE1
vary: X-Continent-Code
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 27463
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0bfa5b6aa996442e23a0bc88d731fec2
7fb66a39781a0333502ca7d0fdfb2bae5b5f83c5
272e17f4eccec18edbce753e4287be7769433ce2d79c6f8c708fdec681227805
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2680
Cache-Control: max-age=148574
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:17 GMT
Etag: "63da55db-1d7"
Expires: Fri, 03 Feb 2023 12:51:31 GMT
Last-Modified: Wed, 01 Feb 2023 12:06:51 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
res.cloudinary.com/everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA
151.101.65.137200 OK 46 kB URL HTTP/2 res.cloudinary.com/everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA
IP 151.101.65.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 883x566, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a09ee7433450450e6dce7d24002d0953
50f0eba61b837497344c6813dec9c513db2faa9a
ff5429b8fbbf6aeb1a6256a7eb46648abbb8ea5b50aeb42517a972e10738f3d4
GET /everfi/images/c_scale,q_auto,f_auto/v1628246649/fortune-fastcompany-lockup/fortune-fastcompany-lockup.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="fortune-fastcompany-lockup.webp"
content-type: image/webp
etag: "a09ee7433450450e6dce7d24002d0953"
last-modified: Tue, 28 Sep 2021 13:34:01 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-01T19:35:17.431Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 46376
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA
151.101.65.137200 OK 207 B URL HTTP/2 res.cloudinary.com/everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA
IP 151.101.65.137:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (368), with no line terminators
Hash 90af22a6ab173205f6ddaf380b91bf84
cb5e41f97bc9291e36485c55f1200025a343766a
46e8fe814ee052b28b4db7c652a22fdd19e8001dc4db62fe5b721691aaab963e
GET /everfi/images/v1638206917/k12-red/k12-red.svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="k12-red.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"4dc972573e7fd439d9545991eb3350cf"
last-modified: Tue, 14 Dec 2021 14:26:39 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=3;cpu=1;start=2023-02-01T19:35:17.431Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 207
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206910/k12-blue/k12-blue-svg?_i=AA
151.101.65.137200 OK 3.7 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206910/k12-blue/k12-blue-svg?_i=AA
IP 151.101.65.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a97a03d875b3ef916ee22291e84796d9
7ecd81fe0e24581eb9353a69302eeafcc456f41e
c2b75e337853c4d66bd7e0ca896337d790727315df1f11bc0644c00ddfad9d5f
GET /everfi/images/f_auto,q_auto/v1638206910/k12-blue/k12-blue-svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="k12-blue.webp"
content-type: image/webp
etag: "a97a03d875b3ef916ee22291e84796d9"
last-modified: Thu, 16 Dec 2021 21:50:26 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2023-02-01T19:35:17.444Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 3734
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA
151.101.65.137200 OK 2.6 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA
IP 151.101.65.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4cd1a8411bd10a551103b6fc1c607fab
d09941e8747ae3c80fe5369aa7f683a6457edb9f
5b0f23dcb7e526029a80c7716ac30700910c33e094c9ee29dfd875b24e970126
GET /everfi/images/f_auto,q_auto/v1638206915/k12-yellow/k12-yellow-svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="k12-yellow.webp"
content-type: image/webp
etag: "4cd1a8411bd10a551103b6fc1c607fab"
last-modified: Thu, 16 Dec 2021 21:48:33 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2023-02-01T19:35:17.459Z;desc=hit,rtt;dur=15
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 2586
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA
151.101.65.137200 OK 296 kB URL HTTP/2 res.cloudinary.com/everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA
IP 151.101.65.137:0
File type PNG image data, 700 x 486, 8-bit/color RGB, non-interlaced\012- data
Size 296 kB (295542 bytes)
Hash 45febeb90953d7848134db4a89c86db1
9607a08ff1238fde0573c812d118fbd66b0fb00a
e1c18428c0116b54ade818ac309ecb6ea022734f9245817d68b4f6f62082fd14
GET /everfi/images/v1642102637/prescription-drug-safety-screenshot_81207837db0/prescription-drug-safety-screenshot_81207837db0-png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "45febeb90953d7848134db4a89c86db1"
last-modified: Thu, 13 Jan 2022 19:37:20 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-01T19:35:17.431Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 295542
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA
151.101.65.137200 OK 270 B URL HTTP/2 res.cloudinary.com/everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA
IP 151.101.65.137:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (427), with no line terminators
Hash 67df486dbafc056c3585a286c8a5d346
74ec64f9a560e5762cf384377db8936dd218a343
92372af69a92065da1ef81174cbc1a4b6dfdcd277c4bd6ab7e779f477fd7e708
GET /everfi/images/v1638206913/k12-teal/k12-teal.svg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: attachment; filename="k12-teal.svg"
content-encoding: br
content-type: image/svg+xml
etag: W/"508005c38ce6fa6b4a9368e6a27dd5ff"
last-modified: Tue, 14 Dec 2021 14:26:39 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
vary: Accept-Encoding
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=13;cpu=1;start=2023-02-01T19:35:17.459Z;desc=hit,rtt;dur=15
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 270
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA
151.101.65.137200 OK 471 B URL HTTP/2 res.cloudinary.com/everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA
IP 151.101.65.137:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
GET /everfi/images/v1638215348/pathways_71327522dde/pathways_71327522dde.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "b390b802c06f9ebbad2e279c7d419fe5"
last-modified: Mon, 29 Nov 2021 19:49:11 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-01T19:35:17.431Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 163063
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/8.4.1.63.js
151.101.194.217200 OK 2.9 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/8.4.1.63.js
IP 151.101.194.217:0
File type ASCII text, with very long lines (7567), with no line terminators
Hash 299c3228ebe7d0c6d325c41caa7f7185
1498bc0ef22a32b858929a95f7dbbbf92d92f183
3b32331169c110e59a466bd82bba6acc297d5fac7a8adee0ff47964c817e0ecd
GET /mutiny-client/8.4.1.63.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1R0E59khDbQ5bpp0XFhjEZUepTbDqezvK2+LI4aKQV1N8TKX2IGrFD+tDcqSiomktC2f9FUx6qI=
x-amz-request-id: FXCFQQBAKEJJ0V41
last-modified: Fri, 27 Jan 2023 13:42:07 GMT
etag: "7038e2abc3c97f0cce472379a93e3a7c"
cache-control: max-age=31536000
x-amz-version-id: .Aa3NR3XRaUMW2I1ARLtiW.2R7X.ortT
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 01 Feb 2023 19:35:17 GMT
via: 1.1 varnish
age: 430978
x-served-by: cache-bma1678-BMA
x-cache: HIT
x-cache-hits: 1400
x-timer: S1675280118.563287,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2934
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/7.4.1.63.js
151.101.194.217200 OK 11 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/7.4.1.63.js
IP 151.101.194.217:0
File type ASCII text, with very long lines (31369), with no line terminators
Hash 506c56c8959866f1660754e52af883b7
24de06eca1d8c85b5c507c8d2ad4d1618d327796
4d4baaa180813a0a5cfd9370f9c77857bf11adec5cd5c9ef838cad9d5e8848ed
GET /mutiny-client/7.4.1.63.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: siFE3+d3cLfPP69qon/whX7K8zPPD1oht657Lr5w4wKOltD1YCNss1yT986zwkJjyACBALw183o=
x-amz-request-id: FXC901J3XC934WXP
last-modified: Fri, 27 Jan 2023 13:42:07 GMT
etag: "3f6c22d4aecc68f536e2bc57ad787731"
cache-control: max-age=31536000
x-amz-version-id: RJrJC85nSTCaPK4cjirW_xuU1TkarPmb
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 01 Feb 2023 19:35:17 GMT
via: 1.1 varnish
age: 430978
x-served-by: cache-bma1678-BMA
x-cache: HIT
x-cache-hits: 1403
x-timer: S1675280118.565326,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11412
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 967b7a73ec4c0222f92dc00d3731b0a3
4e004ff90747e0af619cad84f777f14c0dcb70ff
3c97bbec07f2c8942ee11500bc1e93d2a94ecbfef5059c6a1d6f9d8978431bb9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:17 GMT
Server: ECS (amb/6B85)
Content-Length: 279
fonts.googleapis.com/css?family=Lato:300,400,400italic,700,900
142.250.74.106200 OK 911 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:300,400,400italic,700,900
IP 142.250.74.106:0
Hash 6da1705646863045640bf3688e6793e2
7c00b0981c8fb7d5721c3c116b88f7b8a76fa0fa
e94cdc6a7e956b3cac7cdf412525183405cff2a52bcf2e55db5616e311e6c149
GET /css?family=Lato:300,400,400italic,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 19:35:17 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/6.4.1.63.js
151.101.194.217200 OK 29 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/6.4.1.63.js
IP 151.101.194.217:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9fa3195d0c60b973a28a92a9ad868f2c
0357b915442718c9e33b632d4ebe310419269893
e0b5004341b29aef1e09e8116a0ec1cebb99e8eba0517f998121113530fe2587
GET /mutiny-client/6.4.1.63.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QAJeK4IzVBS2JkrDW/s8yQ+UjJjyRs0OQ1NbZr/9CToQV7dFLgYQz+sfwsruttBACZcF9w14k+8=
x-amz-request-id: FXC8M5YZAVNG9091
last-modified: Fri, 27 Jan 2023 13:42:07 GMT
etag: "832cb79ff169f02a47aacc8f99ee8a3f"
cache-control: max-age=31536000
x-amz-version-id: 7T.btEMTzuWyCZuRp2i0IZ0sd3pDhtmG
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 01 Feb 2023 19:35:17 GMT
via: 1.1 varnish
age: 430978
x-served-by: cache-bma1678-BMA
x-cache: HIT
x-cache-hits: 1366
x-timer: S1675280118.566159,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28693
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WZ264LM
216.58.207.200200 OK 100 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WZ264LM
IP 216.58.207.200:0
File type ASCII text, with very long lines (27589)
Hash 02fc8b38b15797d378d652dbdb8123f5
6df60afbd6a7b3787d33e3b93950fedea4fe09a4
d3a9c878989f8fa905712cb71d84fad5f3e15903cfc32fa1c85e6a79e73980c7
GET /gtm.js?id=GTM-WZ264LM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 Feb 2023 19:35:17 GMT
expires: Wed, 01 Feb 2023 19:35:17 GMT
cache-control: private, max-age=900
last-modified: Wed, 01 Feb 2023 18:19:05 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 99476
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9
104.18.23.52200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9
IP 104.18.23.52:0
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:17 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 472823
accept-ranges: bytes
server: cloudflare
cf-ray: 792d2120096ffabc-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=655ccfc4f9
104.18.23.52200 OK 54 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=655ccfc4f9
IP 104.18.23.52:0
File type ASCII text, with very long lines (65397)
Hash dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
GET /releases/v5.15.4/css/pro.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:17 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 272112
accept-ranges: bytes
server: cloudflare
cf-ray: 792d21200965fabc-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9
104.18.23.52200 OK 4.2 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9
IP 104.18.23.52:0
File type ASCII text, with very long lines (26366)
Hash 7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=655ccfc4f9 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:17 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 934042
accept-ranges: bytes
server: cloudflare
cf-ray: 792d21201974fabc-OSL
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/vanilla-lazyload@10.19.0/dist/lazyload.min.js
151.101.1.229200 OK 2.8 kB URL HTTP/2 cdn.jsdelivr.net/npm/vanilla-lazyload@10.19.0/dist/lazyload.min.js
IP 151.101.1.229:0
Hash 19100f585123eeb0c469ce983c6cf5f0
b8b1c45f44f6847e03e516a7f9365049c9775507
527c9c7cb8a91fbc7755a5e160dc03b02673b777dc42286a8eb223fc151e4521
GET /npm/vanilla-lazyload@10.19.0/dist/lazyload.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 10.19.0
x-jsd-version-type: version
etag: W/"157d-7oSTFmgFjdrwSUlzDWmBH9iMXEY"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 01 Feb 2023 19:35:17 GMT
age: 27426470
x-served-by: cache-fra19154-FRA, cache-bma1675-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2168
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 3.8 kB IP 142.250.74.163:0
Hash 6f670e6d0ab976cd3ba085e63b87180e
9043aa77d83656fb6891a95938d2b28b684faa7a
1ec192e5df01d73e8133bf9e923323f7d9c5941a47a9c3abf9ff868d57262cc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA
151.101.65.137200 OK 1.5 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA
IP 151.101.65.137:0
Hash 99c24f3f035908be16ba0f36c3054800
abd42a1b2c55ea08070a513b364d474a4b543435
efa7a2626cdffa16ea145b32fe88b71617dbb97ba74fbbf4d64e05ae44fa7fc1
GET /everfi/image/upload/c_fill,g_auto,w_700,h_447/f_auto,q_auto/v1638555867/TurboTax-screenshot.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="TurboTax-screenshot.webp"
content-type: image/webp
etag: "c97a5e615c7deafe8c6e55fe9c10258f"
last-modified: Tue, 14 Dec 2021 14:26:38 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2023-02-01T19:35:17.431Z;desc=hit,rtt;dur=21
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 31100
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.67200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 04:29:08 GMT
expires: Wed, 31 Jan 2024 04:29:08 GMT
cache-control: public, max-age=31536000
age: 140769
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 6.5 kB IP 142.250.74.163:0
Hash 647f4f34e9ce61d262823c0b9f9937f2
ec73a91a8c58bb364caa798f0098d89759d216ef
60ef03b67530d24304bfcf8cb7cc510ca69ccded3afe19d89afc422cf83caa74
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 3.4 kB IP 142.250.74.163:0
Hash 64a1d8f79a8e322a47393090e9de54aa
e81e47f8a9ddc93c3cf4c124aedb138e5f88d65f
29abb830d69df78956944d166d59a40a4c2b2316c8d431cb820ed451c86ed051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.67200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:25:03 GMT
expires: Mon, 29 Jan 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 292214
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
142.250.74.67200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP 142.250.74.67:0
Hash 28210a327065df8172350444e214fbc9
890d1eb2dc1aa003298f663d1a0a860e793bb501
c34bd6136fdac61e3242386ada30b43ecd9d82f7e47f19e6318dd6840cdab54e
GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 04:28:49 GMT
expires: Wed, 31 Jan 2024 04:28:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
content-type: font/woff2
age: 140788
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
142.250.74.67200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 24408, version 1.0\012- data
Hash efee2d080d7bebdd2e0aeb2e030813a0
f8d38f9f9584e48c2e469877ebd94232265585f1
bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://everfi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:31 GMT
expires: Fri, 26 Jan 2024 21:48:31 GMT
cache-control: public, max-age=31536000
age: 510406
last-modified: Tue, 26 Apr 2022 15:50:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA
151.101.65.137200 OK 140 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA
IP 151.101.65.137:0
Size 140 kB (140467 bytes)
Hash 3823c9a4b10e8bc85fb5154555896493
f331f8ac5de109a2b94e1fb7978efe9fd90d7142
22ee3b901b4d9391eeb3f7496ce9a996fc7f41481b0bf4a1b02de422250d44b0
GET /everfi/image/upload/c_scale,w_1270,h_784/f_auto,q_auto/v1653600554/306-feature.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "a16aae583e4634e743fb443af542fd07"
last-modified: Sat, 14 Jan 2023 06:27:36 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-01T19:35:17.965Z;desc=hit,rtt;dur=11
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 139440
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA
151.101.65.137200 OK 26 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA
IP 151.101.65.137:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x336, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e718701be14dfb45e8e70950d88f2e54
3ff84aafe455c94e074eb7e5e2c9eb30ec588e74
589bedc0c2f982eee65a2868782c6e41215eda4222cd3246fa2efab8feee1bf4
GET /everfi/image/upload/c_scale,w_500,h_336/f_auto,q_auto/v1615811746/Endeavor_Website_preview-e1533064446603.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Endeavor_Website_preview-e1533064446603.webp"
content-type: image/webp
etag: "e718701be14dfb45e8e70950d88f2e54"
last-modified: Tue, 14 Dec 2021 02:23:41 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-01T19:35:17.969Z;desc=hit,rtt;dur=11
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 26104
X-Firefox-Spdy: h2
info.everfi.com/js/forms2/js/forms2.min.js
104.17.71.206200 OK 94 kB URL HTTP/2 info.everfi.com/js/forms2/js/forms2.min.js
IP 104.17.71.206:0
Hash eba0246c8d3be6a4648d624f2df17840
a5d37970344e9de43c89d277a363582dbd7bf1ee
b26e82ea82bd9a70da869a1f8295353af168a1f854fc0b14b00dcf5e4dd66f75
GET /js/forms2/js/forms2.min.js HTTP/1.1
Host: info.everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:17 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 20:56:20 GMT
etag: "481ebc-33e51-5f217594de500"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: HIT
age: 186
expires: Wed, 01 Feb 2023 23:35:17 GMT
cache-control: public, max-age=14400
set-cookie: __cf_bm=ecRXvXs6PCMau4fNo_n3.aNdNfCa5QvD3zNC66OpchU-1675280117-0-AYKNfPly7PPyBwIvnEseVKNf4YHICF9nL0rus2fF/GFOF5cKkyYR/pVT2rqH39yih5xNfzBRIOs7S88HFgKJQQw=; path=/; expires=Wed, 01-Feb-23 20:05:17 GMT; domain=.info.everfi.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 792d211f19bab524-OSL
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/images/f_auto,q_auto/v1662561673/word-force-screenshot/word-force-screenshot.png?_i=AA
151.101.65.137200 OK 80 kB URL HTTP/2 res.cloudinary.com/everfi/images/f_auto,q_auto/v1662561673/word-force-screenshot/word-force-screenshot.png?_i=AA
IP 151.101.65.137:0
Hash a598db20870a05c2e33a51f76b062df7
5dcee8d0fba65994d473d12f0cf0c81f166a6060
69956db16928aee92dbeeb9e66ada37dc794992b41b32ab9e02c519f692afe8f
GET /everfi/images/f_auto,q_auto/v1662561673/word-force-screenshot/word-force-screenshot.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="word-force-screenshot.webp"
content-type: image/webp
etag: "e90195b48e506da93cebd53d9b3bb6b5"
last-modified: Wed, 07 Sep 2022 14:45:41 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2023-02-01T19:35:17.972Z;desc=hit,rtt;dur=11
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 78864
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA
151.101.65.137200 OK 34 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA
IP 151.101.65.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a96bd57f1ad8c808d8336b9bf67bc45b
15f927db7371c61b930f9b02f34204ee2ba1f1f2
077aad9e98d550ae86833b31f89184394224cecd2530f1f556a85d334c489731
GET /everfi/image/upload/c_scale,w_700,h_446/f_auto,q_auto/v1657567290/2022-2023-new-content.png?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="2022-2023-new-content.webp"
content-type: image/webp
etag: "a96bd57f1ad8c808d8336b9bf67bc45b"
last-modified: Mon, 11 Jul 2022 19:45:14 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=0;start=2023-02-01T19:35:17.972Z;desc=hit,rtt;dur=11
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 33580
X-Firefox-Spdy: h2
res.cloudinary.com/everfi/image/upload/c_scale,w_848,h_474/f_auto,q_auto/v1673889753/Best_306_5-1.jpg?_i=AA
151.101.65.137200 OK 41 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_848,h_474/f_auto,q_auto/v1673889753/Best_306_5-1.jpg?_i=AA
IP 151.101.65.137:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ddbde5848f9544524bd7530b906209fa
c38fe8a17b2ead4ebfd7fb2bc45ed7ccb4431a92
0ab4ed60ba7051780829f33af07fff95eedc899fbd0c9028f181c3af012d601e
GET /everfi/image/upload/c_scale,w_848,h_474/f_auto,q_auto/v1673889753/Best_306_5-1.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-disposition: inline; filename="Best_306_5-1.webp"
content-type: image/webp
etag: "ddbde5848f9544524bd7530b906209fa"
last-modified: Wed, 18 Jan 2023 19:44:36 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=5;cpu=0;start=2023-02-01T19:35:17.973Z;desc=hit,rtt;dur=11
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 41310
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541
95.101.172.235200 OK 1.2 kB URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541
IP 95.101.172.235:0
File type ASCII text, with very long lines (995)
Hash cfd5c0a066e7addbdc9778a134b80d9c
9d34e630d703b18e1d48f4dc0c7e2f048b0ec368
ce79520f243faec0d953a70f3ac392ecc8e7936ab7e80bc94212d54af1f5f464
GET /utag/blackbaud/main/prod/utag.9.js?utv=ut4.48.202206141541 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "4ff103aae37a4ed488af34613295b078:1655221329.681708"
last-modified: Tue, 14 Jun 2022 15:42:09 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Thu, 16 Feb 2023 19:35:18 GMT
date: Wed, 01 Feb 2023 19:35:18 GMT
content-length: 1150
X-Firefox-Spdy: h2
user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=false&session_token=2c784e5a-a16d-4da9-8214-ef65061f2400&token=7b73f9362c0ba1bd&visitor_token=9cb8c261-dd75-481e-b839-7d398e0a1b44
151.101.130.217200 OK 743 B URL HTTP/2 user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=false&session_token=2c784e5a-a16d-4da9-8214-ef65061f2400&token=7b73f9362c0ba1bd&visitor_token=9cb8c261-dd75-481e-b839-7d398e0a1b44
IP 151.101.130.217:0
File type JSON data\012- , ASCII text, with very long lines (1280), with no line terminators
Hash 18c4bf6ed86149eeed81ba36b485e93f
cc60a7177c6b41e053fb5a05738b164ec6db06d6
d200675260f480b75beaee00af32a218b6f3975fe82e9941833bc296fc13a3e0
GET /personalize/user_data/16919262ebbbde25.json?async=false&session_token=2c784e5a-a16d-4da9-8214-ef65061f2400&token=7b73f9362c0ba1bd&visitor_token=9cb8c261-dd75-481e-b839-7d398e0a1b44 HTTP/1.1
Host: user-data.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: x-cache, x-cache-hits, age
access-control-max-age: 7200
cache-control: no-store
pragma: no-cache
x-visitor-token: 9cb8c261-dd75-481e-b839-7d398e0a1b44
x-async-user-data: false
etag: W/"bfd041ee46ca596ff186b93f9880b4fd"
x-request-id: f78b29d5-937e-4b36-a993-0c4ffb43fcb0
x-runtime: 0.093224
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
date: Wed, 01 Feb 2023 19:35:18 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675280118.563858,VS0,VE474
vary: X-Visitor-Token,X-Profile-Token,Fastly-Client-Ip,X-Async-User-Data,Origin,Accept-Encoding
x-connection-speed: broadband
x-continent-code: EU
x-country-code: NO
x-edge-datacenter: BMA
x-edge-region: EU-East
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 743
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=blackbaud/main/202301271918&cb=1675280140825
95.101.172.235200 OK 2 B URL HTTP/2 tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=blackbaud/main/202301271918&cb=1675280140825
IP 95.101.172.235:0
File type ASCII text, with no line terminators
Hash 7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
GET /utag/tiqapp/utag.v.js?a=blackbaud/main/202301271918&cb=1675280140825 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7bc0ee636b3b83484fc3b9348863bd22:1460653071"
last-modified: Thu, 14 Apr 2016 16:57:51 GMT
server: AkamaiNetStorage
content-length: 2
unused62: 8096267
cache-control: max-age=600
expires: Wed, 01 Feb 2023 19:45:18 GMT
date: Wed, 01 Feb 2023 19:35:18 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 65e3f22ba34500036d6a96bcabc31f04
7f27642bf87c575e7d7e73fcacfbb5f24a50834a
b552da9be1755a70ea7e66a8b3c1393939bcb78d44025ecedf1a18e6e1321327
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5889
Cache-Control: max-age=130184
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:18 GMT
Etag: "63da017d-1d7"
Expires: Fri, 03 Feb 2023 07:45:02 GMT
Last-Modified: Wed, 01 Feb 2023 06:06:53 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675280140840
54.246.217.115200 OK 310 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675280140840
IP 54.246.217.115:0
File type JSON data\012- , ASCII text, with very long lines (368), with no line terminators
Hash 4b52665d2df273dbaaaf8aa6540b405f
87c6cf38a4e13beb721af0c63028518b7e476276
4a4edadf2164d464dda3175e2100a0aacc25c9f22f0653ba606d7d32b329469d
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=42915A04609D99C00A495C11%40AdobeOrg&d_nsid=0&ts=1675280140840 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://everfi.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-0327f6936.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=59842765218132973701162401834847721143; Max-Age=15552000; Expires=Mon, 31 Jul 2023 19:35:18 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: dtDgeXteRvg=
Content-Length: 310
Connection: keep-alive
ob.healthroundprince.com/i/9ebca9e35a6781e1317f22e9acd57b94.js
54.230.111.85200 OK 32 kB URL HTTP/2 ob.healthroundprince.com/i/9ebca9e35a6781e1317f22e9acd57b94.js
IP 54.230.111.85:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 0abaf0cf750d1ad7411d82f0fda8eba0
e66a0f7192e46ef595e68dc61d30b555a32c8e80
b5603ae57465c4e21c41fe6c6f6eb7860acaba5b92fa45370001bb3d1ee2e068
GET /i/9ebca9e35a6781e1317f22e9acd57b94.js HTTP/1.1
Host: ob.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 31911
content-encoding: gzip
server: Caddy
cache-control: max-age=43200
date: Wed, 01 Feb 2023 07:52:40 GMT
expires: Wed, 01 Feb 2023 19:52:40 GMT
etag: "15748-17mQF5sAW8oWOarnuBtfICDuWP8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A0M7QC7IaGbkHwC4BeKhqixmQUkXR4jKmeGU78wNN7UO98NAdXb3zQ==
age: 42158
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ece9135b47b510d44623cf90aed97706
6cae88c6630cd046d61a0fca61a1fd9402d78825
f58b17211edf5b027b89222b91b83173fd8c9c5a485cfc34ee424ba219d7b5e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4770
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:18 GMT
Last-Modified: Wed, 01 Feb 2023 18:15:48 GMT
Server: ECS (amb/6B85)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 028728e739b0b0313470352a315c4826
8e0e21692e7de5cc06a42f5cbbd71b52a58cf1e3
bfa488ec3b5e260d9281b951e2c39350a698f8b037ecab3735f82a88f1f80f01
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3993
Cache-Control: max-age=154914
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:18 GMT
Etag: "63da697f-1d7"
Expires: Fri, 03 Feb 2023 14:37:12 GMT
Last-Modified: Wed, 01 Feb 2023 13:30:39 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
cdn.c212.net/c.min.js
54.230.111.41200 OK 747 B IP 54.230.111.41:0
File type ASCII text, with very long lines (747), with no line terminators
Hash 9f5634a151b9e5ecb2adec9462f783d6
3d6ac40aed2275277131d462168dac9d27a628f0
10fdc76cd92396525cf18941196d2251aa4d0c05ba2a0a5421e3af99c01503ae
GET /c.min.js HTTP/1.1
Host: cdn.c212.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 747
last-modified: Fri, 24 Jan 2020 19:12:36 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 31 Jan 2023 22:53:50 GMT
etag: "9f5634a151b9e5ecb2adec9462f783d6"
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p9mI-ZFeK23hTcFenrrq3WHt46k1C9kOh458_s807KYxivsFiQnjHQ==
age: 74488
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8374
Expires: Wed, 01 Feb 2023 21:54:52 GMT
Date: Wed, 01 Feb 2023 19:35:18 GMT
Connection: keep-alive
res.cloudinary.com/everfi/image/upload/c_scale,w_848,h_638/f_auto,q_auto/v1654801916/tablet-mockup-of-boy-playing-with-ipad-mini-on-the-couch-1.jpg?_i=AA
151.101.65.137200 OK 97 kB URL HTTP/2 res.cloudinary.com/everfi/image/upload/c_scale,w_848,h_638/f_auto,q_auto/v1654801916/tablet-mockup-of-boy-playing-with-ipad-mini-on-the-couch-1.jpg?_i=AA
IP 151.101.65.137:0
Hash 45d827c068252ebc46fb48fc83bb83a6
6cb547ad87ede55ba82a0fb0c3fb3f1a84d8d3a9
03b75025390a4f506f2db02eff257f5da9253d079036405ff1944090f9149692
GET /everfi/image/upload/c_scale,w_848,h_638/f_auto,q_auto/v1654801916/tablet-mockup-of-boy-playing-with-ipad-mini-on-the-couch-1.jpg?_i=AA HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "e8faead17ee93c74637a32f6b2e5433e"
last-modified: Tue, 27 Sep 2022 13:20:44 GMT
date: Wed, 01 Feb 2023 19:35:18 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=235;cpu=0;start=2023-02-01T19:35:17.978Z;desc=miss,rtt;dur=10,cloudinary;dur=43;start=2023-02-01T19:35:18.030Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 83013
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8374
Expires: Wed, 01 Feb 2023 21:54:52 GMT
Date: Wed, 01 Feb 2023 19:35:18 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7f132bb8e3c2fab10d0687e45c053148
1a0c7ffe088a187080060d8fff07624ba745a975
8a88ff094ff22374f90b264a7358143cfd908dd720031086466e790e725c36e6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:18 GMT
Server: ECS (amb/6B71)
Content-Length: 280
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8374
Expires: Wed, 01 Feb 2023 21:54:52 GMT
Date: Wed, 01 Feb 2023 19:35:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8374
Expires: Wed, 01 Feb 2023 21:54:52 GMT
Date: Wed, 01 Feb 2023 19:35:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hjIm9dNf6UE9rpIlKWeLwWuF7Pm6yJeAZgbwchvJcuDy-zkXEr502w==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:18 GMT
age: 78240
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 64EbarGrn6AIpXOE8TIfiBeGFQinx-P9lUIvmiQ1ivZgFrxl7_W4EQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:57:42 GMT
age: 77856
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:15:18 GMT
age: 44400
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 22:03:43 GMT
age: 77495
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:53:10 GMT
age: 42128
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec7e808a5e82552c46c3417a5b32b836
f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd
f16d982224dfeb0753eaf9d4eb87d80fd1111f682fd8fa36f3177aad5bf926a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30335cb7-009a-42f5-8186-d0c302adc827.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6819
x-amzn-requestid: a0368695-4182-40bd-9a28-c50ae783a7a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRHGnoAMF0Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-624285eb16110b8c2360dec5;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4MpUHqMYJoNA7QuRuQwbJIodNkhizq6EL5SPbIoSKFQjtoAKQgLuEg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:25 GMT
age: 78233
etag: "f0a273292b47d7e2e33c9d77fd95abdcc9e31ddd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.optimizely.com/js/22133900366.js
95.101.172.170200 OK 83 kB URL HTTP/2 cdn.optimizely.com/js/22133900366.js
IP 95.101.172.170:0
File type ASCII text, with very long lines (65468)
Hash c20e5f273bcdb5423220d5f4855ca570
c2d1b70df6993064c9fcf810782d2d212fe39924
99b8f4f9bf46adda4d6f24d574045e73020a85a6e94ae487599b547589849a38
GET /js/22133900366.js HTTP/1.1
Host: cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ycjDAXOKFWnUEg/DXqKHuCCPB2yIwDxZyWaHu9U3222Vmaqzm1CEyga9azYgEPIeaXx2iM8wWjI=
x-amz-request-id: N5VX28M5BKX2AZ3A
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 18:09:24 GMT
etag: "c20e5f273bcdb5423220d5f4855ca570"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 8
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: zxXHkbanS0Al8Kk6PQ5fj52mV_qPPwri
accept-ranges: bytes
content-type: text/javascript; charset=utf-8
server: AmazonS3
content-length: 82615
vary: Accept-Encoding
cache-control: max-age=120
date: Wed, 01 Feb 2023 19:35:18 GMT
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=5, origin; dur=135, cdn;desc="AkamaiION";dur=0,rtt;desc="15";dur=0,cdnip;desc="95.101.172.170";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 7d149860b2ba6eb462425e7ca500a00c
dd2cae3e48d10f955ce5167fb46a89d20b93c9d7
09f4324f198f856c8cef6488efc34a6eb64851046ad2d5ed4f01907acf51701a
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=162575
Date: Wed, 01 Feb 2023 19:35:18 GMT
Etag: "63da8181-1d7"
Expires: Fri, 03 Feb 2023 16:44:53 GMT
Last-Modified: Wed, 01 Feb 2023 15:13:05 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gOJeJjXUwX4-20PHlussNTVuK856Nl7uHe2dkqiIFrKbbIzEKc00KA==
Age: 5509
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ece9135b47b510d44623cf90aed97706
6cae88c6630cd046d61a0fca61a1fd9402d78825
f58b17211edf5b027b89222b91b83173fd8c9c5a485cfc34ee424ba219d7b5e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4770
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:18 GMT
Last-Modified: Wed, 01 Feb 2023 18:15:48 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq
23.36.79.17200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2298)
Hash 6b861bc8572ccd36de6ed5036ac06d3b
7edbcd17e8f1ef3e4485372e383a72c38189b4ff
c9cae4790708a31f3da1e1ecaa5e9d2cfca3dc504c507125bdb8b33f6cc2861e
GET /i18n/pixel/events.js?sdkid=C48PVR0E6TN457G0PKCG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20230201193518F0F71DBB1FE305FAB8B8
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156ae87af298d0cc61a2a961b9a1a373843061f643e67382f2ce3f0757c24243fa17642812d7132895df496a43eb1e75c1c8f6b36292d43ae040e38f6136c764790b
content-encoding: gzip
expires: Wed, 01 Feb 2023 19:35:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 01 Feb 2023 19:35:18 GMT
content-length: 1134
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
set-cookie: _ttp=2L9P2YjHs4W1yAato13IoBD4n4p; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=1, origin; dur=100
x-origin-response-time: 101,23.36.79.13
x-akamai-request-id: 9dffc560
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js
23.36.79.17200 OK 69 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MWE2YWY2YTgzMA.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash 09e9bdc02bd94387901641c0b3a1f8f0
7bf30498ae27e11f7fc60b438b090f15b67ca113
d8f79f755ae4e42d98623589e5e6420342ce199553a3b7b7713caaaec65117e9
GET /i18n/pixel/static/main.MWE2YWY2YTgzMA.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: _ttp=2L9P2YjHs4W1yAato13IoBD4n4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 2023011217582238FCAA3D419588756972
x-tt-trace-host: 01e57b2566233939c0b7a614d728f3c137bda4b6e8ffed077a25e96861feda11fa551f058721a274fc4605886b55ca626730a56b385a942b4129028dfc561d0b618d751524aad0a4ae27ef533e55d2e8e40a3ad2aaa7ba995375ace641e8e6ae3a
content-encoding: gzip
content-length: 68605
date: Wed, 01 Feb 2023 19:35:18 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=4
x-akamai-request-id: 9dffc71b
X-Firefox-Spdy: h2
marketo.clearbit.com/assets/v1/marketo/forms.js
18.134.250.23200 OK 28 kB URL HTTP/2 marketo.clearbit.com/assets/v1/marketo/forms.js
IP 18.134.250.23:0
File type Unicode text, UTF-8 text, with very long lines (3400)
Hash bf6aa97d440b453e5d58cd5bcf2e585c
cd59575ea6262fa79890d53880697f82fb251cf0
4063e72c353fcac556ca10a2d6d26666e4b486aaefaa1872585b3f9e88b91adb
GET /assets/v1/marketo/forms.js HTTP/1.1
Host: marketo.clearbit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
last-modified: Fri, 06 Jan 2023 21:26:29 GMT
set-cookie: rack.session=BAh7CUkiD3Nlc3Npb25faWQGOgZFVG86HVJhY2s6OlNlc3Npb246OlNlc3Npb25JZAY6D0BwdWJsaWNfaWRJIkU3NWY3ZmU2OTQ2NTJkZGNjYWI4ZDIwYzJkY2ZjYjYyNjljZWY3Njg2NDZlOTAyM2JkOWFlOTBkNjJhNWEzMTFjBjsARkkiCWNzcmYGOwBGSSIxMGxkcjcxU2NRWUtVOG8wMW9PSjFxNW1XSDdpVVMwWUdSNW1qK3FMTzhDUT0GOwBGSSINdHJhY2tpbmcGOwBGewZJIhRIVFRQX1VTRVJfQUdFTlQGOwBUSSItMTFjZDFkMmEwOWFkM2NjMzM4ZWY4ZDY5NmY1NTdhYmNkZjNjMDNkMAY7AEZJIg5fX0ZMQVNIX18GOwBGewA%3D--135be4f5e9afb65d6ac8e8b919ce68d4c4cb2689; path=/; expires=Wed, 08 Feb 2023 19:35:18 GMT; secure; HttpOnly
content-length: 28086
date: Wed, 01 Feb 2023 19:35:18 GMT
server: envoy
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
X-Firefox-Spdy: h2
embed.formhq.net/v1/platforms/bWFya2V0bw.js
172.66.43.197200 OK 2.0 kB URL HTTP/2 embed.formhq.net/v1/platforms/bWFya2V0bw.js
IP 172.66.43.197:0
File type ASCII text, with very long lines (422), with no line terminators
Hash 56a4bea1c55a173c90241618141698c5
bf3f0a238d628febd6cbe68638c6f2bf100ed9b5
48f6b9c95fe9326dfc13b4495e4856b52ee2cb960081702c6a03fe9664cac477
GET /v1/platforms/bWFya2V0bw.js HTTP/1.1
Host: embed.formhq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:18 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=423
etag: W/"62e92e06-1a7"
last-modified: Tue, 02 Aug 2022 14:00:38 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: max-age=1800
cf-cache-status: HIT
age: 4766
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HqB0HR8Uup1UX8PnmaUQdg6aMED7d6uERLZjFbQ85vHhPF7gNm%2FpFITum8wk0pdO5h3J3KL9G%2F0cRvbYl3vhaYrYrPnVZY1jHaU6GTR4w3Im%2BqoUalbbwiPESC9F1%2BaiYz8o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792d21246e9a1c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_c4832.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 85bd96a56a6a7f09e3e7dadc7980152e
37590c595abeb315046a293a9e53632ae2128ac4
c27be18eef006f48310fb2b0c456d6bcb1f3b0298dcb6e580724923323cb48a7
GET /i18n/pixel/static/identify_c4832.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: _ttp=2L9P2YjHs4W1yAato13IoBD4n4p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230112175825D19F86481431D6BBCCFF
x-tt-trace-host: 012b38305f60bfa8a9f04bdd846fde846b507e69fff233d9a114d447ebe9f93c0f827e6bc0806bd5a24cf0439744099e1e4bba0637571d8edb56c6009f69fe5018b8e38bd5b93708ee64c377fa97874d18ceefbea8a477a7fa2bec40c3b56c69b1
content-encoding: gzip
content-length: 30917
date: Wed, 01 Feb 2023 19:35:18 GMT
x-cache: TCP_MEM_HIT from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 9dffca5d
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 990
Origin: https://everfi.com
Connection: keep-alive
Cookie: _ttp=2L9P2YjHs4W1yAato13IoBD4n4p
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20230201193518E25A41269901B734FD97
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60b294eb1ae32bfdb0da8bf1819280156a578e6118fde971217ad264100b651698d193032f1921194909e19ea28306e57f099762abe2da838daf406f399ce422aaf0640a0a78f6b1bb0fd0e39a95566ad4
expires: Wed, 01 Feb 2023 19:35:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 01 Feb 2023 19:35:18 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=19, cdn-cache; desc=MISS, edge; dur=4, origin; dur=114
x-origin-response-time: 114,23.36.79.13
x-akamai-request-id: 9dffca5e
X-Firefox-Spdy: h2
obs.healthroundprince.com/ct?id=37830&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675280141209&hl=1&op=0&ag=1317291471&rand=230162896576511671652116017762210177012091028250518206180175077212208518766&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=GuGyV0fGy5&pto=2693&ver=50&gac=-&mei=&ap=&duid=1.1675280141.m7CvI9UUswJmgo8l&suid=1.1675280141.O5GPzMAC1qy1XZmh&tuid=1.1675280141.aQqbXdXCDhQLSD6y&fbc=->m=W10%3D&it=81%2C2431%2C132&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
35.172.245.152200 OK 1.1 kB URL HTTP/2 obs.healthroundprince.com/ct?id=37830&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675280141209&hl=1&op=0&ag=1317291471&rand=230162896576511671652116017762210177012091028250518206180175077212208518766&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=GuGyV0fGy5&pto=2693&ver=50&gac=-&mei=&ap=&duid=1.1675280141.m7CvI9UUswJmgo8l&suid=1.1675280141.O5GPzMAC1qy1XZmh&tuid=1.1675280141.aQqbXdXCDhQLSD6y&fbc=->m=W10%3D&it=81%2C2431%2C132&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 35.172.245.152:0
File type ASCII text, with very long lines (3363), with no line terminators
Hash 79a4a1d54daee51342a0459c62348605
611fdb08b70e9f371eac5464fb032c3f8a957c01
3f2dfa2ff546610317dc1f950f8e63de5b2b5085a4c085256235478c74f3b7cc
GET /ct?id=37830&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1675280141209&hl=1&op=0&ag=1317291471&rand=230162896576511671652116017762210177012091028250518206180175077212208518766&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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&dep=0&pre=0&sdd=%7B%7D&cri=GuGyV0fGy5&pto=2693&ver=50&gac=-&mei=&ap=&duid=1.1675280141.m7CvI9UUswJmgo8l&suid=1.1675280141.O5GPzMAC1qy1XZmh&tuid=1.1675280141.aQqbXdXCDhQLSD6y&fbc=->m=W10%3D&it=81%2C2431%2C132&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Wed, 01 Feb 2023 19:35:18 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=34913b9ca9905d9413fd0ff8fac3ae2f; Max-Age=29030400; Path=/; Expires=Wed, 03 Jan 2024 19:35:18 GMT; HttpOnly; Secure; SameSite=None
content-length: 1075
X-Firefox-Spdy: h2
a20497791765.cdn.optimizely.com/client_storage/a20497791765.html
104.110.8.48200 OK 843 B URL HTTP/2 a20497791765.cdn.optimizely.com/client_storage/a20497791765.html
IP 104.110.8.48:0
File type HTML document, ASCII text, with very long lines (1371)
Hash c122a3cab7bc9bab0fed7f26b3334706
35877323b39ff4632ee735d8f8e29e71b4fc4aa9
6015474cec9d8aba396ffac0073f15bf6299ade9f00f709be8ace492388b8c10
GET /client_storage/a20497791765.html HTTP/1.1
Host: a20497791765.cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NduMiXxdTpPsR9FyUlfgfL5H43Sxp7r3B1F3dY0WbZm6HKm7Ou21AgoIIwX6DFuABzfnXHSe0e8=
x-amz-request-id: 1WEWYGV11Z80NKMN
x-amz-replication-status: COMPLETED
last-modified: Wed, 01 Feb 2023 16:37:16 GMT
etag: "e9adc335a180448df7ce2fa9be6c5923"
x-amz-server-side-encryption: AES256
x-amz-meta-pci_enabled: False
x-amz-version-id: y8KC4HeHZpUDiosJVtsEh6NMnjNpZGKW
accept-ranges: bytes
content-type: text/html; charset=utf-8
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=120
x-akamai-transformed: 9 - 0 pmb=mRUM,2
content-encoding: gzip
date: Wed, 01 Feb 2023 19:35:18 GMT
content-length: 843
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=14, origin; dur=104, cdn;desc="AkamaiION";dur=0,rtt;desc="2";dur=0,cdnip;desc="104.110.8.48";dur=0,cdnmap;desc="a4728.x.akamaiedge.net";dur=0,proto;desc="h2";dur=0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
dx.mountain.com/spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=79390473899739900term=value
54.69.255.140200 OK 3.9 kB URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=79390473899739900term=value
IP 54.69.255.140:0
File type ASCII text, with very long lines (529)
Hash a5484a43d9a6758d1ab1774b4246cb09
c59c626d25094d62f2c8ba22d13a75d16299abaa
67197a41eba862f361c5de2d37cef6c2139a89a26b135a9887c25665b1e72681
GET /spx?dxver=4.0.0&shaid=33973&tdr=&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=79390473899739900term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Wed, 01 Feb 2023 19:35:18 GMT
x-envoy-upstream-service-time: 2
server: istio-envoy
connection: close
transfer-encoding: chunked
obs.healthroundprince.com/tracker/tc_imp.gif?e=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&cri=GuGyV0fGy5&ts=461&cb=1675280141670
35.172.245.152200 OK 43 B URL HTTP/2 obs.healthroundprince.com/tracker/tc_imp.gif?e=37dfbd8ee84e00136debc53dea468b959225c24f567d43d6da1908be6245cad7bd70a976750ef80ed89373bfe70e9c20c1e53e8d5d16856e2717071a10acf9f29f674a868a88047e3648af717e04826fd666c607665123c504080964575c97eb691977be26bb25cb43e29a3aee5b6fb2092f6410df57fe5aecd2948a7fe07f52a13ad2a24710d14e681f2d1586d31c64e56ac8bf88b71208fe59f1d329e921c46bcf40e25c7ea8290ee95c400027db0b68acdebcf179ef64fd718940a8116e71b9d637793a7a589513d0df4ca65b7de792b127537a30ca946c75ca92560c7c4d785258a6db7a317b03a7f84a7d8df9f02d93b35224487dfaa2f0c69e7eefcfc248b5038e523b64cbef86a7b376cccee879cf774a91bac3330743b1342dfec90a37b185e427d043bd05e7c7079952cacd60876973c3dc67c526c194b1add8f2be4674a366abeda56b4c70e4867ec6f106f607131ed81b0fc79488c9c2f2da199b7a9489a38745ff716c24857f74bb97814720c6e37fae20e99e5a9033b86b4d765bcb30b41ad398a970bb8c36830bf180e1da64814b4766f8524b7a2d1953d5ba5e9042d49fba0a98af66e9971bc8bfb8e87784bce24e5b48baba1a53cdb8345b0ff8fae538e037c2ae18afa324ad63f577c011824dc9fb639a0574bbebd0256a7c7f58370a5e08e9b0ca399742aa061f0570a6e35282c74659b7a589e5fe7186b5b1e1d0bdebb4091a23e95b94e20c7c8942790995360c3233a869a57518c1f7d330986ac55bf4b930dfea1f9379133365536e1998dcf699692d00d85a10d7c1d3a9a2d64156c6a2b76fc597263adc92526f7be583870767ee70d41bc645bd2d910085da0feaed6391c7d187c6031bbbf231719f64ba9fe6f965c035614841ed3c515aa3be4d93fe56968b91a357d1848630122a41be3db718a953b6ec75846606781528776de0448f873450bb67c0a6f134c7924aff320aa674196fd8928c5d05e62de792029942685458b6292d9caed16fce55369a8417a0c1a2faf7229020245114b33e243af6cd544ea62ea3bb98799dd9fe0f437da46d250a0ccf1654e787bf7950c20a25bbe4f319a8a8d9bb5f6ba82ca9452a00de444812c9c24605d2c4e9d6fea04aa243e61c897a92d45b9abaea2161beda0397d3&cri=GuGyV0fGy5&ts=461&cb=1675280141670
IP 35.172.245.152:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=GuGyV0fGy5&ts=461&cb=1675280141670 HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: cg_uuid=34913b9ca9905d9413fd0ff8fac3ae2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Wed, 01 Feb 2023 19:35:18 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1fd5a57e1ade9b56d75002bfeef02984
5282903b1536bab437d742fb88c019b7a0c7391d
40ba148ffb976ca66d9c0e08fdbdbf3f427a872a46c381dbd07ac6db28685b4d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6353
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:19 GMT
Last-Modified: Wed, 01 Feb 2023 17:49:26 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5910
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:19 GMT
Last-Modified: Wed, 01 Feb 2023 17:56:49 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
sjrtp-cdn.marketo.com/rtp-api/v1/rtp.js?aid=blackbaud1
104.85.188.19200 OK 0 B URL HTTP/1.1 sjrtp-cdn.marketo.com/rtp-api/v1/rtp.js?aid=blackbaud1
IP 104.85.188.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtp-api/v1/rtp.js?aid=blackbaud1 HTTP/1.1
Host: sjrtp-cdn.marketo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Jetty(9.4.45.v20220203)
Content-Type: application/x-javascript; charset=UTF-8
Content-Length: 0
Strict-Transport-Security: max-age=63113904
Date: Wed, 01 Feb 2023 19:35:19 GMT
Connection: keep-alive
info.everfi.com/index.php/form/getForm?munchkinId=410-YCZ-984&form=9079&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&callback=jQuery112402311978827176172_1675280140685&_=1675280140686
104.17.71.206200 OK 4.9 kB URL HTTP/2 info.everfi.com/index.php/form/getForm?munchkinId=410-YCZ-984&form=9079&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&callback=jQuery112402311978827176172_1675280140685&_=1675280140686
IP 104.17.71.206:0
File type ASCII text, with very long lines (13512)
Hash b6d492cfb0acf42a5b5fb58d2d42a109
03b1d1fb2ba52951f18be4f03a970376edb8a23c
3254a6de21885cecd7d2d5db192054e659dd6f2286c94627fc88f097781d9982
GET /index.php/form/getForm?munchkinId=410-YCZ-984&form=9079&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&callback=jQuery112402311978827176172_1675280140685&_=1675280140686 HTTP/1.1
Host: info.everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: mutiny.user.token=9cb8c261-dd75-481e-b839-7d398e0a1b44; mutiny.user.session=2c784e5a-a16d-4da9-8214-ef65061f2400; utag_main=v_id:01860e7a481a00028873476c52690005000f900900918$_sn:1$_se:1$_ss:1$_st:1675281940315$ses_id:1675280140315%3Bexp-session$_pn:1%3Bexp-session; __cf_bm=ecRXvXs6PCMau4fNo_n3.aNdNfCa5QvD3zNC66OpchU-1675280117-0-AYKNfPly7PPyBwIvnEseVKNf4YHICF9nL0rus2fF/GFOF5cKkyYR/pVT2rqH39yih5xNfzBRIOs7S88HFgKJQQw=; mutiny.user.session_number=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:18 GMT
content-type: application/javascript; charset=utf-8
cached: true
vary: Accept-Encoding
server: cloudflare
cf-ray: 792d2120fd16b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 01 Feb 2023 17:45:20 GMT
expires: Wed, 01 Feb 2023 19:45:20 GMT
cache-control: public, max-age=7200
age: 6599
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
munchkin.marketo.net/munchkin.js
88.221.99.189200 OK 728 B URL HTTP/1.1 munchkin.marketo.net/munchkin.js
IP 88.221.99.189:0
File type ASCII text, with very long lines (521)
Hash 51a92d8c69733d719447dea0416ed039
69f4c1e0b7ebba812bc096708d57627927dff265
cb483c0ea4012ac512bcba6204b37622b388c1aefd4ae9028f60abb965f23d29
GET /munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "92b41a298690c047b0c4602dd843cba4:1662686319.691662"
Last-Modified: Fri, 09 Sep 2022 01:18:39 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 01 Feb 2023 19:35:19 GMT
Content-Length: 728
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
player.vimeo.com/api/player.js
162.159.128.61200 OK 6.3 kB URL HTTP/1.1 player.vimeo.com/api/player.js
IP 162.159.128.61:0
File type Unicode text, UTF-8 text, with very long lines (21087)
Hash be35514553399a516ec9a8a782341d76
cc471c8a2ad4a645656f72e0833a3cd1a9131b63
ab060007b859a933f8fb7bbc505c9c0a06eef5813ab909d9f09f9656c2d53505
GET /api/player.js HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 19:35:19 GMT
Content-Type: application/javascript;charset=utf-8
Content-Length: 6272
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: default-src 'none'; style-src 'unsafe-inline'
x-content-type-options: nosniff
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Wed, 01 Feb 2023 19:41:46 GMT
x-host: player-6b7bc96c5-qzzfm
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-3
x-backend-proxy: playproxy4
x-bapp-server: player-6b7bc96c5-qzzfm
Accept-Ranges: bytes
Age: 1413
X-Served-By: cache-bma1657-BMA
X-Cache: HIT
X-Cache-Hits: 1031
X-Timer: S1675280119.167331,VS0,VE0
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=SGo.mjDx.uoRQ_K9ZcP4XtPnyGqzHYPxaXrQRQyj37E-1675280119-0-AVxf250ida5nibis0G+WrtsdmAUtgnqEskyGq1ENS+gLC0Muwi3lIFWZZp9/Du1g75R4GGC6fwUaPyIoY7qJEh8=; path=/; expires=Wed, 01-Feb-23 20:05:19 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 792d2128b9e20afe-OSL
embed.formhq.net/v1/base.js
172.66.43.197200 OK 3.6 kB URL HTTP/2 embed.formhq.net/v1/base.js
IP 172.66.43.197:0
File type ASCII text, with very long lines (6384), with no line terminators
Hash a867ec2dc93686cddd0b416fa614c3e8
f494284831f87211164c6c0f73a756f0822a7b4c
edee6cb6b5d891fbfa7cee593328c8c9b04591f997f6ea37084e08a22d0a3556
GET /v1/base.js HTTP/1.1
Host: embed.formhq.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:18 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
cf-polished: origSize=6385
etag: W/"63612f3e-18f1"
last-modified: Tue, 01 Nov 2022 14:37:50 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: max-age=1800
cf-cache-status: HIT
age: 5056
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BP%2BgB%2FZ6tL2MxIUJhgJjWYQ3xVfsQHc7DSTl%2B0zpUuN2SRn%2F8FNzJumgdrfyDYmB%2BKmNeJeLFxTfNoYnYxfWhj9TNIjcEXDphJixD8GGsceSw%2F1cH8cylbSkfe0RBlutaM7n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792d2123bd7b1c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 12 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 289231d0e5757acc05e84b359924fe17
1acd227f83b46faf7b5989672f7fdc468ed9d1be
4c8c539da00429778e556067e7c246b70fc337a98d0411ec929a1d5003c0c06e
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11563
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3C6BE3DA22824208915C21E2901F2AF4 Ref B: OSL30EDGE0113 Ref C: 2023-02-01T19:35:19Z
date: Wed, 01 Feb 2023 19:35:18 GMT
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Nvbmxy1IDKEr2LZKxmnq9UACuuNr+28YGS+G/QmovvsZtarNFpycKxeal93EzricL4JfgkyrRs6gkLoBcxkffQ==
content-length: 27843
x-fb-trip-id: 1679558926
date: Wed, 01 Feb 2023 19:35:19 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.optimizely.com/js/21287320532.js
95.101.172.170200 OK 96 kB URL HTTP/2 cdn.optimizely.com/js/21287320532.js
IP 95.101.172.170:0
File type ASCII text, with very long lines (65468)
Hash ade621005e7334955bc9af95a2108092
b0a8a64bfaf043aee594cd8dab295a9f0302a073
36ca32f177e1404cf8c84af1429016f449406379332ddb27c7ec1891488c29ab
GET /js/21287320532.js HTTP/1.1
Host: cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: at78XnMoUc2HxF8KhMlOFe76Ae/M1Rc/rgV8XTAfZqe+DCAg2Dy29E8d09ert2x/mUMjjxlTnpZ5IIiTgQEhyw==
x-amz-request-id: 118Q31Y14459RAET
x-amz-replication-status: COMPLETED
last-modified: Wed, 01 Feb 2023 16:37:20 GMT
etag: "ade621005e7334955bc9af95a2108092"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 1019
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: cYa_A40ORCNDqTufEuJO6_0vcBtOTwRS
accept-ranges: bytes
content-type: text/javascript; charset=utf-8
server: AmazonS3
content-length: 96525
vary: Accept-Encoding
cache-control: max-age=120
date: Wed, 01 Feb 2023 19:35:19 GMT
server-timing: cdn-cache; desc=REVALIDATE, edge; dur=9, origin; dur=104, cdn;desc="AkamaiION";dur=0,rtt;desc="7";dur=0,cdnip;desc="95.101.172.170";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.7 kB IP 192.124.249.36:0
Hash 7e25f6fb89e5e90a0332072faad895a0
da862e41af5f2ad287c45ba85dabbbd034b01b43
b7e8aaa4b720c9846e65216dad5d59af4671e151c2db9ca1e81d490f23f537a3
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 68
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Feb 2023 19:35:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1731
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 31 Jan 2023 20:22:17 GMT
Expires: Wed, 01 Feb 2023 20:22:17 GMT
ETag: "da862e41af5f2ad287c45ba85dabbbd034b01b43"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d92ce0742316335537cdeefcc5c7dbc2
14cf725f690e21a8c8a297e4fc6fcb0e7e5289d4
922c9bbeaaf67dfde97d85bf7c059583a0ebbe1de2c868945de720985583170c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2380
Cache-Control: max-age=111921
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:19 GMT
Etag: "63d9c7dc-1d7"
Expires: Fri, 03 Feb 2023 02:40:40 GMT
Last-Modified: Wed, 01 Feb 2023 02:01:00 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5910
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:19 GMT
Last-Modified: Wed, 01 Feb 2023 17:56:49 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash cb58e40d2d8bf744cfbb9ba9d4027316
e03faa9f828cf6d5838eda52f91e005430d9b8fa
313d54ecbf88fa17a082e46674866250dd7e3f0c083a23607dfc9ca0d459269b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 19:35:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 05:58:12 GMT
Expires: Wed, 08 Feb 2023 05:58:11 GMT
Etag: "e03faa9f828cf6d5838eda52f91e005430d9b8fa"
Cache-Control: max-age=555171,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792d2129cfc8b50c-OSL
vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
54.230.111.85200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
IP 54.230.111.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 8665e233ef6caaf010ca89793f27b6f8
5c593fa5f33e55b3081308b43e6e801b56c047f7
435a3ca7c1c49cbfac193647d056e46217e5c3f9c65c354974ad7acdfb8925ac
GET /box-2722367854ce9702c28ea74c51e2a23f.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "8665e233ef6caaf010ca89793f27b6f8"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: llyXbpJV2cTnSVuY8lPoaZn5koeg1mTWyxyr-yC5ZUCcplyi403fBA==
age: 185353
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/9.4.1.63.js
151.101.194.217200 OK 2.5 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/9.4.1.63.js
IP 151.101.194.217:0
File type ASCII text, with very long lines (7586), with no line terminators
Hash 753c80a2a5c5b63d6d426589b7ae7d25
e686553aa79feaaf4d16da9798ae3741ad6450df
f93e0d462172a58c8cf9183a28b916b2c31cd5fcde1e6766186f83586bd7995a
GET /mutiny-client/9.4.1.63.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: bF/Qaq1M2sjc0ecA8fNeSAMgaTeFBPnmPgscL4dLBWBpiI1DhhKJej+4+GXUbYr9x9rMOkOwppk=
x-amz-request-id: J6PPS7QJM2EHYX5H
last-modified: Fri, 27 Jan 2023 13:42:07 GMT
etag: "3536475445add1537c787e8077197cc9"
cache-control: max-age=31536000
x-amz-version-id: 1QB_RKhUz6i7WHsC67IgNIrexHNrB0J3
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 01 Feb 2023 19:35:19 GMT
via: 1.1 varnish
age: 430967
x-served-by: cache-bma1678-BMA
x-cache: HIT
x-cache-hits: 1077
x-timer: S1675280119.473056,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2493
X-Firefox-Spdy: h2
client.mutinycdn.com/mutiny-client/13.4.1.63.js
151.101.194.217200 OK 2.6 kB URL HTTP/2 client.mutinycdn.com/mutiny-client/13.4.1.63.js
IP 151.101.194.217:0
File type ASCII text, with very long lines (7398), with no line terminators
Hash 735dd2e3ad510b0ca93cefd2749f36d2
1ecb058faeb7fb90a6af846fd53bac48ae172c6d
51327b5ec9c8ed907dabd673c89e841657eb1e4e1dc3beebc1a6019a2b934edc
GET /mutiny-client/13.4.1.63.js HTTP/1.1
Host: client.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 9drmxBiiVq4WwQ9oYo8RoUY7hElK+1yV0oT23N/iM8NvxeC6eUQQKUOsjZXbln9D1VvBBGbW7YE=
x-amz-request-id: J6PQ9H35BMYB5VKZ
last-modified: Fri, 27 Jan 2023 13:42:07 GMT
etag: "f01fea330b47d3b8f97c22a11a6aeefb"
cache-control: max-age=31536000
x-amz-version-id: D0iTRlUBJE_uE32o4uoI4WpjFwqdDvKY
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 01 Feb 2023 19:35:19 GMT
via: 1.1 varnish
age: 430967
x-served-by: cache-bma1678-BMA
x-cache: HIT
x-cache-hits: 1079
x-timer: S1675280119.473220,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2550
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2
104.18.23.52200 OK 25 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 24800, version 331.-31196\012- data
Hash 4abe94f1746789f39110d3ebac7ebd96
bdc3b41f3cc3e5e3e87ca020eeddc2b288f0dd91
299dc8e16be2ab2214e279b5536efd387d17fd3d364f397ce9f1fed602384fea
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:19 GMT
content-type: font/woff2
content-length: 24800
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae357-60e0"
last-modified: Wed, 04 Aug 2021 18:58:31 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 185
accept-ranges: bytes
server: cloudflare
cf-ray: 792d212afe02fabc-OSL
X-Firefox-Spdy: h2
blackbaud.demdex.net/dest5.html?d_nsid=0
52.31.194.68200 OK 2.8 kB URL HTTP/1.1 blackbaud.demdex.net/dest5.html?d_nsid=0
IP 52.31.194.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: blackbaud.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Wed, 1 Feb 2023 19:35:19 GMT
DCS: dcs-prod-irl1-2-v045-0c67d0b74.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Fri, 28 Oct 2022 11:22:23 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: NZYu3cEfSyk=
Content-Length: 2791
Connection: keep-alive
ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2
104.18.23.52200 OK 20 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2
IP 104.18.23.52:0
File type Web Open Font Format (Version 2), TrueType, length 19784, version 331.-31196\012- data
Hash c7682b8035fc1d1672d6455631813794
9e2955e5e55b3073e229c218724406425862d4a1
1b50aa1d36ea249991fb44f8f6ad2aa74fe360df9cc04c564b5edf3b053b739c
GET /releases/v5.15.4/webfonts/pro-fa-solid-900-5.0.0.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:19 GMT
content-type: font/woff2
content-length: 19784
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "610ae35f-4d48"
last-modified: Wed, 04 Aug 2021 18:58:39 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 792d212b1e24fabc-OSL
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-W25X31S350>m=2oe1u0&_p=306186721&cid=997339893.1675280142&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&sid=1675280141&sct=1&seg=0&dt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.21
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-W25X31S350>m=2oe1u0&_p=306186721&cid=997339893.1675280142&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&sid=1675280141&sct=1&seg=0&dt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.21
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-W25X31S350>m=2oe1u0&_p=306186721&cid=997339893.1675280142&ul=en-us&sr=1280x1024&uaW=1&_s=1&cu=USD&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Futm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&sid=1675280141&sct=1&seg=0&dt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&en=page_view&_fv=1&_nsi=1&_ss=1&epn.vp_to_body_height_ratio=0.21 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://everfi.com
date: Wed, 01 Feb 2023 19:35:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash df42e3fbb85f2436a75f04c68985af5c
0dd35537c0646597fd5c0504361828c81e891c17
c1aefb5c5e658ea77cd51cb76882aea89fac33f7dce5ac6f5625722f63fe6b2d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=95486
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:19 GMT
Etag: "63d990f5-1d7"
Expires: Thu, 02 Feb 2023 22:06:45 GMT
Last-Modified: Tue, 31 Jan 2023 22:06:45 GMT
Server: nginx
Content-Length: 471
metrics.blackbaud.com/b/ss/blackbaud-global-prod/1/JS-2.22.3/s87623719574156?AQB=1&ndh=1&pf=1&t=1%2F1%2F2023%2019%3A35%3A42%203%200&sdid=703DE62CA7F01DA7-6A317879C69143C2&mid=63517968912569839451948888876541382628&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12Opt_Feb1_L_SaveUp_3things_TP1%7CMarketingCloud%7Cemail%7Cno%20keyword%7Chttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&events=event12%3D1961&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&l1=vertical%3Ak-12&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&v4=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&v5=not%20available&v6=en-US&v7=courses&v9=1961&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1
13.37.25.97200 OK 43 B URL HTTP/2 metrics.blackbaud.com/b/ss/blackbaud-global-prod/1/JS-2.22.3/s87623719574156?AQB=1&ndh=1&pf=1&t=1%2F1%2F2023%2019%3A35%3A42%203%200&sdid=703DE62CA7F01DA7-6A317879C69143C2&mid=63517968912569839451948888876541382628&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12Opt_Feb1_L_SaveUp_3things_TP1%7CMarketingCloud%7Cemail%7Cno%20keyword%7Chttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&events=event12%3D1961&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&l1=vertical%3Ak-12&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&v4=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&v5=not%20available&v6=en-US&v7=courses&v9=1961&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1
IP 13.37.25.97:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/blackbaud-global-prod/1/JS-2.22.3/s87623719574156?AQB=1&ndh=1&pf=1&t=1%2F1%2F2023%2019%3A35%3A42%203%200&sdid=703DE62CA7F01DA7-6A317879C69143C2&mid=63517968912569839451948888876541382628&aamlh=6&ce=UTF-8&cdp=2&pageName=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&g=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&c.&getPercentPageViewed=5.0.1&apl=4.0&.c&cc=USD&ch=courses&server=everfi.com&v0=K12Opt_Feb1_L_SaveUp_3things_TP1%7CMarketingCloud%7Cemail%7Cno%20keyword%7Chttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&events=event12%3D1961&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=courses&l1=vertical%3Ak-12&c2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&v2=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&l2=default&v3=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&v4=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&v5=not%20available&v6=en-US&v7=courses&v9=1961&v11=anonymous&v13=D%3Dmid&v30=courses&v31=courses%3Ak-12&v35=everfi%3Acourses%3Ak-12%3Asaveup-saving-money-for-the-future&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=42915A04609D99C00A495C11%40AdobeOrg&AQE=1 HTTP/1.1
Host: metrics.blackbaud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Wed, 01 Feb 2023 19:35:19 GMT
expires: Tue, 31 Jan 2023 19:35:19 GMT
last-modified: Thu, 02 Feb 2023 19:35:19 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3597636662305554432-4619742682501196908
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
obs.healthroundprince.com/mon
35.172.245.152200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP 35.172.245.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1736
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=34913b9ca9905d9413fd0ff8fac3ae2f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 01 Feb 2023 19:35:19 GMT
content-length: 0
X-Firefox-Spdy: h2
user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=true&session_token=2c784e5a-a16d-4da9-8214-ef65061f2400&token=7b73f9362c0ba1bd&visitor_token=9cb8c261-dd75-481e-b839-7d398e0a1b44
151.101.130.217200 OK 357 B URL HTTP/2 user-data.mutinycdn.com/personalize/user_data/16919262ebbbde25.json?async=true&session_token=2c784e5a-a16d-4da9-8214-ef65061f2400&token=7b73f9362c0ba1bd&visitor_token=9cb8c261-dd75-481e-b839-7d398e0a1b44
IP 151.101.130.217:0
File type JSON data\012- , ASCII text, with very long lines (482), with no line terminators
Hash ac9c6685671eb0a7a208eff2a311294a
860500dca8a23abbab22babea58ba4371689541b
affb793e8752d49f25d3d236cebeb0b0986f56e5ead54b36bc699327ac073578
GET /personalize/user_data/16919262ebbbde25.json?async=true&session_token=2c784e5a-a16d-4da9-8214-ef65061f2400&token=7b73f9362c0ba1bd&visitor_token=9cb8c261-dd75-481e-b839-7d398e0a1b44 HTTP/1.1
Host: user-data.mutinycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: x-cache, x-cache-hits, age
access-control-max-age: 7200
cache-control: no-store
pragma: no-cache
x-visitor-token: 9cb8c261-dd75-481e-b839-7d398e0a1b44
x-async-user-data: true
etag: W/"6dc5ec7904736f20e07c0904d98f73a5"
x-request-id: 633e9a76-7e83-4f45-84e4-6dbac4a2756e
x-runtime: 0.211716
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
date: Wed, 01 Feb 2023 19:35:20 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1653-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675280119.466120,VS0,VE586
vary: X-Visitor-Token,X-Profile-Token,Fastly-Client-Ip,X-Async-User-Data,Origin,Accept-Encoding
x-connection-speed: broadband
x-continent-code: EU
x-country-code: NO
x-edge-datacenter: BMA
x-edge-region: EU-East
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 357
X-Firefox-Spdy: h2
munchkin.marketo.net/162/munchkin.js
88.221.99.189200 OK 4.7 kB URL HTTP/1.1 munchkin.marketo.net/162/munchkin.js
IP 88.221.99.189:0
File type ASCII text, with very long lines (606)
Hash 3e9baed982956735f6e0a0e756d97ed9
9223be6a494a10959101a7942419df7b05b84d73
930a508ed0ea6b4861d19c0738360182514010913c4ebfe9352064ae5006f8a1
GET /162/munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "75daf56f6191efe42577301908659c29:1656637152.894482"
Last-Modified: Fri, 01 Jul 2022 00:59:12 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=8640000
Expires: Fri, 12 May 2023 19:35:20 GMT
Date: Wed, 01 Feb 2023 19:35:20 GMT
Content-Length: 4677
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
bat.bing.com/action/0?ti=25002257&tm=gtm002&Ver=2&mid=206123bc-ded3-4394-b57e-899776eb09f8&sid=9d3261c0a26711ed967a591ea160d9b9&vid=9d324890a26711ed8514b18bbff71450&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&r=<=2275&evt=pageLoad&sv=1&rn=525581
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25002257&tm=gtm002&Ver=2&mid=206123bc-ded3-4394-b57e-899776eb09f8&sid=9d3261c0a26711ed967a591ea160d9b9&vid=9d324890a26711ed8514b18bbff71450&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&r=<=2275&evt=pageLoad&sv=1&rn=525581
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25002257&tm=gtm002&Ver=2&mid=206123bc-ded3-4394-b57e-899776eb09f8&sid=9d3261c0a26711ed967a591ea160d9b9&vid=9d324890a26711ed8514b18bbff71450&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&r=<=2275&evt=pageLoad&sv=1&rn=525581 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=090B1BB1D4116C041674091AD5E46D83; domain=.bing.com; expires=Mon, 26-Feb-2024 19:35:20 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F6A7698D1E974C558670F21C3D99C4C0 Ref B: OSL30EDGE0113 Ref C: 2023-02-01T19:35:20Z
date: Wed, 01 Feb 2023 19:35:19 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=25022015&tm=gtm002&Ver=2&mid=08f87657-236f-407b-a72c-a2f677ef5d33&sid=9d3261c0a26711ed967a591ea160d9b9&vid=9d324890a26711ed8514b18bbff71450&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&r=<=2275&evt=pageLoad&sv=1&rn=675471
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25022015&tm=gtm002&Ver=2&mid=08f87657-236f-407b-a72c-a2f677ef5d33&sid=9d3261c0a26711ed967a591ea160d9b9&vid=9d324890a26711ed8514b18bbff71450&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&r=<=2275&evt=pageLoad&sv=1&rn=675471
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25022015&tm=gtm002&Ver=2&mid=08f87657-236f-407b-a72c-a2f677ef5d33&sid=9d3261c0a26711ed967a591ea160d9b9&vid=9d324890a26711ed8514b18bbff71450&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&p=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&r=<=2275&evt=pageLoad&sv=1&rn=675471 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1B0FC6B31A2C63A21CA2D4181BD962F4; domain=.bing.com; expires=Mon, 26-Feb-2024 19:35:20 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2E7B4C2B71D24C66930C576C2F099775 Ref B: OSL30EDGE0113 Ref C: 2023-02-01T19:35:20Z
date: Wed, 01 Feb 2023 19:35:19 GMT
X-Firefox-Spdy: h2
script.hotjar.com/modules.4b160a4831adaf5337e6.js
54.230.111.73200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.4b160a4831adaf5337e6.js
IP 54.230.111.73:0
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 3315b6999637291711ab85ba678211fa
d1bba723aa49e6276dfdb0f1313a9bf0b64be153
b3bd4f702044ae91c9227ce2d5c8411d3fec3abb82c9c1b7a9b69d2011c520e5
GET /modules.4b160a4831adaf5337e6.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68316
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "3315b6999637291711ab85ba678211fa"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yS6Bm0xW3lUpTLLPR5rVbRsZ8pM5MF_hTNcqe7Q1qHIyPxVrLCmFKw==
age: 185354
X-Firefox-Spdy: h2
bat.bing.com/p/action/25002257.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25002257.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25002257.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C7CA716D3F344327A17319F41D804CBB Ref B: OSL30EDGE0113 Ref C: 2023-02-01T19:35:20Z
date: Wed, 01 Feb 2023 19:35:19 GMT
X-Firefox-Spdy: h2
my.hellobar.com/edcdff19ac78bb7a167b2e3617e196453f5eaefa.js
172.67.43.233200 OK 29 kB URL HTTP/2 my.hellobar.com/edcdff19ac78bb7a167b2e3617e196453f5eaefa.js
IP 172.67.43.233:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 7caf7b73ac6c05c82fae10990082a655
676ca0889e3536f164cc9d4bfb77aeefabfb7723
18d53140a8b4249c5d4789f57e1fc996ac28f37137b3c9ef53791419ddbe2675
GET /edcdff19ac78bb7a167b2e3617e196453f5eaefa.js HTTP/1.1
Host: my.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:18 GMT
content-type: text/javascript
cache-control: max-age=86400, must-revalidate, proxy-revalidate, s-maxage=10
cf-bgj: minify
etag: W/"acf3237ca051a956e03771c98636d066"
last-modified: Wed, 01 Feb 2023 13:46:23 GMT
x-amz-id-2: sbPA9BQLZCsfe3D1F+9HxBOuDenNi9r1H0xYuK5yKeSpVv0YdQXdJt5yy+fFYmRH0NHHndYtHy8=
x-amz-request-id: PZQHCBJC0Q83BW5H
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 792d2122f97eb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=997339893.1675280142&shpt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%22997339893.1675280142%22%2C%22shpt%22%3A%22SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675280141.1%22%2C%22dcm_gid%22%3A%222016726157.1675280142%22%2C%22ga_utm_campaign%22%3A%22K12Opt_Feb1_L_SaveUp_3things_TP1%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675280141.1&dcm_gid=2016726157.1675280142&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=79390473899739900term%3Dvalue
35.81.173.170200 OK 1.2 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=997339893.1675280142&shpt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%22997339893.1675280142%22%2C%22shpt%22%3A%22SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675280141.1%22%2C%22dcm_gid%22%3A%222016726157.1675280142%22%2C%22ga_utm_campaign%22%3A%22K12Opt_Feb1_L_SaveUp_3things_TP1%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675280141.1&dcm_gid=2016726157.1675280142&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=79390473899739900term%3Dvalue
IP 35.81.173.170:0
File type ASCII text, with very long lines (2576)
Hash 2631fefb53c7c787138d8cfcbfe84f09
9ce6b93f25de290f6ac129f6ba93144238472ae5
2b8cdb0909775fa6a44e346788e5c0675241f5f47151dd9d44bef203f14d0986
GET /st?ga_tracking_id=UA-68235542-1&ga_client_id=997339893.1675280142&shpt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%22997339893.1675280142%22%2C%22shpt%22%3A%22SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675280141.1%22%2C%22dcm_gid%22%3A%222016726157.1675280142%22%2C%22ga_utm_campaign%22%3A%22K12Opt_Feb1_L_SaveUp_3things_TP1%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675280141.1&dcm_gid=2016726157.1675280142&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=79390473899739900term%3Dvalue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 01 Feb 2023 19:35:20 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=902bbc74-a267-11ed-9696-37bb7bf3328a;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 1
server: istio-envoy
connection: close
transfer-encoding: chunked
px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675280141972&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675280141972&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=285700&time=1675280141972&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675280141972%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12Opt_Feb1_L_SaveUp_3things_TP1%2526utm_content%253Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKBxzyFYq-fOAAAAYYOefnx1_zTaJAVCo87ZnENbKWsAwsmICh4bvwFdQs9SUMUpS-pd8eFv1aqHA; Max-Age=2592000; Expires=Fri, 03 Mar 2023 19:35:20 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQIu0Ab3Xq1uMgAAAYYOefnxLbvsb-zqwIB8KuFglHWBh1AGbJUFwpWBly2wvXp1haoWwl_uyRwHQJqFTmqH1w; Max-Age=2592000; Expires=Fri, 03 Mar 2023 19:35:20 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&b1d60fe7-2689-4c80-8eeb-1eee611a84c9"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 01-Feb-2024 19:35:20 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2453:u=1:x=1:i=1675280120:t=1675366520:v=2:sig=AQH7d3dsgCVixwQaKkZ_KZXPBsKjcTJ8"; Expires=Thu, 02 Feb 2023 19:35:20 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXzqIx4NaPYwGmgT8P2ow==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A5BE7847623949EAA3A981B8A64DABCD Ref B: OSL30EDGE0520 Ref C: 2023-02-01T19:35:20Z
date: Wed, 01 Feb 2023 19:35:19 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ct.pinterest.com/user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675280142988&dep=5%2CEVENT_TAGS_ABSENT
23.38.200.197200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675280142988&dep=5%2CEVENT_TAGS_ABSENT
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (534), with no line terminators
Hash 6e63eb6af30db692485439f6687cfd3e
8b369c1b024c90a5646b8f7d36ff73e71a949bcd
a35f431d3eec1e88e5356fd6485190f4c4213276c1e046b072bfedb4f00dab19
GET /user/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675280142988&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU5URXlZakl3TVRVdE9UWm1OQzAwTnpSaExUZ3lOVE10TVRRelptSm1OVGd3TlRnMw
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://everfi.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 7724628009079060
date: Wed, 01 Feb 2023 19:35:20 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675280120.4113569d
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675280142989
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675280142989
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675280142989 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1562143450442630
date: Wed, 01 Feb 2023 19:35:20 GMT
akamai-grn: 0.274f2417.1675280120.4113570d
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675280142986&dep=2%2CPAGE_LOAD
23.38.200.197200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675280142986&dep=2%2CPAGE_LOAD
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (534), with no line terminators
Hash 6e63eb6af30db692485439f6687cfd3e
8b369c1b024c90a5646b8f7d36ff73e71a949bcd
a35f431d3eec1e88e5356fd6485190f4c4213276c1e046b072bfedb4f00dab19
GET /user/?tid=2613901474523&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1675280142986&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU9USTRaV1F5WTJVdFptVmtPQzAwT1RFMkxUazJORFF0Wm1NNVlUWTVNbVE0WkRsaw
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://everfi.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 8391993072498359
date: Wed, 01 Feb 2023 19:35:20 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675280120.41135582
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-68235542-1&cid=997339893.1675280142&jid=1921091167&gjid=318286949&_gid=2016726157.1675280142&_u=YADAAUAAAAAAACgEK~&z=1334260747
64.233.162.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-68235542-1&cid=997339893.1675280142&jid=1921091167&gjid=318286949&_gid=2016726157.1675280142&_u=YADAAUAAAAAAACgEK~&z=1334260747
IP 64.233.162.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-68235542-1&cid=997339893.1675280142&jid=1921091167&gjid=318286949&_gid=2016726157.1675280142&_u=YADAAUAAAAAAACgEK~&z=1334260747 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://everfi.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 01 Feb 2023 19:35:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 19:35:20 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=583054,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792d212f78c7b50c-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 688d5623b44631aa4488a00a2f0839bf
a61b989824aad6e1f8590df52fc58b99176277d8
a8578db726538e2f38f3217359398291f2776912e55b8c23b214449a9d92a3e9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=153182
Date: Wed, 01 Feb 2023 19:35:20 GMT
Etag: "63da709c-1d7"
Expires: Fri, 03 Feb 2023 14:08:22 GMT
Last-Modified: Wed, 01 Feb 2023 14:01:00 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6CVi30SPc8gW5Xp7uDDXNvWPZjz-ws2AD1svLNJjdD4DtxP3x9A9vQ==
Age: 442
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash d984fbc1b59b3bb6312f71ef07ffd00c
ff94c94cabcfa90b6e48170ddc907ab252f988de
c72473fc5a7adc14d951de3de715d82b39d842d6a899f471e9152f975ad49fca
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146185
Date: Wed, 01 Feb 2023 19:35:20 GMT
Etag: "63da4c0d-1d7"
Expires: Fri, 03 Feb 2023 12:11:45 GMT
Last-Modified: Wed, 01 Feb 2023 11:25:01 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QU4Ke4JANtfUKEGHjpevWVn0JubC9HhgvD3LS5bMCY0BtL-3pXgwUw==
Age: 2804
www.facebook.com/tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&rl=&if=false&ts=1675280143142&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&fbp=fb.1.1675280143141.1209245959&it=1675280142071&coo=false&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&rl=&if=false&ts=1675280143142&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&fbp=fb.1.1675280143141.1209245959&it=1675280142071&coo=false&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=226704524738512&ev=PageView&dl=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&rl=&if=false&ts=1675280143142&sw=1280&sh=1024&v=2.9.95&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=29&fbp=fb.1.1675280143141.1209245959&it=1675280142071&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 01 Feb 2023 19:35:20 GMT
X-Firefox-Spdy: h2
id.rlcdn.com/464526.gif
35.244.174.68451 Unavailable For Legal Reasons 0 B IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /464526.gif HTTP/1.1
Host: id.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Wed, 01 Feb 2023 19:35:20 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
match.prod.bidr.io/cookie-sync/demandbase
54.217.17.172303 See Other 0 B URL HTTP/1.1 match.prod.bidr.io/cookie-sync/demandbase
IP 54.217.17.172:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync/demandbase HTTP/1.1
Host: match.prod.bidr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Wed, 01 Feb 2023 19:35:20 GMT
location: https://match.prod.bidr.io/cookie-sync/demandbase?_bee_ppp=1
Server: gunicorn
set-cookie: checkForPermission=ok; Domain=bidr.io; expires=Wed, 01 Feb 2023 19:45:20 GMT; Path=/; SameSite=None; Secure
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tag.demandbase.com/89bf928e3008d78e.min.js
54.230.111.88200 OK 18 kB URL HTTP/2 tag.demandbase.com/89bf928e3008d78e.min.js
IP 54.230.111.88:0
File type ASCII text, with very long lines (31940)
Hash 31b063d30f000c530fabc5dc8f8ae6d2
44dcd7c08852293b37ab46f09d0fe1e7fc8598eb
972c17a0e05b7a3bf7c7f9200d1c2db41fa156f9ef01fbcfa25aae73a56de1ac
GET /89bf928e3008d78e.min.js HTTP/1.1
Host: tag.demandbase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Thu, 19 Jan 2023 13:25:04 GMT
x-amz-version-id: ahOAKTBGm9q9mczOXGCMjSddE5423kHo
server: AmazonS3
content-encoding: gzip
date: Wed, 01 Feb 2023 19:21:10 GMT
cache-control: public, max-age=3600
etag: W/"d0a5a21e27ee444ce67d582534bc4b66"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3GVMf6ugN2Nxw6gcZJNwVmZxdmNrobW1qg8CmYHusl36ApFD4TGQxg==
age: 850
strict-transport-security: max-age=63072000; includeSubDomains; preload
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 7919e07210cdfadfcf56b70ed1d7a4bf
374d4e28204ff80b0c9fdd382159083623a66bbd
d598c7fa291f25337f6acbaabbf89e52a8bddb48bfa96beb3d8f912441ed8198
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163323
Date: Wed, 01 Feb 2023 19:35:20 GMT
Etag: "63da845d-1d7"
Expires: Fri, 03 Feb 2023 16:57:23 GMT
Last-Modified: Wed, 01 Feb 2023 15:25:17 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: t1DUOCrou5k3NTeXdZzXLZrPJtD4ONWsMzvKe-EEsvq88qBYcOyHHw==
Age: 5526
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash d704c1f677f830e529e4b3ab12ce45b3
f55e98bd3fbb94054856bbc38ccb009557e0ba28
99959609462e65d289bf4b05da9cf6c3a227eb23ca6a11a9d6c59539dc37ecaf
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133221
Date: Wed, 01 Feb 2023 19:35:20 GMT
Etag: "63da1111-1d7"
Expires: Fri, 03 Feb 2023 08:35:41 GMT
Last-Modified: Wed, 01 Feb 2023 07:13:21 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EPAD1a4wp6txoOY2ZqB0klgPo_5xFNEw2E2noLEgPOR0hvDZNUMYgw==
Age: 4940
logx.optimizely.com/v1/events
54.173.216.48204 No Content 0 B URL HTTP/1.1 logx.optimizely.com/v1/events
IP 54.173.216.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/events HTTP/1.1
Host: logx.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 810
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://everfi.com
Access-Control-Expose-Headers: X-Results-Data-Source
Content-Type: text/plain
Date: Wed, 01 Feb 2023 19:35:20 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 0a1201b2-d4a9-4422-b71c-26e4b9a2c658
Connection: keep-alive
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675280141972%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12Opt_Feb1_L_SaveUp_3things_TP1%2526utm_content%253Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675280141972%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12Opt_Feb1_L_SaveUp_3things_TP1%2526utm_content%253Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D285700%26time%3D1675280141972%26url%3Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%253Fvertical%253DK12%2526utm_source%253DMarketingCloud%2526utm_medium%253Demail%2526utm_campaign%253DK12Opt_Feb1_L_SaveUp_3things_TP1%2526utm_content%253Dhttps%253A%252F%252Feverfi.com%252Fcourses%252Fk-12%252Fsaveup-saving-money-for-the-future%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675280141972&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&9a9795fa-ff6a-4318-8189-1f714b5001ca"; Domain=.linkedin.com; Expires=Thu, 01-Feb-2024 19:35:20 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2023020119352083bd7e0f-e0b1-496d-8e5d-255aff9dab18AQEq_dtwRZpYcUutl8HrEm_AFk0kbDGO"; Domain=.www.linkedin.com; Expires=Thu, 01-Feb-2024 19:35:20 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzUyODAxMjA7MjswMjG9qzsA1kYQNd7PGYaWGsZArmuYCVeoLqZ1k5U25vjduw==; Domain=.linkedin.com; Expires=Mon, 31 Jul 2023 19:35:20 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2453:u=1:x=1:i=1675280120:t=1675366520:v=2:sig=AQH7d3dsgCVixwQaKkZ_KZXPBsKjcTJ8"; Expires=Thu, 02 Feb 2023 19:35:20 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXzqIx8bCMy7Eu6JFavpQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: CF469D8605824AF7A655EA38BED18FFF Ref B: OSL30EDGE0520 Ref C: 2023-02-01T19:35:20Z
date: Wed, 01 Feb 2023 19:35:19 GMT
content-length: 0
X-Firefox-Spdy: h2
match.prod.bidr.io/cookie-sync/demandbase?_bee_ppp=1
54.217.17.172303 See Other 0 B URL HTTP/1.1 match.prod.bidr.io/cookie-sync/demandbase?_bee_ppp=1
IP 54.217.17.172:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync/demandbase?_bee_ppp=1 HTTP/1.1
Host: match.prod.bidr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Wed, 01 Feb 2023 19:35:20 GMT
location: https://segments.company-target.com/log?vendor=choca&user_id=
Server: gunicorn
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/ibs:dpid=411&dpuuid=Y9q__AAAAMlyywN-
54.246.217.115302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=Y9q__AAAAMlyywN-
IP 54.246.217.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=Y9q__AAAAMlyywN- HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-0314701ba.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y9q__AAAAMlyywN-
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=29513216679286062073402613458036544635; Max-Age=15552000; Expires=Mon, 31 Jul 2023 19:35:20 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: KBTlpGJJQ5U=
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 75eb10efcc70a0065654a8bc8786d33d
09c98dca8ee90c71ec8a8098c62565e1158f4558
2ec2789879ff8c2f64474eb8124d628a691ac033032e891ba8057e76215d12bd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6147
Cache-Control: max-age=154918
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:20 GMT
Etag: "63da611b-1d7"
Expires: Fri, 03 Feb 2023 14:37:18 GMT
Last-Modified: Wed, 01 Feb 2023 12:54:51 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675280143293&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675280143293&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=pagevisit&ed=%7B%22np%22%3A%22gtm%22%7D&tid=2613901474523&cb=1675280143293&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22np%22%3A%22gtm%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%22f6304d83%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1190883792416519
date: Wed, 01 Feb 2023 19:35:20 GMT
set-cookie: _pinterest_ct_ua="TWc9PSY3Ty91TWpIa0dIbE9vRW10d1k4NWFjcjJHdzVpbFUzT2NoNFpvUzhLekIrbGl2RUhxQkVPUk4wdC81dXMyeFVMckk2TnpibDcxeGNaWG56dnc0WDN5TXJPQk1jdEgvOUxnUFNYc2VyY0p5dz0mK1hBZkJwaHVaK1c2amFxcmRMNjc1TnZtWEp3PQ=="; Expires=Thu, 01 Feb 2024 19:35:20 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1675280120.41136100
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.linkedin.oribi.io/partner/285700/domain/everfi.com/token
54.230.111.78200 OK 533 B URL HTTP/2 cdn.linkedin.oribi.io/partner/285700/domain/everfi.com/token
IP 54.230.111.78:0
Hash 034e903d96ece29d552d83e12105f2db
f4a5b72fc7dfb4f7b8d22c5d954d9e49af1ba474
2bfc777575778b727a175a23dfa411b929ca618fb60bc169c7c88d5b88a68f49
GET /partner/285700/domain/everfi.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Wed, 01 Feb 2023 18:41:28 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: e7Jzb1WWk8Mgu86Vo5U004yV7etgw6kcerAH7nHNvxzlaC3JSVBlLw==
age: 3232
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=997339893.1675280142&jid=1921091167&_u=YADAAUAAAAAAACgEK~&z=1769655574
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=997339893.1675280142&jid=1921091167&_u=YADAAUAAAAAAACgEK~&z=1769655574
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=997339893.1675280142&jid=1921091167&_u=YADAAUAAAAAAACgEK~&z=1769655574 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:35:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y9q__AAAAMlyywN-
54.246.217.115200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y9q__AAAAMlyywN-
IP 54.246.217.115:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y9q__AAAAMlyywN- HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v045-0078c8bc4.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 6trHAvBjT5o=
Content-Length: 59
Connection: keep-alive
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=997339893.1675280142&jid=1921091167&_u=YADAAUAAAAAAACgEK~&z=1769655574
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=997339893.1675280142&jid=1921091167&_u=YADAAUAAAAAAACgEK~&z=1769655574
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-68235542-1&cid=997339893.1675280142&jid=1921091167&_u=YADAAUAAAAAAACgEK~&z=1769655574 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 19:35:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675280141972&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=285700&time=1675280141972&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=285700&time=1675280141972&url=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&a1aa1bfc-b100-47bf-812f-58eb0360f480"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 01-Feb-2024 19:35:20 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2425:u=1:x=1:i=1675280120:t=1675366520:v=2:sig=AQH5Laku1G-eJS3ul-gYqR2piV1Cfqo1"; Expires=Thu, 02 Feb 2023 19:35:20 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXzqIx/WTRNeiVNBYGMnQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: E595D492D5444EB7B60C47F75403B42D Ref B: OSL30EDGE0520 Ref C: 2023-02-01T19:35:20Z
date: Wed, 01 Feb 2023 19:35:20 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 19:35:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
segments.company-target.com/log?vendor=choca&user_id=
54.230.111.47303 See Other 0 B URL HTTP/1.1 segments.company-target.com/log?vendor=choca&user_id=
IP 54.230.111.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /log?vendor=choca&user_id= HTTP/1.1
Host: segments.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Content-Length: 0
Connection: keep-alive
Date: Wed, 01 Feb 2023 19:35:20 GMT
trace-id: d2d008e5df5323a3
Vary: Origin
Location: /validateCookie?vendor=choca&user_id=&verifyHash=2bcbbba5d945972e125a629d50078cae42be092
Set-Cookie: tuuid=127d428e-a7bd-4fe7-9022-7c6ebb22a398; Max-Age=63072000; Expires=Fri, 31 Jan 2025 19:35:20 GMT; SameSite=None; Path=/; Domain=.company-target.com; Secure; HTTPOnly
tuuid_lu=1675280120; Max-Age=63072000; Expires=Fri, 31 Jan 2025 19:35:20 GMT; SameSite=None; Path=/; Domain=.company-target.com; Secure; HTTPOnly
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ECKCtzeUUPbA1W7Ac5OraH8KCZivOhem8Us9TSdlgnohDp-Aw3Rpag==
obs.healthroundprince.com/mon
35.172.245.152200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP 35.172.245.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1763
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=34913b9ca9905d9413fd0ff8fac3ae2f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 01 Feb 2023 19:35:20 GMT
content-length: 0
X-Firefox-Spdy: h2
410-ycz-984.mktoresp.com/webevents/visitWebPage?_mchNc=1675280142993&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675280142992-91606&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=42915A04609D99C00A495C11%40AdobeOrg%3A6%3A63517968912569839451948888876541382628&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1__-__utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
192.28.147.68200 OK 28 B URL HTTP/1.1 410-ycz-984.mktoresp.com/webevents/visitWebPage?_mchNc=1675280142993&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675280142992-91606&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=42915A04609D99C00A495C11%40AdobeOrg%3A6%3A63517968912569839451948888876541382628&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1__-__utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
IP 192.28.147.68:0
File type ASCII text, with no line terminators
Hash 9dafc521bd59955b4986f0fc3777f77a
5a572b4730d4a2bce2fa35597a0993c649f26c74
e4e90a7b8bacdfe395361149a9fd42f9192b68bdf1497e4454d0ab4c4917f746
POST /webevents/visitWebPage?_mchNc=1675280142993&_mchCn=&_mchId=410-YCZ-984&_mchTk=_mch-everfi.com-1675280142992-91606&_mchHo=everfi.com&_mchPo=&_mchRu=%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=42915A04609D99C00A495C11%40AdobeOrg%3A6%3A63517968912569839451948888876541382628&_mchHa=&_mchRe=&_mchQp=vertical%3DK12__-__utm_source%3DMarketingCloud__-__utm_medium%3Demail__-__utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1__-__utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F HTTP/1.1
Host: 410-ycz-984.mktoresp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 01 Feb 2023 19:35:20 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Request-Id: cd0a3cce-b2c5-4a05-8159-b0ecc1a2abc9
Content-Encoding: gzip
Access-Control-Allow-Origin: *
gs.mountain.com/gs
52.12.117.226200 OK 144 B IP 52.12.117.226:0
File type ASCII text, with no line terminators
Hash 3bf2837940b8db3ef408d0e6ea2259b1
331f5e758c4e57b4a492045d638e79021af57b30
3c6e6e88ab26d1c949846952cd3fe2755d3ad44693f1d54bc833f60628d46908
GET /gs HTTP/1.1
Host: gs.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: guid=902bbc74-a267-11ed-9696-37bb7bf3328a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 01 Feb 2023 19:35:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 0
server: istio-envoy
connection: close
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 19f3074f6031e32d8cb42a41a60bd4d8
ab5789e754c4ede3f51ba3887b7632f06f2c1e32
7ece2083837d4501d95c458d36c07085aaa87ffd2bd61a0d070d8f16fcb56121
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=150456
Date: Wed, 01 Feb 2023 19:35:21 GMT
Etag: "63da4ef2-1d7"
Expires: Fri, 03 Feb 2023 13:22:57 GMT
Last-Modified: Wed, 01 Feb 2023 11:37:22 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QvJIYDHO4fwKH2AZH-6XCBp_xBf5xZHHDUbt0NBa0H5bqqVo4EuDfQ==
Age: 6335
segments.company-target.com/validateCookie?vendor=choca&user_id=&verifyHash=2bcbbba5d945972e125a629d50078cae42be092
54.230.111.47204 No Content 0 B URL HTTP/1.1 segments.company-target.com/validateCookie?vendor=choca&user_id=&verifyHash=2bcbbba5d945972e125a629d50078cae42be092
IP 54.230.111.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /validateCookie?vendor=choca&user_id=&verifyHash=2bcbbba5d945972e125a629d50078cae42be092 HTTP/1.1
Host: segments.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Connection: keep-alive
Date: Wed, 01 Feb 2023 19:35:21 GMT
trace-id: 8ebb0c68e99ded09
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MbSyg7ba2K9IXZuhgLCSejJ3Yc1yS7KulsMpJCeGeJRAYYGYYJ-7xg==
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 19:35:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=583053,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792d21314b97b50c-OSL
px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=997339893.1675280142&shpt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%22997339893.1675280142%22%2C%22shpt%22%3A%22SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675280141.1%22%2C%22dcm_gid%22%3A%222016726157.1675280142%22%2C%22ga_utm_campaign%22%3A%22K12Opt_Feb1_L_SaveUp_3things_TP1%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675280141.1&dcm_gid=2016726157.1675280142&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=1675280120247483&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675280120994
35.81.173.170200 OK 450 B URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-68235542-1&ga_client_id=997339893.1675280142&shpt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%22997339893.1675280142%22%2C%22shpt%22%3A%22SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675280141.1%22%2C%22dcm_gid%22%3A%222016726157.1675280142%22%2C%22ga_utm_campaign%22%3A%22K12Opt_Feb1_L_SaveUp_3things_TP1%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675280141.1&dcm_gid=2016726157.1675280142&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=1675280120247483&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675280120994
IP 35.81.173.170:0
File type ASCII text, with very long lines (1555), with no line terminators
Hash c19529dbd697e469e767194d6631106e
3a76c12cc04c085b983c2c6467046f38dfab2e6f
480b88f9edad2ca12053a09a8145c6de9a42c5369b8c585839abae56f03e0563
GET /st?ga_tracking_id=UA-68235542-1&ga_client_id=997339893.1675280142&shpt=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-68235542-1%22%2C%22ga_client_id%22%3A%22997339893.1675280142%22%2C%22shpt%22%3A%22SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI%22%2C%22dcm_cid%22%3A%221675280141.1%22%2C%22dcm_gid%22%3A%222016726157.1675280142%22%2C%22ga_utm_campaign%22%3A%22K12Opt_Feb1_L_SaveUp_3things_TP1%22%2C%22ga_utm_source%22%3A%22MarketingCloud%22%2C%22ga_utm_medium%22%3A%22email%22%2C%22ao%22%3A%7B%22s_ecid%22%3A%22MCMID%7Cundefined%22%7D%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A3%2C%22getTrackingIdByGA%22%3A%22OK%22%2C%22getClientIdByGA%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%2C%22ga_utm_campaign%22%3A%22OK%22%2C%22ga_utm_source%22%3A%22OK%22%2C%22ga_utm_medium%22%3A%22OK%22%7D%7D&dcm_cid=1675280141.1&dcm_gid=2016726157.1675280142&dxver=4.0.0&shaid=33973&plh=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&cb=1675280120247483&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1675280120994 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Cookie: guid=902bbc74-a267-11ed-9696-37bb7bf3328a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Wed, 01 Feb 2023 19:35:21 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt=H4sIAAAAAAAAAKtWKlOyMqoFAP609q8HAAAA;Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=902bbc74-a267-11ed-9696-37bb7bf3328a;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
x-envoy-upstream-service-time: 11
server: istio-envoy
connection: close
transfer-encoding: chunked
ct.pinterest.com/ct.html
23.38.200.197200 OK 323 B IP 23.38.200.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 6869327604567183
date: Wed, 01 Feb 2023 19:35:21 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675280121.41138769
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
obs.healthroundprince.com/mon
35.172.245.152200 OK 0 B URL HTTP/2 obs.healthroundprince.com/mon
IP 35.172.245.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.healthroundprince.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 1758
Origin: https://everfi.com
Connection: keep-alive
Cookie: cg_uuid=34913b9ca9905d9413fd0ff8fac3ae2f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://everfi.com
content-type: application/json
date: Wed, 01 Feb 2023 19:35:22 GMT
content-length: 0
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/17.22abfce0.chunk.css
54.230.111.20200 OK 24 B URL HTTP/2 js.driftt.com/core/assets/css/17.22abfce0.chunk.css
IP 54.230.111.20:0
File type ASCII text, with no line terminators
Hash 0c5dad92482d9a7c7c253510f5082465
534b458f99b4d0bb90c2cf2c4bb3703ef44a52bf
5dbaf0a4ff0f8ac8c1b67550eee84390b089604ffaf71183e417636c7e183ac5
GET /core/assets/css/17.22abfce0.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 24
server: istio-envoy
date: Thu, 26 Jan 2023 20:13:51 GMT
last-modified: Tue, 11 Oct 2022 19:09:27 GMT
etag: "0c5dad92482d9a7c7c253510f5082465"
x-amz-server-side-encryption: AES256
x-amz-version-id: eR0JFDWwyA3gsnd_XajqmmtDUbC85CBL
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WqUUURYv0GGUtoIxYGfqF6QHad98JxeF_fKiG0QN83zOioeXLeK70A==
age: 516092
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/52.b1edaf4a.chunk.js
54.230.111.20200 OK 11 kB URL HTTP/2 js.driftt.com/core/assets/js/52.b1edaf4a.chunk.js
IP 54.230.111.20:0
Hash fe6f82f551657428672247e82e3abf61
ad15b1caf9f2c9cd33e6966dfe759e9131477e9d
e08349c809f2d0df6196baf584fb2d74b1cadbcd946c0b025856aad3c2fca8f0
GET /core/assets/js/52.b1edaf4a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"cd29b9bc973e48a7fcd0ee7153bdf03b"
x-amz-server-side-encryption: AES256
x-amz-version-id: TtzAkuiFg5ajpar.KJembGW97mIyyYtK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7mysPk7jt_j9mPHnbuiCINLgt3TEhPxHJDTR0_X9tLQtNX2yPnlqIw==
age: 439827
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2584703/visit-data?sv=7
54.155.11.181200 OK 16 kB URL HTTP/2 in.hotjar.com/api/v2/client/sites/2584703/visit-data?sv=7
IP 54.155.11.181:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 57afca53ba323e6b9240b2290d39dcd5
3b994594b142ca42ed71d31f57dc635b47cc9173
a328b1a7bbc1a1c43342d1319072f15d809c2f8961fec50c932d6558cb1d71ed
POST /api/v2/client/sites/2584703/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain; charset=UTF-8
Content-Length: 130
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:20 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/17.87ab68ae.chunk.js
54.230.111.20200 OK 31 kB URL HTTP/2 js.driftt.com/core/assets/js/17.87ab68ae.chunk.js
IP 54.230.111.20:0
Hash 8de0cfb49ba9f7b79d0d3dfbc6a48d1a
b19e5b1ef794308089115cc582f625b685d614bf
5915a355d0e2815c8c3ab915b9d912a2dfaf11030b407fcf9fa9c61312229cfa
GET /core/assets/js/17.87ab68ae.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"7224903e471d8c7e76d036a17509bef9"
x-amz-server-side-encryption: AES256
x-amz-version-id: cPiu7YYbRPUjAv2cw_41I39g00KKNZYL
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 14
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uL-BqbgtY9uNemCNzANS6IeIxWhK1mrzj0_AaiPeYkoVwGKfXuapyg==
age: 439826
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 7927c4db49b9f51ce8d1750ead74ac67
b4d08d26393baa9a1c3522e90b3c839c2e390311
05da356fd22df9eb3f702341540acca0a3cacaf30d81639dff55a298fde9cae4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=153882
Date: Wed, 01 Feb 2023 19:35:24 GMT
Etag: "63da71f3-1d7"
Expires: Fri, 03 Feb 2023 14:20:06 GMT
Last-Modified: Wed, 01 Feb 2023 14:06:43 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: j8kIG7UUFqJdk0Hwt3CH6Ai81p6e7WgXc0gfh8rgDYg0mnBm-YQpRw==
Age: 803
js.driftt.com/include/1675280400000/ebs64edsgr5y.js
54.230.111.20200 OK 65 kB URL HTTP/2 js.driftt.com/include/1675280400000/ebs64edsgr5y.js
IP 54.230.111.20:0
Hash 277b0f230940f5db53388c97ff9ee644
3a5b9965cce4a5d29286dbb18fb8c691957c95be
79e4a49ec4fca1a929cad8a585c1e73a4bbf73a4fb3b08791bd5382bb0a3b5a4
GET /include/1675280400000/ebs64edsgr5y.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Wed, 01 Feb 2023 19:35:22 GMT
last-modified: Tue, 31 Jan 2023 18:43:13 GMT
etag: W/"63ff993f22ce13355d40da3088706ff6"
x-amz-server-side-encryption: AES256
x-amz-version-id: F.Y7g1xqB6b_NlCbAKln3HULJUN1qWys
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache
x-envoy-upstream-service-time: 23
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9abbM1ddFuE1j8Yww-uhA5BEb9CZ5m822wpfZpgBaojGg4tAEkLE6w==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/25.22647a55.chunk.js
54.230.111.20200 OK 23 kB URL HTTP/2 js.driftt.com/core/assets/js/25.22647a55.chunk.js
IP 54.230.111.20:0
Hash 9882f2702b9ba40d98e34a55d3cce43e
46b216cf28f8986f4c807763dd2315c8b40fc5bb
ba146f1b2ebf7c4cb12994f864da868a10db6de84fd57a675a998c96f479a127
GET /core/assets/js/25.22647a55.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"2ce6c446f71a395ff41647c9ba4b9c19"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3Dq5XEj76miHFBtzwx_L1gh4_UbdDQYk
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AFsZD_JsQfDFCLDOf4VRNv7pJFG_OfOOjb-JlmDOw859SGNkJArZdg==
age: 439826
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/43.7ac85d58.chunk.js
54.230.111.20200 OK 18 kB URL HTTP/2 js.driftt.com/core/assets/js/43.7ac85d58.chunk.js
IP 54.230.111.20:0
File type ASCII text, with very long lines (57854), with no line terminators
Hash 168861ba3b0b1c21398902ed1cc10b31
c40647c2f8a83a68d4d01c63a55fcbd70137ab50
df16c9b2769a27a6c2cdc9bcc46706058ee3af70a2cec14e3f64a3fc1cc116cf
GET /core/assets/js/43.7ac85d58.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"48be1563378f7c36bdadc0f2eb616856"
x-amz-server-side-encryption: AES256
x-amz-version-id: nlt9wYKKCayMlGWQHqpz8g8qDzXbqs5K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iS3p_OSpUFzj711rkEyJI_dCC4UNgcfmRCAmhhWIVj3PnMt2HGc8zg==
age: 439827
X-Firefox-Spdy: h2
api-v2.mutinyhq.io/v2/b
3.210.59.203201 Created 0 B IP 3.210.59.203:0
POST /v2/b HTTP/1.1
Host: api-v2.mutinyhq.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 4229
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
date: Wed, 01 Feb 2023 19:35:21 GMT
content-type: text/plain
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: x-cache, x-cache-hits, age
access-control-max-age: 7200
vary: Origin,Accept-Encoding
etag: W/"565339bc4d33d72817b583024112eb7f"
cache-control: max-age=0, private, must-revalidate
x-request-id: 8d586435-7fd5-48d0-b9e5-0348d557426d
x-runtime: 0.007539
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/20.2ffef383.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/20.2ffef383.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/20.2ffef383.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"ec6e94b6cea3a27506634867a8009ded"
x-amz-server-side-encryption: AES256
x-amz-version-id: Sl_LzJMe7m6MkWEK9Fxqk3gRf.6SeAYu
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 26
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1sQ32tXQJh5HU2Yq6Rsre4yvO15n2AvaE4lwSC_k4M1P-E_6T6Jitg==
age: 439826
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/15.699b0dc7.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/15.699b0dc7.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/15.699b0dc7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"43d1442a9d30453da9eaeb12b9daafff"
x-amz-server-side-encryption: AES256
x-amz-version-id: jUF4GGgcG34JdLv0MHXRHyWvmwH3OQeO
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uZnddqOIqbx6VoKpPshXte2KYavN1ZYU_HEO4Ix1UQToc_H0qE55Uw==
age: 439825
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/12.d33926cb.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/12.d33926cb.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/12.d33926cb.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"bdcb035523ec144399213aa65a8430ff"
x-amz-server-side-encryption: AES256
x-amz-version-id: KyS4g55V4uBz7fjaZ0R1pHyOHsEBkZV6
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 27
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OKK09NcZIF5aPrAEn3QgZ1oWskRAdmKRhmvEG60ShNYtq8_ikGhcRg==
age: 439825
X-Firefox-Spdy: h2
ws.zoominfo.com/pixel/uaPMNNWAvRE9GecQvShh
104.16.101.12200 OK 0 B URL HTTP/2 ws.zoominfo.com/pixel/uaPMNNWAvRE9GecQvShh
IP 104.16.101.12:0
GET /pixel/uaPMNNWAvRE9GecQvShh HTTP/1.1
Host: ws.zoominfo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:18 GMT
content-type: text/javascript
vary: Accept-Encoding
x-powered-by: Express
x-content-type-options: nosniff
access-control-allow-headers: Content-Type,cf-ipcountry,service-version,x-appengine-user-ip,x-forwarded-for, x-ws-collect-type
access-control-allow-credentials: true
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: visitorId=c32744ebf6a5d92380bb202446572c4c8f61da6c9807b090dbcd6a96c50d445b; Max-Age=31536000; Domain=ws.zoominfo.com; Path=/; Expires=Thu, 01 Feb 2024 19:35:18 GMT; Secure; SameSite=None
__cf_bm=V2zFGL0vdoOZDzBHiRVQCSbWNOgbrDacdZ0l.HN9YQY-1675280118-0-AXl9FhjrrDD+JhK6oxumZs01iaMOnUQWJasSi3xLP6Ldq6LIj1FIARObzop/ZpfVIdz10oKoRqFtEezCqBFVlIc=; path=/; expires=Wed, 01-Feb-23 20:05:18 GMT; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
_cfuvid=ozpf9IXgdllJoDk7re0qk8vf9YoYEPA9pDUWvjEB4iM-1675280118448-0-604800000; path=/; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 792d21235de7b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&page_title=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI
54.230.111.40200 OK 0 B URL HTTP/2 api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&page_title=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI
IP 54.230.111.40:0
POST /api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&page_title=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI HTTP/1.1
Host: api.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 63
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Wed, 01 Feb 2023 19:35:20 GMT
server: nginx
access-control-allow-origin: https://everfi.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
api-version: v2
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
identification-source: CACHE
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Tue, 31 Jan 2023 19:35:20 GMT
vary: Accept-Encoding, Origin
content-encoding: gzip
request-id: 7bea5ded-4237-45d8-9be6-36d353940b3a
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7ypAdPsaFY0sC1IvwGRpZknjAVcVyiZvNd52wfBYHYIhAN0RRiMPvA==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/19.8e79a39a.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/19.8e79a39a.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/19.8e79a39a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"c478a5bb4d7885e2b9250c6beeb4fd6d"
x-amz-server-side-encryption: AES256
x-amz-version-id: uwUNfVtyHdRKYycXgamRNBkk5aCRrwjq
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LfVdSeJCEUwquj59Oq6vTJAhESw4687MG7BxzHbwQORQOj-sONudrg==
age: 439827
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/26.d03be81f.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/26.d03be81f.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/26.d03be81f.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 31 Jan 2023 18:42:47 GMT
last-modified: Tue, 31 Jan 2023 17:28:18 GMT
etag: W/"c017d932fb491c58e7c2df4ff0134374"
x-amz-server-side-encryption: AES256
x-amz-version-id: 0A66H6gpS2HylmLlP2KhXr71NDS2DEeG
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 95
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gUs07y32_qb4quI0Q1VEFtXqRFmSAnWQXNC50k0c9rCpuGWIqKzwzw==
age: 89556
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/38.627f88e6.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/38.627f88e6.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/38.627f88e6.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675280139977
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"d03d4e13d59e06f8ec44e39d9d85fa54"
x-amz-server-side-encryption: AES256
x-amz-version-id: VrL4qVVdcSDrKVxDzMDZ1ibCwb1LgkQ.
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qRGjW_ml-QvuHytU-dO6vsoiLTESok8asxl-Mjcj2KDedyDEbmpZog==
age: 439826
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/41.a1867ad4.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/41.a1867ad4.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/41.a1867ad4.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"299dd262bf32831c99dc78a9c5b5ca43"
x-amz-server-side-encryption: AES256
x-amz-version-id: X151O2if9SUzZhsBRIHlOqKUakbFDRo_
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wYAAgJs3XrGYuLccr85KguysF2N996KXdWwf0Ep0khs9XYMUsHaYYw==
age: 439827
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/10.18bfca70.chunk.css
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/10.18bfca70.chunk.css
IP 54.230.111.20:0
GET /core/assets/css/10.18bfca70.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"dd670379de64b0621ee84574f3b8e73d"
x-amz-server-side-encryption: AES256
x-amz-version-id: W.Ed7skdAN0dSG59eVgsVvIsNBx.BMsL
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 20
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IAFFRmay_7TMWKhIcddCihCiZ3EiKNBBDu1x3NOASz_FKeGi8aKHEA==
age: 439826
X-Firefox-Spdy: h2
everfi.com/courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Opt_Feb1_L_SaveUp_3things_TP1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/
141.193.213.20200 OK 0 B URL HTTP/2 everfi.com/courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Opt_Feb1_L_SaveUp_3things_TP1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /courses/k-12/saveup-saving-money-for-the-future/?vertical=K12&utm_source=MarketingCloud&utm_medium=email&utm_campaign=K12Opt_Feb1_L_SaveUp_3things_TP1&utm_content=https://everfi.com/courses/k-12/saveup-saving-money-for-the-future/ HTTP/1.1
Host: everfi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:17 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-powered-by: WP Engine
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
link: <https://everfi.com/wp-json/>; rel="https://api.w.org/", <https://everfi.com/wp-json/wp/v2/offering/1071934>; rel="alternate"; type="application/json", <https://everfi.com/?p=1071934>; rel=shortlink
x-pass-why: custom-args
permissions-policy: midi=(), camera=(), microphone=(), payment=()
referrer-policy: origin
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 792d2115eb56b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
my.hellobar.com/modules.js
172.67.43.233200 OK 0 B URL HTTP/2 my.hellobar.com/modules.js
IP 172.67.43.233:0
GET /modules.js HTTP/1.1
Host: my.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:18 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=260615
etag: W/"ee85f3aa09f4f82ddd1d0df2fd1af30f"
last-modified: Fri, 23 Dec 2022 05:10:46 GMT
x-amz-id-2: FbKu5nSSamqqutaqGylcNdcI5O5SDGopg0GxPftEg1ygWGh7Rvcz4B73tCzUOVDlgYROQFCF8SM=
x-amz-request-id: 2W5YNVHZ8P90QP0P
cache-control: max-age=14400
cf-cache-status: HIT
age: 1205
vary: Accept-Encoding
server: cloudflare
cf-ray: 792d2124dc94b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&page_title=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI
54.230.111.40200 OK 0 B URL HTTP/2 api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&page_title=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI
IP 54.230.111.40:0
POST /api/v2/ip.json?referrer=&page=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F&page_title=SaveUp%3A%20Saving%20Money%20for%20the%20Future%20%7C%20EVERFI HTTP/1.1
Host: api.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 63
Origin: https://everfi.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Wed, 01 Feb 2023 19:35:20 GMT
server: nginx
access-control-allow-origin: https://everfi.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
api-version: v2
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
identification-source: CACHE
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Tue, 31 Jan 2023 19:35:20 GMT
vary: Accept-Encoding, Origin
content-encoding: gzip
request-id: 0ddae2f7-33d7-471b-b4bd-4221b8e826ca
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _UfCmb2RkH8ekteCHK5FE1x6BV5bUb1Cx4_5jp944N6Fwe4dzeUUJw==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/27.f44ab9c1.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/27.f44ab9c1.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/27.f44ab9c1.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"768714622a8a2db20ece85777ba47642"
x-amz-server-side-encryption: AES256
x-amz-version-id: wrgwLo8Ut7GsYvCwhzW617Km3EuBTw6K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PC4I05DKSR_K4PSd5uQUc393KKZM1YRlPYOaXSnZ81GeMOqFkGT4dw==
age: 439826
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/22.7161d1f7.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/22.7161d1f7.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/22.7161d1f7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"52c4ba62e758f95005aa326a7c67a335"
x-amz-server-side-encryption: AES256
x-amz-version-id: 5ZSPqOH.m7nwO1FPZhNLZC8oV8HN.hri
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 15
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lNk8AGreamA2XvCTTAju36uSyLHdRQWKJvbdmAaAS-8TDPcm6vw7Aw==
age: 439827
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/23.80529f14.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/23.80529f14.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/23.80529f14.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"97c3ca9aaa6fb76a1426ad11ca2061f7"
x-amz-server-side-encryption: AES256
x-amz-version-id: f7GnPSzVZVNA1fDLl2EjAyXSbixH0oiD
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oy6T93cgPx-EvyVYj4acfU05KwkfmoHzMbMyymqqtCQb2lievMoQpQ==
age: 439825
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/18.a0810f6e.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/18.a0810f6e.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/18.a0810f6e.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Tue, 31 Jan 2023 18:42:47 GMT
last-modified: Tue, 31 Jan 2023 17:28:17 GMT
etag: W/"d3fb1cbb90a994c7d0b529e61009fd36"
x-amz-server-side-encryption: AES256
x-amz-version-id: DZLWRVjBz33S7WsBYaYzTN9tf3EEFPJ3
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 15
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -WG_2FrjdCPU0KB3IOFO_814qEGkDdkB--05nfhnOnUGy7metu_8cg==
age: 89556
X-Firefox-Spdy: h2
tags.tiqcdn.com/utag/blackbaud/main/prod/utag.js
95.101.172.235200 OK 0 B URL HTTP/2 tags.tiqcdn.com/utag/blackbaud/main/prod/utag.js
IP 95.101.172.235:0
GET /utag/blackbaud/main/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "756b906f5860754dfb13a61226ee7d16:1674847152.238375"
last-modified: Fri, 27 Jan 2023 19:19:12 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Wed, 01 Feb 2023 19:40:17 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/50.de3b5864.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/50.de3b5864.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/50.de3b5864.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"114785899ceb423273fcc17aaad202e9"
x-amz-server-side-encryption: AES256
x-amz-version-id: 1DnDsXjV5U2x4yjXf3GCnDIDPlyIffBu
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: j-Yv6-i2IrAOeM7zpC9Xt_5ln0viTXltyhqGNSUpLGxKaRScaOuxng==
age: 439826
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/10.4b732e6a.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/10.4b732e6a.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/10.4b732e6a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:19 GMT
etag: W/"fc993533bc5bb380c865a5164f1a76c0"
x-amz-server-side-encryption: AES256
x-amz-version-id: 6IO_iuOmrg_MhTuR.qaW7MVxfukyk3VL
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bsgpH-_rn2x8OxPfWq3PYdsroiI0p5Gt9i0g6J-WlzVo_Eu4aDBGig==
age: 439825
X-Firefox-Spdy: h2
js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
IP 54.230.111.20:0
GET /core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Tue, 31 Jan 2023 18:42:47 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Ztb9yF6waxtYQ6hWVpKn0He8JZw2eqTc
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 12
date: Wed, 01 Feb 2023 19:35:22 GMT
cache-control: no-cache
etag: W/"ae75b1a52847e8a709a1e39fc1474dba"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3dMw1-ipY2IUdQnGOwshymPrJsuNmSnF1Lk1hF8fOo1-GUHFovS-SA==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/main~493df0b3.bfaa8bf7.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/main~493df0b3.bfaa8bf7.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/main~493df0b3.bfaa8bf7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:22 GMT
etag: W/"f380dbfcbb0e3e9e079d70231be1cff3"
x-amz-server-side-encryption: AES256
x-amz-version-id: tVIOQ5knB_pnUIzARn2A1QNlFnrQ08ww
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: swa4MNstBw4Bu7i4hp1obHoeyAu_QhkUO_1Q3DdOUFKDYAtTFR8dmw==
age: 439827
X-Firefox-Spdy: h2
kit.fontawesome.com/655ccfc4f9.js?ver=6.1.1
104.18.23.52200 OK 0 B URL HTTP/2 kit.fontawesome.com/655ccfc4f9.js?ver=6.1.1
IP 104.18.23.52:0
GET /655ccfc4f9.js?ver=6.1.1 HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 19:35:17 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FzlzA0Wly4PKVLnujNbB
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 792d211e1c64b4f3-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/30.57dfb56c.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/30.57dfb56c.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/30.57dfb56c.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ebs64edsgr5y&eId=ebs64edsgr5y®ion=US&forceShow=false&skipCampaigns=false&sessionId=05c4d8a4-6f76-45b0-a473-176d24aafe38&sessionStarted=1675280145.674&campaignRefreshToken=5cef0363-489f-4bff-b88e-a970ce7a56dd&hideController=false&pageLoadStartTime=1675280139977&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F%3Fvertical%3DK12%26utm_source%3DMarketingCloud%26utm_medium%3Demail%26utm_campaign%3DK12Opt_Feb1_L_SaveUp_3things_TP1%26utm_content%3Dhttps%3A%2F%2Feverfi.com%2Fcourses%2Fk-12%2Fsaveup-saving-money-for-the-future%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"b8addee34a5cd2241740a2e3094039b3"
x-amz-server-side-encryption: AES256
x-amz-version-id: PRu.RNHym52TA_hlIcQB1Vv5VUA1vVKS
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZlNT3sKdQn0JjCnGiMcZvxjkZ4hziEe5vUpXix3yL8xLexBJRTm4mA==
age: 439827
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A700&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A700&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Lato%3A700&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://everfi.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 19:35:17 GMT
date: Wed, 01 Feb 2023 19:35:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2