Overview

URL www.visiblecollege.education/unsubscribe-cx.html
IP199.34.228.71
ASNWEEBLY
Location United States
Report completed2022-09-20 20:38:27 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-20 2 www.visiblecollege.education/unsubscribe-cx.html Phishing
2022-09-20 2 www.visiblecollege.education/unsubscribe-cx.html Phishing
2022-09-20 2 www.visiblecollege.education/files/theme/MutationObserver.js Phishing
2022-09-20 2 www.visiblecollege.education/files/theme/custom-1.js?1654106271 Phishing
2022-09-20 2 www.visiblecollege.education/files/templateArtifacts.js?1662873061 Phishing
2022-09-20 2 www.visiblecollege.education/files/main_style.css?1662873061 Phishing
2022-09-20 2 www.visiblecollege.education/files/theme/plugins.js?1654106271 Phishing
2022-09-20 2 www.visiblecollege.education/files/theme/jquery.pxuMenu.js?1654106271 Phishing
2022-09-20 2 www.visiblecollege.education/uploads/1/4/1/4/141422211/published/vm-semi-st (...) Phishing
2022-09-20 2 www.visiblecollege.education/uploads/1/4/1/4/141422211/published/vm-semi-st (...) Phishing
2022-09-20 2 www.visiblecollege.education/ajax/api/JsonRPC/CustomerAccounts/?CustomerAcc (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (44)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS i6.liadm.com (2) 1446 2020-02-06 10:19:01 UTC 2022-09-20 16:49:17 UTC 52.3.49.101
mnemonic passive DNS ocsp.pki.goog (16) 175 2017-06-14 07:23:31 UTC 2022-09-20 04:47:45 UTC 142.250.74.3
mnemonic passive DNS ssl.google-analytics.com (1) 275 2012-10-03 00:55:57 UTC 2022-09-20 09:30:54 UTC 216.58.207.200
mnemonic passive DNS 9188115.fls.doubleclick.net (1) 650747 2019-07-18 20:19:22 UTC 2022-09-20 16:54:46 UTC 142.250.74.70
mnemonic passive DNS analytics.tiktok.com (4) 1182 2020-02-29 13:09:05 UTC 2022-09-20 10:19:27 UTC 23.36.79.32
mnemonic passive DNS discover.georgiasouthern.edu (1) 672236 2020-08-26 06:13:38 UTC 2022-09-20 16:54:46 UTC 34.198.122.35
mnemonic passive DNS static.zohocdn.com (11) 25981 2019-11-06 12:49:13 UTC 2022-09-20 11:56:11 UTC 185.20.209.147
mnemonic passive DNS ec.editmysite.com (2) 12806 2017-01-29 21:50:35 UTC 2022-09-20 10:17:28 UTC 35.82.13.103
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-20 05:19:24 UTC 143.204.55.49
mnemonic passive DNS ocsp.digicert.com (7) 86 2012-05-21 07:02:23 UTC 2022-09-20 13:04:07 UTC 93.184.220.29
mnemonic passive DNS sc-static.net (1) 1183 2022-01-24 20:13:30 UTC 2022-09-20 18:51:31 UTC 54.230.82.240
mnemonic passive DNS 66356305.global.siteimproveanalytics.io (1) 544271 2022-07-28 02:00:43 UTC 2022-09-20 16:54:47 UTC 18.158.197.63
mnemonic passive DNS collector-5081.tvsquared.com (2) 580153 2019-08-22 14:38:26 UTC 2022-09-20 16:54:46 UTC 3.132.187.123
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-20 17:35:13 UTC 143.204.55.35
mnemonic passive DNS forms.zohopublic.com (2) 111187 2015-07-08 06:37:08 UTC 2022-09-20 19:48:02 UTC 136.143.190.97
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-09-20 09:43:46 UTC 142.250.74.3
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-20 04:47:05 UTC 23.36.76.226
mnemonic passive DNS tr.snapchat.com (4) 978 2017-04-26 06:25:03 UTC 2022-09-20 10:25:47 UTC 35.190.43.134
mnemonic passive DNS webfonts.zohowebstatic.com (3) 75944 2020-10-23 02:10:50 UTC 2022-09-20 12:16:54 UTC 143.204.55.34
mnemonic passive DNS cdn.datasteam.io (1) 18573 2019-07-22 11:28:49 UTC 2022-09-20 17:39:38 UTC 143.204.55.33
mnemonic passive DNS aa.agkn.com (2) 431 2017-01-30 05:01:07 UTC 2022-09-20 11:11:30 UTC 3.75.14.26
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-20 15:51:03 UTC 142.250.74.10
mnemonic passive DNS ocsp.sectigo.com (5) 487 2018-12-17 11:31:55 UTC 2022-09-20 19:14:14 UTC 172.64.155.188
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-20 17:05:04 UTC 142.250.74.164
mnemonic passive DNS www.visiblecollege.education (14) 0 2022-05-11 23:05:19 UTC 2022-09-20 19:00:18 UTC 199.34.228.71 Unknown ranking
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-20 04:47:04 UTC 34.117.237.239
mnemonic passive DNS ajax.googleapis.com (1) 12905 2019-10-15 17:52:08 UTC 2022-09-20 19:04:20 UTC 142.250.74.138
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-20 04:46:55 UTC 142.250.74.72
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-20 17:37:01 UTC 34.120.237.76
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-20 07:54:37 UTC 142.251.1.154
mnemonic passive DNS cdn2.editmysite.com (11) 11564 2012-10-02 18:27:39 UTC 2022-09-20 09:45:34 UTC 151.101.85.46
mnemonic passive DNS siteimproveanalytics.com (1) 3559 2020-04-09 01:15:05 UTC 2022-09-20 17:47:35 UTC 172.64.173.12
mnemonic passive DNS adservice.google.no (1) 96969 2017-09-26 14:23:08 UTC 2022-09-20 04:48:10 UTC 142.250.74.66
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-09-20 08:29:02 UTC 157.240.200.14
mnemonic passive DNS api.datasteam.io (4) 9608 2018-03-19 10:54:55 UTC 2022-09-20 16:54:47 UTC 54.225.77.105
mnemonic passive DNS i.liadm.com (4) 511 2016-05-04 14:21:08 UTC 2022-09-20 12:50:30 UTC 50.16.108.1
mnemonic passive DNS www.facebook.com (1) 99 2017-01-30 05:00:00 UTC 2022-09-20 04:41:57 UTC 157.240.200.35
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-20 05:36:22 UTC 35.164.146.235
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-20 17:41:07 UTC 142.250.74.174
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-20 05:46:51 UTC 216.239.32.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS adservice.google.com (1) 76 2021-02-20 16:10:48 UTC 2022-09-20 17:27:10 UTC 172.217.21.162
mnemonic passive DNS ocsp.sca1b.amazontrust.com (9) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.100
mnemonic passive DNS mx.technolutions.net (1) 11218 2019-07-22 13:27:51 UTC 2022-09-20 13:48:15 UTC 143.204.55.14
mnemonic passive DNS exploregrad.georgiasouthern.edu (1) 0 2019-11-26 06:02:47 UTC 2022-09-20 16:54:47 UTC 34.198.122.35 Domain (georgiasouthern.edu) ranked at: 127701


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.34.228.71

Date UQ / IDS / BL URL IP
2022-10-25 16:55:22 +0000
0 - 0 - 10 www.visiblecollege.education/unsubscribe-cx.html 199.34.228.71
2022-10-06 22:53:57 +0000
0 - 0 - 6 bryc.co.za/ 199.34.228.71
2022-10-04 17:22:32 +0000
0 - 0 - 7 bryc.co.za/ 199.34.228.71
2022-09-20 20:38:27 +0000
0 - 0 - 11 www.visiblecollege.education/unsubscribe-cx.html 199.34.228.71
2022-09-20 16:38:29 +0000
0 - 0 - 7 bryc.co.za/ 199.34.228.71

Last 5 reports on ASN: WEEBLY

Date UQ / IDS / BL URL IP
2022-12-06 15:02:07 +0000
0 - 0 - 1 www.ronbarrowtrumpet.com/ 199.34.228.134
2022-12-06 14:09:31 +0000
0 - 0 - 5 bt-107637.weeblysite.com/ 199.34.228.97
2022-12-06 14:07:12 +0000
0 - 0 - 5 aol-106188-104380.square.site/ 199.34.228.39
2022-12-06 14:01:13 +0000
0 - 0 - 7 att-mail-100510.square.site/ 199.34.228.39
2022-12-06 14:00:51 +0000
0 - 0 - 5 yahoo-109504-108904.weeblysite.com/ 199.34.228.97

Last 3 reports on domain: visiblecollege.education

Date UQ / IDS / BL URL IP
2022-10-25 16:55:22 +0000
0 - 0 - 10 www.visiblecollege.education/unsubscribe-cx.html 199.34.228.71
2022-09-20 20:38:27 +0000
0 - 0 - 11 www.visiblecollege.education/unsubscribe-cx.html 199.34.228.71
2022-08-31 20:32:27 +0000
0 - 0 - 12 www.visiblecollege.education/unsubscribe-wil.html 199.34.228.71

Last 3 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-25 16:55:22 +0000
0 - 0 - 10 www.visiblecollege.education/unsubscribe-cx.html 199.34.228.71
2022-09-09 23:38:23 +0000
0 - 0 - 10 ec2-54-189-84-127.us-west-2.compute.amazonaws (...) 54.189.84.127
2022-08-31 20:32:27 +0000
0 - 0 - 12 www.visiblecollege.education/unsubscribe-wil.html 199.34.228.71


JavaScript

Executed Scripts (62)


Executed Evals (1)

#1 JavaScript::Eval (size: 328, repeated: 1) - SHA256: 9e4299fc2ad722f42c3cb5c6bee0e819a7a65b679593e5d5f2a82f5c19485bae

                                        (function() {
    function d(a) {
        a = a.src || "";
        if (-1 < a.indexOf("youtube.com/embed/") || -1 < a.indexOf("youtube.com/v/")) return !0
    }
    var b = document.getElementsByTagName("iframe"),
        e = document.getElementsByTagName("embed"),
        a;
    for (a = b.length - 1; - 1 < a; a--) {
        var c = b[a];
        if (c = d(c)) return !0
    }
    for (a = e.length - 1; - 1 < a; a--)
        if (b = e[a], c = d(b)) return !0;
    return !1
})();
                                    

Executed Writes (0)



HTTP Transactions (138)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Retry-After, Content-Type, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 20:13:14 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ME6mVykSAL2OJsSaXhjTFgyAjuOXL0PkXysF_1TNgQnKdq8h6vCdbA==
Age: 1502


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7278
Expires: Tue, 20 Sep 2022 22:39:34 GMT
Date: Tue, 20 Sep 2022 20:38:16 GMT
Connection: keep-alive

                                        
                                            GET /unsubscribe-cx.html HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         199.34.228.71
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 20 Sep 2022 20:38:16 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.visiblecollege.education
Vary: X-W-SSL,User-Agent
Location: https://www.visiblecollege.education/unsubscribe-cx.html
X-Host: blu7.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 470
Keep-Alive: timeout=10, max=9
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   470
Md5:    59b1fe1356d4ac1278e542267140ef1e
Sha1:   3bdd822ba14edb631f2e4388684badd5d7ecfcbc
Sha256: 1d260fb5339208f9291556f2ca1b016d9c4bc5bd083bb5c09842bd206183a46b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4XsApkQhWYqwEKCqxjpCesfB0OfXeTYsNMkhnO0ao5UThjNoTP04cA==
age: 57783
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 20 Sep 2022 20:38:16 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3D88A6F5354FE8E19A0DA598B1EB2139CF20D0C1B022E4F42A1117DE0E8E3A2E"
Last-Modified: Tue, 20 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21528
Expires: Wed, 21 Sep 2022 02:37:04 GMT
Date: Tue, 20 Sep 2022 20:38:16 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 20:03:22 GMT
Expires: Tue, 20 Sep 2022 20:31:23 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WYVpHMowCH-MiKm6UnmfHpHgbnLOjtqn_JLNf1JpfB9Mz8YYdfn02A==
Age: 2094


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /unsubscribe-cx.html HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 20 Sep 2022 20:38:16 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.visiblecollege.education language=en; expires=Tue, 04-Oct-2022 20:38:16 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"0b0b2b68d2c423518328b43bdd4932df-gzip"
Content-Encoding: gzip
X-Host: blu34.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 7107
Keep-Alive: timeout=10, max=72
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1663), with CRLF, LF line terminators
Size:   7107
Md5:    2a5295c5a2a7637d84d75f0618774359
Sha1:   a6a3b774db0c78a0a9b1348e029121ea07a6c563
Sha256: 9747a0c5db2fe4c160bfccfac42561592b5d220b3482db540c888ff298862c8e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5027
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:16 GMT
Last-Modified: Tue, 20 Sep 2022 19:14:29 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /css/old/fancybox.css?1662672764 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Thu, 08 Sep 2022 20:48:48 GMT
etag: "631a5530-f47"
expires: Thu, 22 Sep 2022 21:36:07 GMT
cache-control: max-age=1209600
x-host: blu86.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Sep 2022 20:38:17 GMT
age: 1033330
x-served-by: cache-sjc10041-SJC, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 7
x-timer: S1663706297.073428,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1218
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3910)
Size:   1218
Md5:    b644e92258f4c7c0b4270047652d1e60
Sha1:   93734d52ee9e86a768159e514076051813c39cd9
Sha256: 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css/social-icons.css?buildtime=1662672764 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Thu, 08 Sep 2022 20:48:41 GMT
etag: W/"631a5529-3319"
expires: Thu, 22 Sep 2022 21:34:49 GMT
cache-control: max-age=1209600
x-host: blu83.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Sep 2022 20:38:17 GMT
age: 1033408
x-served-by: cache-sjc10067-SJC, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 5
x-timer: S1663706297.074995,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1639
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13080)
Size:   1639
Md5:    8d187cb7374eeeae857b6a61a61de0f4
Sha1:   b44aac11580606735fa1aa8b9637f56268267b0a
Sha256: 427bb56305a151eebd863996d75a06a7a3efe1a9861eefdea80c820ffcd4fb20
                                        
                                            GET /fonts/Cabin/font.css?2 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Thu, 08 Sep 2022 17:37:43 GMT
etag: "631a2867-6ae"
expires: Thu, 22 Sep 2022 18:07:46 GMT
cache-control: max-age=1209600
x-host: blu74.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Sep 2022 20:38:17 GMT
age: 1045831
x-served-by: cache-sjc10083-SJC, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663706297.076196,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 323
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   323
Md5:    a24301bce1bbe677f4aadc991d839902
Sha1:   db06f2d3e14f643dbaa77c6097b7650d6125cbb0
Sha256: 84a71f637ab2408d99cf611ed40a22f921d778987133f813232778da71eadbbc
                                        
                                            GET /fonts/Oswald/font.css?2 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Thu, 08 Sep 2022 17:37:44 GMT
etag: "631a2868-4f0"
expires: Thu, 22 Sep 2022 18:07:03 GMT
cache-control: max-age=1209600
x-host: grn14.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Sep 2022 20:38:17 GMT
age: 1045873
x-served-by: cache-sjc10065-SJC, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 5, 4
x-timer: S1663706297.076903,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 300
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   300
Md5:    b4e1fa8edbbb593aefc47d16b3254da7
Sha1:   f9b4e2c9b0df700a2a892be0c0853f92211a5656
Sha256: ddb677f162840a44ef4cdf085c35379f76e5b88162205a32cdf584acd826b1c3
                                        
                                            GET /js/site/main.js?buildTime=1662672764 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Thu, 08 Sep 2022 20:49:09 GMT
etag: "631a5545-74804"
expires: Thu, 22 Sep 2022 21:36:04 GMT
cache-control: max-age=1209600
x-host: blu39.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Sep 2022 20:38:17 GMT
age: 1033332
x-served-by: cache-sjc10052-SJC, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663706297.074146,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32147)
Size:   146400
Md5:    81b8673c5d3aa3ab8c0574f2a8f0e3b4
Sha1:   2e0661bc7907d9e2703b3347c3fec579f0aef5d6
Sha256: 0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
                                        
                                            GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.138
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 06:15:30 GMT
expires: Sun, 17 Sep 2023 06:15:30 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 310967
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65483)
Size:   33593
Md5:    a54a444f20643b131117dc2112cca05f
Sha1:   074964746b12ff1d30f7656310d6154ae1cc98b5
Sha256: aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
                                        
                                            GET /css/sites.css?buildTime=1662672764 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Thu, 08 Sep 2022 20:48:41 GMT
etag: W/"631a5529-347ac"
expires: Thu, 22 Sep 2022 21:34:22 GMT
cache-control: max-age=1209600
x-host: grn118.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Sep 2022 20:38:17 GMT
age: 1033434
x-served-by: cache-sjc10056-SJC, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 19
x-timer: S1663706297.077724,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29746
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   29746
Md5:    d10158b22b553f723d99dc78eaee6390
Sha1:   80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
Sha256: 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
                                        
                                            GET /js/site/main-customer-accounts-site.js?buildTime=1662672764 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Thu, 08 Sep 2022 20:49:09 GMT
etag: "631a5545-82588"
expires: Thu, 22 Sep 2022 21:36:04 GMT
cache-control: max-age=1209600
x-host: grn57.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Sep 2022 20:38:17 GMT
age: 1033332
x-served-by: cache-sjc10061-SJC, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663706297.074673,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 158973
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32007)
Size:   158973
Md5:    89fb93f3b911a60f91bc7f4063777a8f
Sha1:   fed88e48664b4e6b90df231038a205abc11d30b1
Sha256: 966b66e4bf0e1aaac8947bc61bd432e5c194936ddebed90fabefb88286db8a12
                                        
                                            GET /files/theme/MutationObserver.js HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 20 Sep 2022 20:38:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 17 May 2022 14:16:26 GMT
x-rgw-object-type: Normal
ETag: W/"e52201e96af18dd02c85eb627c843491"
x-amz-request-id: tx000000000000001f27311-006284b947-b9fbc64-sfo1
X-Storage-Bucket: z3974
X-Storage-Object: 397452d9f6a2ea6a2135b45c9e40139c68ac6661f3bab4413e7299586ccb408a
X-Host: grn69.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   6842
Md5:    a502a64ac17dab318a72b5c6f667e5d6
Sha1:   9b623c5cdc2c288649ff13504131ea2c382e700d
Sha256: b0d53c00940847c4638accf26f204ef4569affa4a686ebcc5d3cc87d1697aa9d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bEfiBk6sJ9phAqzo+n1pcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.164.146.235
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l00JVpFnDYd1ZlqWRm4FHKDplgY=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/theme/jquery.revealer.js?1654106271 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 20 Sep 2022 20:38:17 GMT
Content-Length: 2828
Connection: keep-alive
Last-Modified: Tue, 26 Oct 2021 13:57:33 GMT
x-rgw-object-type: Normal
ETag: "c22ab67199a33d876512504cda4ff55b"
x-amz-request-id: tx000000000000001c59914-006284894e-b9fbc63-sfo1
X-Storage-Bucket: zc4cd
X-Storage-Object: c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311
X-Host: blu61.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   2828
Md5:    c22ab67199a33d876512504cda4ff55b
Sha1:   36e96eae4644b6028532974fe5186a072792cb37
Sha256: c4cd233d3d6b0f184e99d5017e521b4c6f9106d3e546864a8ba516189b934311
                                        
                                            GET /gtm.js?id=GTM-P3L37W HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Sep 2022 20:38:17 GMT
expires: Tue, 20 Sep 2022 20:38:17 GMT
cache-control: private, max-age=900
last-modified: Tue, 20 Sep 2022 19:54:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79743
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (61276)
Size:   79743
Md5:    f9ed8047986f6adeef327c902cbf7b13
Sha1:   21b27576537d41936877f7112381f14f670c100a
Sha256: 7bb99e56b432c56a2a1858ba8dc80b4457ee245ea355845bbd042c82f143468e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/theme/custom-1.js?1654106271 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 20 Sep 2022 20:38:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 03 Dec 2021 02:31:47 GMT
x-rgw-object-type: Normal
ETag: W/"beb222c03c3fdd6af710530b7df1c408"
x-amz-request-id: tx000000000000000044481-006258b62e-4d6022f-las
X-Storage-Bucket: z6fce
X-Storage-Object: 6fceda9df3549c1857609bca8bb9bd132aaef3ec76adeb82b0a62c698cae0011
X-Host: grn49.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   4096
Md5:    7960b13ef773e1c8965d668d5b212834
Sha1:   35f276ab77c975720b8cfa8eeb0ca8cc297725ed
Sha256: 1f897564d4aacb23ab3203c848e47b42417156d404d065c1e81d6c3bca0cccc4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /files/templateArtifacts.js?1662873061 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Tue, 20 Sep 2022 20:38:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu76.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (1630)
Size:   1632
Md5:    e0836e8203c22b8e4086f27e91e86f5a
Sha1:   28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
Sha256: 32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /files/main_style.css?1662873061 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 20 Sep 2022 20:38:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu70.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  assembler source, ASCII text, with very long lines (815)
Size:   7575
Md5:    025617af4c081e7063b11265d98df0a9
Sha1:   d2437c9dc14efcb95902b11196ce5923bc1fa7f5
Sha256: 11fd01cf50e40a41fb72f8ccbd9ca6c097e53ba35f8e057e1b57db0d9f814d4d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /files/theme/jquery.trend.js?1654106271 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 20 Sep 2022 20:38:17 GMT
Content-Length: 3775
Connection: keep-alive
Last-Modified: Thu, 10 Feb 2022 08:22:06 GMT
x-rgw-object-type: Normal
ETag: "4beccebe0a060b2b2c43de5c2d4512ef"
x-amz-request-id: tx000000000000001ab0c70-0062847889-b9fbc77-sfo1
X-Storage-Bucket: z446f
X-Storage-Object: 446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738
X-Host: blu70.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   3775
Md5:    4beccebe0a060b2b2c43de5c2d4512ef
Sha1:   250a779dd017877b9f360b264cf072d9e87974ff
Sha256: 446f48f512ecc0b771af3c21a3036de3a1c5740d1e6bdbb61448834326d0c738
                                        
                                            GET /files/theme/plugins.js?1654106271 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 20 Sep 2022 20:38:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 24 Mar 2022 16:13:47 GMT
x-rgw-object-type: Normal
ETag: W/"d86674e2fb0fe652cbe72550ff705154"
x-amz-request-id: tx00000000000000222bf30-006284e40a-b9fbc29-sfo1
X-Storage-Bucket: z191b
X-Storage-Object: 191b89e359f86e713b98445e983013d20d8130d001444e0c99098d219a0853f5
X-Host: blu41.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   15931
Md5:    0f7b71024ebd304696e6b1f295e8793d
Sha1:   d4a273b8009009285b394cdc9f5b8baf6d1c8e1b
Sha256: e4c4bad96ca6be1f0ac691edab1fa9b51dc2f84fdc32cf1a665b4c71784c2cba

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /files/theme/jquery.pxuMenu.js?1654106271 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 20 Sep 2022 20:38:17 GMT
Content-Length: 3697
Connection: keep-alive
Last-Modified: Mon, 04 Apr 2022 07:42:11 GMT
x-rgw-object-type: Normal
ETag: "ac373d716afe4270df40f60417b0f418"
x-amz-request-id: tx000000000000000045524-006258b632-4d5d368-las
X-Storage-Bucket: zf755
X-Storage-Object: f75570c56743e8c705cb06f5f1f9b1f8f2cc13119f5e2acda2f3bb8d987de94a
X-Host: blu41.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   3697
Md5:    ac373d716afe4270df40f60417b0f418
Sha1:   aba148148c771bb66b0b4aeab6eac8eb40352745
Sha256: f75570c56743e8c705cb06f5f1f9b1f8f2cc13119f5e2acda2f3bb8d987de94a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/wsnbn/snowday262.js HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Wed, 14 Sep 2022 16:18:50 GMT
etag: "6321feea-124fe"
expires: Thu, 29 Sep 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: blu123.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Sep 2022 20:38:17 GMT
age: 475177
x-served-by: cache-sjc10051-SJC, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 5212
x-timer: S1663706298.819284,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2512)
Size:   25752
Md5:    234327230add9a5a5d61a48829ea4565
Sha1:   7966cc0e4bd76f88ff193c8a99a067de804b7129
Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
                                        
                                            GET /uploads/1/4/1/4/141422211/editor/zschool-logo_3.png HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 20 Sep 2022 20:38:17 GMT
Content-Length: 2600
Connection: keep-alive
Last-Modified: Tue, 18 Jan 2022 19:27:37 GMT
x-rgw-object-type: Normal
ETag: "beeed01200a56489dbdb427baa446265"
x-amz-request-id: tx00000000000000204c078-006284cf8e-b9fbc7f-sfo1
X-Storage-Bucket: zc01f
X-Storage-Object: c01fd7d4ccca14aeef12e3fc93be4a48d5b060032907f4431869b2292656038b
X-Host: blu41.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 93 x 47, 8-bit/color RGBA, non-interlaced\012- data
Size:   2600
Md5:    beeed01200a56489dbdb427baa446265
Sha1:   9636c0f125aa00527b77c2861051a39768de3800
Sha256: c01fd7d4ccca14aeef12e3fc93be4a48d5b060032907f4431869b2292656038b
                                        
                                            GET /uploads/1/4/1/4/141422211/published/vm-semi-stacked-logo-2.png?1649639734 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 20 Sep 2022 20:38:17 GMT
Content-Length: 4137
Connection: keep-alive
Last-Modified: Mon, 11 Apr 2022 01:15:33 GMT
x-rgw-object-type: Normal
ETag: "66c352d49cce98a2eaeed0ab566c5d46"
x-amz-request-id: tx000000000000002c31ba4-0062c43821-bfe36ba-sfo1
X-Storage-Bucket: z37f9
X-Storage-Object: 37f9029e6eccd6bfc5a89b408930554ed5c20cc1b18a4dc55c4e6ac89c7e27aa
X-Host: grn73.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 202 x 51, 8-bit gray+alpha, non-interlaced\012- data
Size:   4137
Md5:    66c352d49cce98a2eaeed0ab566c5d46
Sha1:   d491ffee50e644643cd6938387c9fd742b7c9a68
Sha256: 37f9029e6eccd6bfc5a89b408930554ed5c20cc1b18a4dc55c4e6ac89c7e27aa

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /fonts/Cabin/regular.woff2 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
last-modified: Wed, 14 Sep 2022 16:15:18 GMT
etag: "6321fe16-3c74"
expires: Mon, 03 Oct 2022 12:30:16 GMT
cache-control: max-age=1209600
x-host: grn28.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Sep 2022 20:38:17 GMT
age: 115681
x-served-by: cache-sjc10064-SJC, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2
x-timer: S1663706298.830819,VS0,VE0
access-control-allow-origin: *
content-length: 15476
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15476, version 1.0\012- data
Size:   15476
Md5:    083f5cafe748b8ac91823b36986d7fda
Sha1:   0d763699e5bce633aa6adc03370b8630b87c1b31
Sha256: a3d8afcbc68d3ae65312e50ce252f5eb4cb817d3fe39452bd37a76f896ab5921
                                        
                                            GET /fonts/Oswald/bold.woff2 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx
last-modified: Thu, 08 Sep 2022 17:37:44 GMT
etag: "631a2868-27bc"
expires: Thu, 22 Sep 2022 18:07:05 GMT
cache-control: max-age=1209600
x-host: blu135.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Sep 2022 20:38:17 GMT
age: 1045873
x-served-by: cache-sjc10072-SJC, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 3
x-timer: S1663706298.833666,VS0,VE0
access-control-allow-origin: *
content-length: 10172
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 10172, version 1.0\012- data
Size:   10172
Md5:    58e5c92fd1a1fc89b8ca6d74ce4793b8
Sha1:   337771c465778aeed6de18195e0cbe9d9098d299
Sha256: 6e059f38d9d643cd149fa02dfd97d6844f9b106198e027f55e2fe1e9a1428acf
                                        
                                            GET /uploads/1/4/1/4/141422211/published/vm-semi-stacked-logo-2.png?1649639724 HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 20 Sep 2022 20:38:17 GMT
Content-Length: 4137
Connection: keep-alive
Last-Modified: Mon, 11 Apr 2022 01:15:33 GMT
x-rgw-object-type: Normal
ETag: "66c352d49cce98a2eaeed0ab566c5d46"
x-amz-request-id: tx00000000000001981bc0c-0062e92e4c-c0351b0-sfo1
X-Storage-Bucket: z37f9
X-Storage-Object: 37f9029e6eccd6bfc5a89b408930554ed5c20cc1b18a4dc55c4e6ac89c7e27aa
X-Host: blu74.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 202 x 51, 8-bit gray+alpha, non-interlaced\012- data
Size:   4137
Md5:    66c352d49cce98a2eaeed0ab566c5d46
Sha1:   d491ffee50e644643cd6938387c9fd742b7c9a68
Sha256: 37f9029e6eccd6bfc5a89b408930554ed5c20cc1b18a4dc55c4e6ac89c7e27aa

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 20 Sep 2022 18:41:12 GMT
expires: Tue, 20 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 7025
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            GET /ga.js HTTP/1.1 
Host: ssl.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.200
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Tue, 20 Sep 2022 20:17:11 GMT
expires: Tue, 20 Sep 2022 22:17:11 GMT
cache-control: public, max-age=7200
age: 1266
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            GET /css?family=Karla:400,700|Oswald:700|Roboto+Mono:400,400i,700,700i HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Sep 2022 20:38:17 GMT
date: Tue, 20 Sep 2022 20:38:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   5198
Md5:    aefe515224879e593e4ed55c29625a7b
Sha1:   720ec4668231b28d454f68fd8d15d06518af20e4
Sha256: 4d33a4398ff5512c59652b7e6e79df5865412f849088d2a6120f948e9959a643
                                        
                                            GET /scevent.min.js HTTP/1.1 
Host: sc-static.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.82.240
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 7961
server: CloudFront
date: Tue, 20 Sep 2022 20:38:18 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Wed, 21 Sep 2022 20:08:06 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: j2zPFXEi801srsVlBtBLNPmZgLv6ckK3bAZGLQHCHfwPzhYTl0v0zw==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23033), with no line terminators
Size:   7961
Md5:    0f16280f78683c4dcb392b7df7a5ddc0
Sha1:   379551a0ea6b3b2d1ecbf40be1b15fc575dfc00c
Sha256: 6866325a547f2dbee73e122e987dba0e1a0277769d6e9525a3765a7100d041e7
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "11EB73EF5F64FA6560D46FF2185C1EB6C8F26A01C05B0B2683CEC73A54BCE619"
Last-Modified: Mon, 19 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2699
Expires: Tue, 20 Sep 2022 21:23:17 GMT
Date: Tue, 20 Sep 2022 20:38:18 GMT
Connection: keep-alive

                                        
                                            GET /js/siteanalyze_66356305.js HTTP/1.1 
Host: siteimproveanalytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.173.12
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 9203
x-amz-id-2: MvIBgoeMPYVzH+f6TwcdWwwmtqbwqETYc+WB3XVb8bCykey/0Y0pH+0Lb1oJVDoHv7sO2/x9lOY=
x-amz-request-id: YRDHJZD2HNP44FYH
cache-control: max-age=86400, no-transform
content-encoding: gzip
last-modified: Tue, 13 Sep 2022 20:20:00 GMT
etag: "df33aa041eb3ba8ee0e52dd6e17e0328"
cf-cache-status: HIT
age: 6700
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FPDaeXVT4Xr0njTqlsdynrDE%2Fx%2Fo%2Fsu4CGO4qxTiYsABjExx5pHETfDiMTFKZ1P1Z0ZspJy81TSfqkCnZx3RVbIrERjjhJLt%2FYGLflDSi7P03bqSBGGhIdVyks%2FJzhvDz%2BXJaDMTFMMAkJM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74dd5d2b3ebf06bd-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (28148), with no line terminators
Size:   9203
Md5:    df33aa041eb3ba8ee0e52dd6e17e0328
Sha1:   760bcf8fcdaf281a00521afadbc5f2a6e4e8971e
Sha256: af46a5d84e2a851a4e500a1da337f43e10071ff05b15f39172bae03cea3b1ef4
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3064
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:18 GMT
Last-Modified: Tue, 20 Sep 2022 19:47:14 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3064
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:18 GMT
Last-Modified: Tue, 20 Sep 2022 19:47:14 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /activityi;src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=3209322557811.547? HTTP/1.1 
Host: 9188115.fls.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.70
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 20:38:18 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 402
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 20-Sep-2022 20:53:18 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (533), with no line terminators
Size:   402
Md5:    d14d13fd2c158f7ea1c0cd05e8321023
Sha1:   f8e779ebcf17a1e90cc116e70015c6ebca4d03f0
Sha256: 258f4e4f0b51d98ad31121c36a1bf7e5599e7ff55241afe630c93111e348e2a6
                                        
                                            GET /cm/i?pid=5574edef-da44-408c-96f2-796f6a84a753&u_scsid=3de52259-d60d-4f84-923f-d456ef1d082c&u_sclid=07680363-7d1b-4274-bec3-bd48070f1c23 HTTP/1.1 
Host: tr.snapchat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         35.190.43.134
HTTP/2 200 OK
content-type: text/html
                                        
date: Tue, 20 Sep 2022 20:38:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 0
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3064
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:18 GMT
Last-Modified: Tue, 20 Sep 2022 19:47:14 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /p HTTP/1.1 
Host: tr.snapchat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------16233624972114919874256413343
Content-Length: 2276
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.190.43.134
HTTP/2 200 OK
content-type: text/html
                                        
date: Tue, 20 Sep 2022 20:38:18 GMT
access-control-allow-origin: https://www.visiblecollege.education
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgREAIQgDsIm4k4pVx1HsT8Hwnzg/VzLsQmExcewyw7CooXxbjion+2zEXtV+hEB6pjIAAAA=;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 12
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size:   68
Md5:    c4a2b870062c2bb98c500bc1526c0498
Sha1:   528666ccdb12997358077bc8fcdbfb6b825c7788
Sha256: 2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
                                        
                                            POST /g/collect?v=2&tid=G-VY2RPVKG9S&gtm=2oe9j0&_p=1078631832&cid=1595836262.1663706298&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663706297&sct=1&seg=0&dl=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-cx.html&dt=Unsubscribe%20-%20CX%20-%20Visible%20Music%20College&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.32.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://www.visiblecollege.education
date: Tue, 20 Sep 2022 20:38:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /ddm/fls/i/src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=3209322557811.547;~oref=https://www.visiblecollege.education/ HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9188115.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         172.217.21.162
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 20:38:18 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 402
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (532), with no line terminators
Size:   402
Md5:    bb97103acfddc54039380c78c1028676
Sha1:   04b80d52e6fbb80f69269af03071f574f8f53705
Sha256: 55f5a8d9db05a7b66543849e3cfc15e1a031454f26f40e5e7a37692861610df0
                                        
                                            GET /i18n/pixel/config.js?sdkid=C44PDBJR2IL96OOAVENG&hostname=www.visiblecollege.education HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 202209202038182C346ED0431E6799AF45
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b5e9e3ecd8bfb8ce4cbca76b43126e3715f27470e01d059cc2a2e02567c17f6d1d456172cbc3bf82d4e330d7febb3aef9
content-encoding: gzip
expires: Tue, 20 Sep 2022 20:38:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 373
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
set-cookie: _ttp=2F329uDiknY0TuLGSY7ItSnAOM1; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=4, cdn-cache; desc=MISS, edge; dur=1, origin; dur=108
x-origin-response-time: 108,23.36.79.28
x-akamai-request-id: 23bae2a6
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (321)
Size:   373
Md5:    dbf8b8b528034d6f3f76563139979b80
Sha1:   8e804266bbd5141ecb3750a7a6e697566a137224
Sha256: e46115a1ec3cd38a5c284668d3a42e42cc3c2f3eef6c75724e7e0826ca02b0a8
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3487
Expires: Tue, 20 Sep 2022 21:36:25 GMT
Date: Tue, 20 Sep 2022 20:38:18 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9873
x-amzn-requestid: 7171299f-e6e3-40ef-a292-33779346e1ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI-FDIIAMF-xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-31f9413434a6b00e77e7709b;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: evL3aL1ULo6B2a8Rp6iILKCX7F14O9HMSbEqkEY3XHFhmMptE8FaVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:44 GMT
age: 80914
etag: "0e14f5062e40ce94346494ff947bfcf74b5e88c1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9873
Md5:    7ca0c1a7f205ad07f1cce80b26448873
Sha1:   0e14f5062e40ce94346494ff947bfcf74b5e88c1
Sha256: ebc960279032671136749823c126ec807334d9eaf2b019abcc63b41bcdbf4a7f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 10:06:02 GMT
age: 37936
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10894
Md5:    d3e70b2859ca89b353682d03f6b46b93
Sha1:   ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
Sha256: 43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -VBFetQNkmIiWeJtW5IOheaPLdDHM9iKhiGPzVcA3_KQk7Qha5VrXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:14:25 GMT
age: 80633
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9543
Md5:    30fbdfee7ec4513a5ff3dfcb7282f816
Sha1:   a852edb64a7220532aa619ab2a440c3a7e11b97a
Sha256: 4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
age: 80915
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11832
Md5:    2ed7323b395e757f7766ea0045efdaca
Sha1:   8b91bc3069a3217bc719c27959d578b353b5d9dc
Sha256: 8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:18 GMT
Last-Modified: Tue, 20 Sep 2022 20:01:52 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dFoAiPUD-2R74cYhuS2BP6dyvmWCP_f3vsqdW2_AGenfEPheSHMp7A==
Age: 2186

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:18 GMT
Last-Modified: Tue, 20 Sep 2022 19:46:02 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UJnV3qRwWIlZ0N1Z-Z7anHpIcaoCMgkmZt0N3kiebYFOj11AboVuTg==
Age: 3136

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9865
x-amzn-requestid: 7eeeff5b-cb13-4060-96a6-bf5a4be57331
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugokGQVoAMFXmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e169-4211dbbe1a22d0255a45aff0;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2kU9PLuzusMR04mNUdwbU6-120ESVhYJtNaIixERO68Vo9jEfP3JWg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:04:47 GMT
age: 81211
etag: "b8484fb5443344b03e52dd56b1d6c5682eb6221a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9865
Md5:    1a7d863845e96c5927e812f325c08c16
Sha1:   b8484fb5443344b03e52dd56b1d6c5682eb6221a
Sha256: fcb382029332a44deaf212298b618074a752d674d0c735a1b8b861ab4bb6ff0f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:18 GMT
Last-Modified: Tue, 20 Sep 2022 19:04:21 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7BpJRdxIFVwCGxE1BODRjWZoBUUtifs9AQou16pBk6sC14yswUH1Xw==
Age: 5637

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11145
x-amzn-requestid: dcb726a6-2f43-4170-a53c-4f0d2883309e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7yHfHIAMFu4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-11bf06e96123e01c11854cbb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJyChyEdTbGx6oQCRy6IVMS8qU22LupFYn6FOii3p4BUVFyKnssQ7Q==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:05:54 GMT
age: 81144
etag: "ff8286c4d2cf87a1865d56d082bc5235dba60ad7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11145
Md5:    c283017ec789693602177a2785177e21
Sha1:   ff8286c4d2cf87a1865d56d082bc5235dba60ad7
Sha256: 520db2567ad5529d35d2ac63b94d4186848382e9c86d0c4355ab979b34f0e0ab
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /i18n/pixel/identify.js HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 2022092020381808B7DC4AA9D214AFE03D
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b4bce0060db386cbbc2739594ca54e1ac0b40db12c3d34f59c1fdbaa96f909f7f175443611e58f45ecd890cf20868130e
content-encoding: gzip
expires: Tue, 20 Sep 2022 20:38:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Sep 2022 20:38:18 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=105
x-origin-response-time: 105,23.36.79.28
x-akamai-request-id: 23bae289
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   30944
Md5:    50fe40b343ebb9b5221dbeefeb2fff8c
Sha1:   13caf96f3c61a2d1cf6f20454086375d834e1293
Sha256: 05a7451fe3d421154a79090fce4660cebfd7da24683359056cb04a44896d6dcf
                                        
                                            POST /api/v2/pixel HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 704
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Cookie: _ttp=2F329uDiknY0TuLGSY7ItSnAOM1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20220920203818BBEF8AA182B4A08CC2DD
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1bebf56146beb35580b77d63d2c7235f3b77a35769ad32c8a425588fc832ae8cf954dc3d2a40caa642d46a1707615a3a581ef8efdb919a2eb7c1255b85795c7d1f0e
x-origin-response-time: 20,23.218.223.23
x-akamai-request-id: 456f1b5e.23bae454
expires: Tue, 20 Sep 2022 20:38:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Sep 2022 20:38:18 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-cache-remote: TCP_MISS from a23-218-223-23.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=100, origin; dur=20, inner; dur=14
x-parent-response-time: 120,23.36.79.28
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:18 GMT
Last-Modified: Tue, 20 Sep 2022 20:30:05 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uVWIA3CVzDciHb0Rxlntwb08gwjriL_gEdGyFP6z7M0XUYI9C2nURw==
Age: 493

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ddm/fls/i/src=9188115;type=invmedia;cat=georg0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=3209322557811.547;~oref=https://www.visiblecollege.education/ HTTP/1.1 
Host: adservice.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.66
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 20:38:18 GMT
expires: Tue, 20 Sep 2022 20:38:18 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size:   177
Md5:    9393b28661a65a763699c108887882eb
Sha1:   c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
Sha256: 2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
                                        
                                            GET /image.aspx?url=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-cx.html&title=Unsubscribe%20-%20CX%20-%20Visible%20Music%20College&res=1280x1024&accountid=66356305&rt=2383&prev=0471ecb3-bec9-60ea-ebec-3906e54bd855&luid=01610d73-f736-e509-9c63-e50a36811d42&rnd=61275 HTTP/1.1 
Host: 66356305.global.siteimproveanalytics.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         18.158.197.63
HTTP/2 200 OK
content-type: image/gif
                                        
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 34
set-cookie: AWSALB=iia40OXN0NOOoDZIZQYn7HwICBum4sg8fGsPcq3sA9CgIdHFK6xbN7MoGMqR/t4HExZs5x795yM+1I3xyeyufPZsk2dqVEBcmDgC9Sp73VH/JifFrCpJCsg77I2J; Expires=Tue, 27 Sep 2022 20:38:18 GMT; Path=/ AWSALBCORS=iia40OXN0NOOoDZIZQYn7HwICBum4sg8fGsPcq3sA9CgIdHFK6xbN7MoGMqR/t4HExZs5x795yM+1I3xyeyufPZsk2dqVEBcmDgC9Sp73VH/JifFrCpJCsg77I2J; Expires=Tue, 27 Sep 2022 20:38:18 GMT; Path=/; SameSite=None; Secure
cache-control: max-age=0
expires: Tue, 20 Sep 2022 20:38:18 UTC
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   34
Md5:    a82ba3a9d42148e9cf209df13d8c3f3d
Sha1:   dba80835d31175bdcf0bcad1abafefb06d86e304
Sha256: 1e85ec81b9800b4c443d39caca0d0926089a3ac201120db1ceb45b93789480b8
                                        
                                            GET /ping HTTP/1.1 
Host: discover.georgiasouthern.edu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.198.122.35
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Cache-Control: private
Content-Encoding: gzip
Expires: Tue, 20 Sep 2022 21:08:18 GMT
Set-Cookie: _hash=434609e5-197b-465f-a9ea-028c35941f08; path=/; secure; HttpOnly; SameSite=None _hash=434609e5-197b-465f-a9ea-028c35941f08; expires=Mon, 20-Sep-2027 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None _hashV=202209/1; path=/; secure; HttpOnly; SameSite=None _hashV=202209/1; expires=Mon, 20-Sep-2027 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None _node=1325402634.47873.0000; path=/; Httponly; Secure TS01e84c7d=01370406fa3d7b241c5fa51572440de2e84b7d0b9c59767c9beb9e989ba99539c9c4c23ba715269839ef7bc36bfd73b1eff655f72c; Path=/; HTTPOnly
Strict-Transport-Security: max-age=31536000
Referrer-Policy: origin-when-cross-origin
Date: Tue, 20 Sep 2022 20:38:17 GMT
Content-Length: 597


--- Additional Info ---
Magic:  ASCII text, with very long lines (998), with no line terminators
Size:   597
Md5:    6b0ad55082a2533a1bcbdeb6cf4d009c
Sha1:   b33362ead60ce87c791770f5df67eb5e70cc2883
Sha256: 2e1e1b23ca16f7be69aed89bdc4d800f6fc3d2affab962a806d0095f39ca56d6
                                        
                                            GET /admissions44/form/Wearesorrytoseeyougo93/formperma/PoYFQDFO2Mn0UNgMkSCRTSFHJv7Rll6vps0kKm3ekdA HTTP/1.1 
Host: forms.zohopublic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         136.143.190.97
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Server: ZGS
Date: Tue, 20 Sep 2022 20:38:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: 383aeadb58=f7d6e3cf51bbcd65a70de2d76f06f6f2; Path=/
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
vary: accept-encoding
Content-Encoding: gzip
Content-Language: en-US
Strict-Transport-Security: max-age=63072000


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (18662)
Size:   20727
Md5:    e0d497eaea757cca891036ff50e86e7c
Sha1:   6c28f8371efc596468950cea3736adc44a808aae
Sha256: 9d82f562455d296b5530e08d404155e29d02cc799fdc6e9b6a95c50b3520fd3d
                                        
                                            GET /tv2track.js HTTP/1.1 
Host: collector-5081.tvsquared.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.132.187.123
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=600
Content-Encoding: gzip
Date: Tue, 20 Sep 2022 20:38:18 GMT
ETag: "6305f9ab-2133"
Expires: Tue, 20 Sep 2022 20:48:18 GMT
Last-Modified: Wed, 24 Aug 2022 10:12:59 GMT
Server: nginx
X-Robots-Tag: noindex
Content-Length: 8499
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1162)
Size:   8499
Md5:    541a38b4f06e41464c0d654e841ac424
Sha1:   d8e6cdf23733cbe85120de52b58c2c7dbe746758
Sha256: 55df73bbedbdb87259af7ccc47efce4497781d0a3154e97a8e07ff059ace234d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 15:09:30 GMT
Expires: Mon, 26 Sep 2022 15:09:29 GMT
Etag: "7b50eea7a5c5a78c47141c26afaf651bcfdbf494"
Cache-Control: max-age=498070,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74dd5d2ddc381bfe-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 15:09:30 GMT
Expires: Mon, 26 Sep 2022 15:09:29 GMT
Etag: "7b50eea7a5c5a78c47141c26afaf651bcfdbf494"
Cache-Control: max-age=498070,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74dd5d2dd8acb512-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 15:09:30 GMT
Expires: Mon, 26 Sep 2022 15:09:29 GMT
Etag: "7b50eea7a5c5a78c47141c26afaf651bcfdbf494"
Cache-Control: max-age=498070,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74dd5d2dfd510b69-OSL

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /forms/css/formsthirdparty.2755260429cd02c98112dac6f4b5b8ce.css HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
                                        
server: ZGS
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 11641
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "a338608fc2b539683c6cccb5717cf0aa"
content-language: en-US
last-modified: Wed, 19 May 2021 11:03:01 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 30f4229d23c5d11af4342553d93e957b
z-origin-id: ex1-221f4e95e4cc469baf8d19997f7da8d0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65440)
Size:   11641
Md5:    a338608fc2b539683c6cccb5717cf0aa
Sha1:   e9a5f68ee4fe0972da9cf6ce40df9e170e217b87
Sha256: 6a43f0b04d96257c7b01e2564e33b5e780582a1d1cceb31678d5e101b3a834bd
                                        
                                            GET /forms/js/formsthirdpartylivejs.fa80d21e90eb2a92193fc45ef5617573.js HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
                                        
server: ZGS
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 37358
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "519d10234a6e863f26825a7305cb746c"
content-language: en-US
last-modified: Wed, 19 May 2021 11:03:03 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 161109b13ae0f16b9354958258b29236
z-origin-id: ex1-6ec9e3aca648417e8fb3bdb189aaea3a
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   37358
Md5:    519d10234a6e863f26825a7305cb746c
Sha1:   b1dbdc7b42c01f843ac8bb952aa41aedda86deda
Sha256: cc63dff891f38e2246bd46f551780ebcbefef78dc9deba4070dc48cff295fc5f
                                        
                                            OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.visiblecollege.education/
Origin: https://www.visiblecollege.education
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.82.13.103
HTTP/2 200 OK
                                        
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.visiblecollege.education
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2

                                        
                                            GET /forms/css/formslive.6f1e20fc7514a1ba7e3da243d51d97c1.css HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
                                        
server: ZGS
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 46555
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "73670aaf7e0827f40a997337f821482d"
content-language: en-US
last-modified: Fri, 16 Sep 2022 08:34:41 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: ab3992cd8f3e31c8cc7092904b2648bf
z-origin-id: ex1-a9ff595d572d4bf9a280844533a92804
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65430)
Size:   46555
Md5:    73670aaf7e0827f40a997337f821482d
Sha1:   4bfa77008ad61947ac1cc3f7376a09376c74268d
Sha256: b61389e59ed0dc609b42ead8e3915f8fe59089911b0edb6373afaaeb280a4056
                                        
                                            GET /forms/css/themes/media/customMedia.bdbbc9b6f964ee4f4c1d1debd83b0068.css HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
                                        
server: ZGS
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 193
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "daa87951fc446e172d1546a8e9bc1f48"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:52 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: cbb771dfd5a44e535f0ce1bd857d70c4
z-origin-id: ex1-ac06761f9f914132884370dd85049cff
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   193
Md5:    daa87951fc446e172d1546a8e9bc1f48
Sha1:   9d2a19e2146513420966df2550d1dfe5e01a6c8b
Sha256: 56b021f87c4b7b7835a494ec63f8bd320d7bb9766989d01f7cc80f6aec32261c
                                        
                                            GET /forms/css/themes/media.39339956c202c136a11c5e49e29b909e.css HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
                                        
server: ZGS
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 5590
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "22ac534e0ef19e0059c5fb948d8c19b4"
content-language: en-US
last-modified: Thu, 09 Jun 2022 09:28:48 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: de1b9fde6770bd3be0d5eb5c788e89c4
z-origin-id: ex1-9181afcfc0864ae090de8acf5a50ad2a
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   5590
Md5:    22ac534e0ef19e0059c5fb948d8c19b4
Sha1:   8c0707de1cd88cfbe53cbd076af841c739ab558a
Sha256: e25f8b6067e27b99568f9ff0b48bb6e52d9585d1ca299c1592e6cd6d71d64bb0
                                        
                                            GET /forms/js/formscommonlive.66b46fe834fedf0c45347fdc5ff8e7ce.js HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
                                        
server: ZGS
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 25616
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "7f81b560bafd0599cc2fe45f6a98b431"
content-language: en-US
last-modified: Tue, 20 Sep 2022 07:13:13 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 0a84231d9aff22578ba23ef13fc2a903
z-origin-id: ex1-919bfcd989604b858003146514ac23e5
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   25616
Md5:    7f81b560bafd0599cc2fe45f6a98b431
Sha1:   a23f6bacb9d145b3b5a472543bb8f4238f313c16
Sha256: ab8a6edae9a69d352b0dcb7b0665c3e049104f8d82f31c21645edba0c9b7c171
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:18 GMT
Last-Modified: Tue, 20 Sep 2022 18:57:39 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GUmHYz3aOk9jIibFZjWbnYcHYJWWmn_1_51mlqTH40SljkGc8F7oFw==
Age: 6039

                                        
                                            GET /forms/js/formslive.0749e7d876e08624d4ea48aa2cf0c94d.js HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
                                        
server: ZGS
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 109436
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "82b8fdcca298607a63603d512e05795a"
content-language: en-US
last-modified: Tue, 20 Sep 2022 07:13:12 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 86155060e542ef83a8abf8e91876fda5
z-origin-id: ex1-c0e5f1ea5448476a9102e7cf07014cfc
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65433)
Size:   109436
Md5:    82b8fdcca298607a63603d512e05795a
Sha1:   4e7745d199c3acdd373164338c9a4dc57e0f71d9
Sha256: abb8d473f3ce6d0a5f4f999265b334309c524b5ec04b64d826108a2f93c278a1
                                        
                                            GET /forms/images/warning-info.607d397302b1f344f8d8df1258004046.png HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: image/png
                                        
server: ZGS
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 613
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "795e63fefb59c2bff5f31b157b6d01e9"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:20 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 8ec5d8347b4e827d4c7defa165e3bd3f
z-origin-id: ex1-9350c5601fcb48328b195e9d123060dd
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 70 x 69, 8-bit colormap, non-interlaced\012- data
Size:   613
Md5:    795e63fefb59c2bff5f31b157b6d01e9
Sha1:   3ee71d25fe4f55464cd8a8444a5cb377b443bc4d
Sha256: 5e1c9c77a6d4cb7a4e0c844a0855b7372dfe6a835ad22015dd2429d035349993
                                        
                                            GET /forms/images/loader.79de1b954774690fff0e7345d82faa25.gif HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: image/gif
                                        
server: ZGS
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 2558
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "8f3d3ae8228ea0894bbcba2f0dc68375"
content-language: en-US
last-modified: Wed, 19 May 2021 11:02:33 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 9ac4f0d1c7bb528d6ec9aea85e89d801
z-origin-id: ex1-247f86b9b82a473da82f8c0ba8f1d817
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 24 x 24\012- data
Size:   2558
Md5:    8f3d3ae8228ea0894bbcba2f0dc68375
Sha1:   807d493a6b66eaa5a2c32f5c1588f2a22b371276
Sha256: ae88234e6373f222a729d38c75dc250f4928e61cde23148267551d517cba42d5
                                        
                                            GET /formstatic/fonts?family=Open+Sans:400,700i,700,600i,600,400i,300i,300 HTTP/1.1 
Host: forms.zohopublic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/admissions44/form/Wearesorrytoseeyougo93/formperma/PoYFQDFO2Mn0UNgMkSCRTSFHJv7Rll6vps0kKm3ekdA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         136.143.190.97
HTTP/1.1 200
Content-Type: text/css;charset=UTF-8
                                        
Server: ZGS
Date: Tue, 20 Sep 2022 20:38:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: 383aeadb58=1b5f58873a9007ab79efd25117bfdf05; Path=/
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
X-Frame-Options: DENY
vary: accept-encoding
Content-Encoding: gzip
Content-Language: en-US
Strict-Transport-Security: max-age=63072000


--- Additional Info ---
Magic:  ASCII text
Size:   220
Md5:    9a28d1179664ba6bc299429fa6ad2ffc
Sha1:   75e6c37130a729665af1b3255889f1d7bc9f6b50
Sha256: c3c5f38d3b34298da17c03f724f13edbfc2a0b91f0f6638501b34b17da8219a8
                                        
                                            GET /tv2track.php?action_name=Unsubscribe%20-%20CX%20-%20Visible%20Music%20College&idsite=TV-45901881-1&rec=1&r=819723&h=20&m=38&s=18&url=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-cx.html&_id=41c8a44eabec8121&_idts=1663706299&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024&gt_ms=185 HTTP/1.1 
Host: collector-5081.tvsquared.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.132.187.123
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: e7bb4c2f-53ef-4dd8-b63e-885fdd4de070
Server: nginx
Content-Length: 42
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    00657dd79637a8daf5e6196ca17f1887
Sha1:   3e064855d1fe7c6eac52981a646ec5840ba7efb5
Sha256: f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 15:09:30 GMT
Expires: Mon, 26 Sep 2022 15:09:29 GMT
Etag: "7b50eea7a5c5a78c47141c26afaf651bcfdbf494"
Cache-Control: max-age=498070,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74dd5d2de92cb505-OSL

                                        
                                            GET /forms/js/formstplivejs.5598e1e583c1d09fc270b76b7bc87fed.js HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
                                        
server: ZGS
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 30037
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "545c72fc1816fa5e467e58efd4d47adb"
content-language: en-US
last-modified: Wed, 19 May 2021 11:03:04 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: f8995699c54826b5c0b29c013d11ec89
z-origin-id: ex1-8e394c8460e24c029c6e3b9eb7822840
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size:   30037
Md5:    545c72fc1816fa5e467e58efd4d47adb
Sha1:   de21bdceadd7365dd432fb5179a5b9f4ac853b92
Sha256: 1a2edd219fb3224cb0045ef280499f1e951f3a393c069efe88449807721735d6
                                        
                                            GET /ping?id=bef102ba-14f4-ed87-e020-5c2c1773bae3&sid=qZsN758jV_3tvHAED79xLUulcXKoOwH5FmsJd4g8RIVciQX7WZ_fxQ2DaoY27D6iI2btEc0Rv2XSW99MbnnLRw8AWy4zJe_UHzJMa80Jra6Z0mXJJ_7pJT0Jls6hy02z&hid=3f7ced0d-cd82-86f7-a2a7-fc411c7bf6c0 HTTP/1.1 
Host: mx.technolutions.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.14
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 4469
server: CloudFront
date: Tue, 20 Sep 2022 20:38:18 GMT
cache-control: private, max-age=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: hxzcFtELKUrBEZDNdpemeEjzgk9aewESoOO4bOarKu1jZ2j4MQymLA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4469
Md5:    cca12dedba58f218409d3c3fab9fa2d5
Sha1:   83e48eda4c5d7ab9206b55b25f39da4c7c354994
Sha256: 448a26fb8e894631426800385502060880fc8fffa8935c8c4a2015d7054af50b
                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1864
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         35.82.13.103
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 2
server: nginx
set-cookie: sp=636d4431-bd34-4a77-89dd-e744b5033d75; Expires=Wed, 20 Sep 2023 20:38:18 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.visiblecollege.education
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    444bcb3a3fcf8389296c49467f27e1d6
Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 15:09:30 GMT
Expires: Mon, 26 Sep 2022 15:09:29 GMT
Etag: "7b50eea7a5c5a78c47141c26afaf651bcfdbf494"
Cache-Control: max-age=498070,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74dd5d2ddfbbb511-OSL

                                        
                                            GET /forms/css/themes/custom.188b5c3635ff5b5d96f7f360387fe751.css HTTP/1.1 
Host: static.zohocdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.20.209.147
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
                                        
server: ZGS
date: Tue, 20 Sep 2022 20:38:18 GMT
content-length: 12324
x-content-type-options: nosniff
x-xss-protection: 1
cache-control: public, max-age=7776000, immutable
etag: "1314cc1a858f1948b93bef9027c9bb57"
content-language: en-US
last-modified: Mon, 16 May 2022 07:44:34 GMT
content-encoding: br
access-control-expose-headers: *
access-control-allow-origin: *
vary: Accept-Encoding
strict-transport-security: max-age=15768000
timing-allow-origin: *
x-cache: HIT
nb-request-id: 4fe7878c4a43bc5d559d7be1f91b144f
z-origin-id: ex1-5baf7eb90a3340a99848857bb2a87ed3
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (454)
Size:   12324
Md5:    1314cc1a858f1948b93bef9027c9bb57
Sha1:   c9842d9085084f326871be17bb974468641bc807
Sha256: 6a084dc59332e9b5afce1895118892bd55770de71f4e7b33e23067341cce8a6b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:18 GMT
Last-Modified: Tue, 20 Sep 2022 18:57:39 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: H_XqYIIIFn1dVIi9gHQhHT4_pSy_0b5cocEpUg_94nlh9s-eQjvQjA==
Age: 6039

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3825
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:18 GMT
Last-Modified: Tue, 20 Sep 2022 19:34:33 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.14
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: qCIsL/RqK05L/+4AlPXlfqSj1RwzrwnlIBhPJ9An31gEJidBaJtW5ootxkAgcwEyYIbQKCHAw+xR6w/SfwuiqQ==
priority: u=3,i
content-length: 26839
x-fb-trip-id: 1679558926
date: Tue, 20 Sep 2022 20:38:19 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   26839
Md5:    9ecd89752214ef749272eef344b9089a
Sha1:   70a58a49c08934265ee34c74efb01d6b3124095d
Sha256: f76c51487e348977288fcaf83984cd8fe4e73758cc352402774d9eb94680d528
                                        
                                            GET /opensansbold/font.woff HTTP/1.1 
Host: webfonts.zohowebstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.zohopublic.com
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.34
HTTP/2 200 OK
content-type: application/font-woff
                                        
content-length: 70128
server: ZGS
date: Thu, 11 Aug 2022 22:29:17 GMT
last-modified: Wed, 28 Jul 2021 13:35:26 GMT
etag: "61015d1e-111f0"
expires: Fri, 11 Aug 2023 22:29:17 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7NACZAtm8XQjNcR7SUDqK2Sb9K7Kfz45x_zsPiLf2_-c39RbWaIlBg==
age: 3449342
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 70128, version 0.0\012- data
Size:   70128
Md5:    0369ece0ad8891e7aaf14abc4294e5ae
Sha1:   6fbc2965b490b558702ee6af2facaae41a5e13b5
Sha256: 77180141da496f33b3a6a909ae063e620a6bebd83d228c19d2064b261dfdb751
                                        
                                            GET /opensansitalic/font.woff HTTP/1.1 
Host: webfonts.zohowebstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.zohopublic.com
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.34
HTTP/2 200 OK
content-type: application/font-woff
                                        
content-length: 65140
server: ZGS
date: Fri, 02 Sep 2022 14:21:30 GMT
last-modified: Wed, 28 Jul 2021 13:35:35 GMT
etag: "61015d27-fe74"
expires: Sat, 02 Sep 2023 14:21:30 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: p_QxKgT6GDJsp7M_MVBUlR2C9z-wAW1a4Gb2igm_vhlA6gXVKXF6ZQ==
age: 1577808
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 65140, version 0.0\012- data
Size:   65140
Md5:    d03b5f6162242a2684e82f4817866d74
Sha1:   6a213ba96ecc80c0819a17a637c0f0227aa6e607
Sha256: 0563263549f5b1b03297da7100d9acf32a4df025f936c347181619e8fdaf72ea
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3826
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:19 GMT
Last-Modified: Tue, 20 Sep 2022 19:34:33 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /ping HTTP/1.1 
Host: exploregrad.georgiasouthern.edu
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.198.122.35
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Cache-Control: private
Content-Encoding: gzip
Expires: Tue, 20 Sep 2022 21:08:19 GMT
Set-Cookie: _hash=8ea5f29d-d5d1-4299-bfa7-4d8d3ea224e8; path=/; secure; HttpOnly; SameSite=None _hash=8ea5f29d-d5d1-4299-bfa7-4d8d3ea224e8; expires=Mon, 20-Sep-2027 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None _hashV=202209/1; path=/; secure; HttpOnly; SameSite=None _hashV=202209/1; expires=Mon, 20-Sep-2027 04:00:00 GMT; path=/; secure; HttpOnly; SameSite=None _node=1325402634.47873.0000; path=/; Httponly; Secure TS01e84c7d=01370406fab9cb77c6c54c02f8b6583c653437a8b705b80611d577b52243c7e69a6a5a7cdee9389f51856ac029abfba870c95811d8; Path=/; HTTPOnly
Strict-Transport-Security: max-age=31536000
Referrer-Policy: origin-when-cross-origin
Date: Tue, 20 Sep 2022 20:38:18 GMT
Content-Length: 426


--- Additional Info ---
Magic:  ASCII text, with very long lines (644), with no line terminators
Size:   426
Md5:    36fcb22927327face3dc0661704c2772
Sha1:   d03bcac524f9770a2a11157f627c49625b295a75
Sha256: dc539d7498b0ad44e09ff219c981a06f698a8699f057ae675bbae585bdcd13bc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:19 GMT
Last-Modified: Tue, 20 Sep 2022 20:28:19 GMT
Server: ECS (dcb/7FA5)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GWlBWkQ7OTlZ4AiBkIoZop9WaHpp2-G0jbnMdQ0jJcYUQo1JMYX2dQ==
Age: 600

                                        
                                            GET /opensans/font.woff2 HTTP/1.1 
Host: webfonts.zohowebstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forms.zohopublic.com
Connection: keep-alive
Referer: https://forms.zohopublic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.34
HTTP/2 200 OK
content-type: application/octet-stream
                                        
content-length: 51084
server: ZGS
date: Sun, 03 Jul 2022 05:02:18 GMT
last-modified: Wed, 28 Jul 2021 13:35:31 GMT
etag: "61015d23-c78c"
expires: Mon, 03 Jul 2023 05:02:18 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3QIAA6rJlHh_cyGqxEnHSZtlRg916cF16HYFmr300uk9NEH9_G1urQ==
age: 6881761
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 51084, version 1.6554\012- data
Size:   51084
Md5:    ed0d14764bbe7e7ae8cd093af6c12c5b
Sha1:   74ef71b6a0b867d772a639179ad55233659c4ee2
Sha256: 5ceec82f9678fbbb7630f682842efddfff95f8a1c4e913b3c236a22ef8cac959
                                        
                                            POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 
Host: www.visiblecollege.education
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/unsubscribe-cx.html
Cookie: is_mobile=0; language=en; _gcl_au=1.1.1252482103.1663706297; _ga_VY2RPVKG9S=GS1.1.1663706297.1.0.1663706297.0.0.0; _ga=GA1.2.1595836262.1663706298; _snow_ses.e20b=*; _snow_id.e20b=6d471c40-e581-48c3-9cbf-d0f03a9a640e.1663706298.1.1663706298.1663706298.0dcfd88e-3b58-4bf6-b05f-d9b35a279cdd; _gid=GA1.2.1763376791.1663706298; _scid=b48c418a-0239-4cde-b05b-f8614c832926; nmstat=0471ecb3-bec9-60ea-ebec-3906e54bd855; MGX_UC=JTdCJTIyTUdYX1AlMjIlM0ElN0IlMjJ2JTIyJTNBJTIyYjZkNGMwMTYtYTJjNi00OTg1LWFiODAtZmU4YzgxMjI1MjUyJTIyJTJDJTIyZSUyMiUzQTE2NjQyMzE4OTg2MDUlN0QlMkMlMjJNR1hfUFglMjIlM0ElN0IlMjJ2JTIyJTNBJTIyNjBhYWQwY2YtYmRmNy00OWMyLTljZGUtYmY2YWJkZThiYzkzJTIyJTJDJTIycyUyMiUzQXRydWUlMkMlMjJlJTIyJTNBMTY2MzcwODA5ODYwOSU3RCUyQyUyMk1HWF9DSUQlMjIlM0ElN0IlMjJ2JTIyJTNBJTIyZjRjOWI4MmQtMGM2My00Nzc5LWE5YmQtYzYzNDAxMmI2YTJlJTIyJTJDJTIyZSUyMiUzQTE2NjQyMzE4OTg2MDklN0QlN0Q=; _tq_id.TV-45901881-1.93e4=41c8a44eabec8121.1663706299.0.1663706299..
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.71
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Tue, 20 Sep 2022 20:38:19 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu47.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Size:   348
Md5:    a944dd688c99d2901d6719be713271c0
Sha1:   4f5454d5d434829baf46671638610791758725d9
Sha256: adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /tr/?id=442225499993182&ev=PageView&dl=https%3A%2F%2Fwww.visiblecollege.education%2Funsubscribe-cx.html&rl=&if=false&ts=1663706299297&sw=1280&sh=1024&v=2.9.83&r=stable&ec=0&o=30&fbp=fb.1.1663706299296.1051078528&it=1663706299090&coo=false&exp=a0&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: image/gif
                                        
date: Tue, 20 Sep 2022 20:38:19 GMT
expires: Tue, 20 Sep 2022 20:38:19 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   44
Md5:    b798f4ce7359fd815df4bdf76503b295
Sha1:   f8cc6addf1707ad236ad9970b0a48f9733d07da5
Sha256: 10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
                                        
                                            GET /init?pids=5574edef-da44-408c-96f2-796f6a84a753 HTTP/1.1 
Host: tr.snapchat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Origin: https://www.visiblecollege.education
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.190.43.134
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 20 Sep 2022 20:38:18 GMT
access-control-allow-origin: https://www.visiblecollege.education
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /v1/C/RawData/A02686A39F7C?v=b6d4c016-a2c6-4985-ab80-fe8c81225252&se=60aad0cf-bdf7-49c2-9cde-bf6abde8bc93&d=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%3D%3D&callback=cbd0dfac0960f468 HTTP/1.1 
Host: api.datasteam.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.225.77.105
HTTP/1.1 200 OK
                                        
Date: Tue, 20 Sep 2022 20:38:18 GMT
Server: Kestrel
Set-Cookie: MGX_U=57770d5d-5a34-43f4-9950-1263026525ad; expires=Wed, 20 Sep 2023 20:38:19 GMT; domain=.datasteam.io; path=/; secure; samesite=none MGX_A02686A39F7C=b6d4c016-a2c6-4985-ab80-fe8c81225252; expires=Wed, 20 Sep 2023 20:38:19 GMT; domain=.datasteam.io; path=/; secure; samesite=none MGX_PX_A02686A39F7C=60aad0cf-bdf7-49c2-9cde-bf6abde8bc93; expires=Tue, 20 Sep 2022 21:08:19 GMT; domain=.datasteam.io; path=/; secure; samesite=none
Content-Length: 209
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   209
Md5:    2032bcfc1a0bcfff3beeb9ccf7d0823e
Sha1:   58e4438b80bd37e00fc903b3543d5f9ec739e048
Sha256: e78e510639787ef4e31e99cb6fc04dd3d2f5f57cc599e0000e588949c7c83d67
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2676
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:19 GMT
Last-Modified: Tue, 20 Sep 2022 19:53:43 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 727

                                        
                                            GET /js/D2A02686A39F7C.js HTTP/1.1 
Host: cdn.datasteam.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.33
HTTP/2 200 OK
content-type: application/x-javascript
                                        
last-modified: Mon, 18 Jul 2022 20:18:05 GMT
server: AmazonS3
content-encoding: gzip
date: Tue, 20 Sep 2022 04:50:42 GMT
cache-control: max-age=600,s-maxage=86400
etag: W/"9fc031330761f7e2da55de0eba6cd93d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bAYpZtssuN8sZnavMsfqPaGxDKLx_ftwGDLw1wHLpvBPj76nU1tGrw==
age: 56857
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   22862
Md5:    8eb6259efa8d1ba0c35054650fe2b1aa
Sha1:   edb7e6e39cfb84acfd353741cb2ce1f7975e6775
Sha256: 157147e007dde05a2c790661de2afc884878acf10b84347fe49ff179a88b1b21
                                        
                                            GET /adscores/g.jsonp?sid=9202274878&userid=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252 HTTP/1.1 
Host: aa.agkn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.75.14.26
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 20 Sep 2022 20:38:19 GMT
content-length: 82
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3AmjZgl%2FZD7cdLm30Fz7cZkwi%2Fgujk4w9V; Path=/; Domain=.agkn.com; Expires=Wed, 20-Sep-2023 20:38:19 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   82
Md5:    ae708136e46f5ab7a3be5d2a6ff558ac
Sha1:   cfddee7c8aaf2245d3a531efb187df16cf35c751
Sha256: 9e446e75dc20b6dc693b247aaf7704112e55ef434588368aa0761fc76b3a29a5
                                        
                                            GET /v1/C/RawData/A02686A39F7C?v=b6d4c016-a2c6-4985-ab80-fe8c81225252&se=60aad0cf-bdf7-49c2-9cde-bf6abde8bc93&d=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%3D%3D&callback=cbb6859bebc205e HTTP/1.1 
Host: api.datasteam.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Cookie: MGX_U=57770d5d-5a34-43f4-9950-1263026525ad; MGX_A02686A39F7C=b6d4c016-a2c6-4985-ab80-fe8c81225252; MGX_PX_A02686A39F7C=60aad0cf-bdf7-49c2-9cde-bf6abde8bc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.225.77.105
HTTP/1.1 200 OK
                                        
Date: Tue, 20 Sep 2022 20:38:19 GMT
Server: Kestrel
Set-Cookie: MGX_U=57770d5d-5a34-43f4-9950-1263026525ad; expires=Wed, 20 Sep 2023 20:38:19 GMT; domain=.datasteam.io; path=/; secure; samesite=none MGX_A02686A39F7C=b6d4c016-a2c6-4985-ab80-fe8c81225252; expires=Wed, 20 Sep 2023 20:38:19 GMT; domain=.datasteam.io; path=/; secure; samesite=none MGX_PX_A02686A39F7C=60aad0cf-bdf7-49c2-9cde-bf6abde8bc93; expires=Tue, 20 Sep 2022 21:08:19 GMT; domain=.datasteam.io; path=/; secure; samesite=none
Content-Length: 208
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   208
Md5:    2ddd9adf067ee9f3cfd63d30455425cf
Sha1:   5ac60d505be2c6d5865f1aabebdcddf438eb0d21
Sha256: 092af0e27468121008920eaf7631dbb84fa987efe492cbea9f57d52f38ddb107
                                        
                                            GET /v1/C/RawData/A02686A39F7C?v=b6d4c016-a2c6-4985-ab80-fe8c81225252&se=60aad0cf-bdf7-49c2-9cde-bf6abde8bc93&d=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&callback=cbe1be9c8348214 HTTP/1.1 
Host: api.datasteam.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Cookie: MGX_U=57770d5d-5a34-43f4-9950-1263026525ad; MGX_A02686A39F7C=b6d4c016-a2c6-4985-ab80-fe8c81225252; MGX_PX_A02686A39F7C=60aad0cf-bdf7-49c2-9cde-bf6abde8bc93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.225.77.105
HTTP/1.1 200 OK
                                        
Date: Tue, 20 Sep 2022 20:38:19 GMT
Server: Kestrel
Set-Cookie: MGX_U=57770d5d-5a34-43f4-9950-1263026525ad; expires=Wed, 20 Sep 2023 20:38:19 GMT; domain=.datasteam.io; path=/; secure; samesite=none MGX_A02686A39F7C=b6d4c016-a2c6-4985-ab80-fe8c81225252; expires=Wed, 20 Sep 2023 20:38:19 GMT; domain=.datasteam.io; path=/; secure; samesite=none MGX_PX_A02686A39F7C=60aad0cf-bdf7-49c2-9cde-bf6abde8bc93; expires=Tue, 20 Sep 2022 21:08:19 GMT; domain=.datasteam.io; path=/; secure; samesite=none
Content-Length: 208
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   208
Md5:    ade51b98008bb83d78b3c60750626455
Sha1:   15ab3608ffb2c8274bcc0ad94ea4398781767271
Sha256: b8d9f74eba7d4382a8e3a9290b9aea2aa63d21d1e45cbd7f8f7a297c80b52865
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:20 GMT
Last-Modified: Tue, 20 Sep 2022 18:52:31 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IhSwelHgNClvf5bnnvjJzTltDsvrae-n_hMEdCp_Ab0VxCEtytJMOQ==
Age: 6349

                                        
                                            GET /collector/is_enabled?pids=5574edef-da44-408c-96f2-796f6a84a753&tld=education HTTP/1.1 
Host: tr.snapchat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Origin: https://www.visiblecollege.education
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.190.43.134
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 20 Sep 2022 20:38:18 GMT
access-control-allow-origin: https://www.visiblecollege.education
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   101
Md5:    a45f885455b75e93469ab7287af23d78
Sha1:   4140b6c447642d863267ff1cbdbc9f99779d417e
Sha256: 24089813faca9b0914cdcf403b468ee5c00cb8121dba51960ef422fbd4a607e8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 20:38:20 GMT
Last-Modified: Tue, 20 Sep 2022 19:41:11 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2gvmPJZlOMXfrK1bHKycASyabpqr5IDlvjd8BaDEaDZDL_pTrmi6lQ==
Age: 3429

                                        
                                            GET /v1/visitaction/nspx?segment=000&userID=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252&takID=A02686A39F7C&seg1= HTTP/1.1 
Host: api.datasteam.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Cookie: MGX_U=57770d5d-5a34-43f4-9950-1263026525ad; MGX_A02686A39F7C=b6d4c016-a2c6-4985-ab80-fe8c81225252; MGX_PX_A02686A39F7C=60aad0cf-bdf7-49c2-9cde-bf6abde8bc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.225.77.105
HTTP/1.1 302 Found
                                        
Date: Tue, 20 Sep 2022 20:38:19 GMT
Location: https://i.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252
Server: Kestrel
Set-Cookie: MGX_EID_A02686A39F7C=ns_seg_000; expires=Wed, 21 Sep 2022 20:38:20 GMT; domain=.datasteam.io; path=/; secure; samesite=none
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252 HTTP/1.1 
Host: i.liadm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         50.16.108.1
HTTP/1.1 303 See Other
                                        
Date: Tue, 20 Sep 2022 20:38:20 GMT
Content-Length: 0
Connection: keep-alive
Location: /s/63537?bidder_id=242861&bidder_uuid=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252&_li_chk=true&previous_uuid=720c6320c30844c69e3f6a94cef0fe09
Set-Cookie: lidid=720c6320-c308-44c6-9e3f-6a94cef0fe09; Max-Age=63072000; Expires=Thu, 19 Sep 2024 20:38:20 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains

                                        
                                            GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252 HTTP/1.1 
Host: i.liadm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         50.16.108.1
HTTP/1.1 303 See Other
                                        
Date: Tue, 20 Sep 2022 20:38:20 GMT
Content-Length: 0
Connection: keep-alive
Location: /s/63537?bidder_id=242861&bidder_uuid=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252&_li_chk=true&previous_uuid=5c9da377a1f84d1b98f04eb0d148cec7
Set-Cookie: lidid=5c9da377-a1f8-4d1b-98f0-4eb0d148cec7; Max-Age=63072000; Expires=Thu, 19 Sep 2024 20:38:20 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains

                                        
                                            GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252&_li_chk=true&previous_uuid=5c9da377a1f84d1b98f04eb0d148cec7 HTTP/1.1 
Host: i.liadm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         50.16.108.1
HTTP/1.1 303 See Other
                                        
Date: Tue, 20 Sep 2022 20:38:20 GMT
Content-Length: 0
Connection: keep-alive
Location: https://i6.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252
Set-Cookie: _li_ss=MgkI_____wcQpRM; Max-Age=2592000; Expires=Thu, 20 Oct 2022 20:38:20 GMT; SameSite=None; Path=/s; Secure lidid=aed4a47d-d677-4d55-ad0f-1b9f57653305; Max-Age=63072000; Expires=Thu, 19 Sep 2024 20:38:20 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains

                                        
                                            GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252&_li_chk=true&previous_uuid=720c6320c30844c69e3f6a94cef0fe09 HTTP/1.1 
Host: i.liadm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         50.16.108.1
HTTP/1.1 303 See Other
                                        
Date: Tue, 20 Sep 2022 20:38:20 GMT
Content-Length: 0
Connection: keep-alive
Location: https://i6.liadm.com/s/63537?bidder_id=242861&bidder_uuid=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252
Set-Cookie: _li_ss=MgkI_____wcQpRM; Max-Age=2592000; Expires=Thu, 20 Oct 2022 20:38:20 GMT; SameSite=None; Path=/s; Secure lidid=e15b49d1-f8e1-4a58-b973-fcc21ad2103b; Max-Age=63072000; Expires=Thu, 19 Sep 2024 20:38:20 GMT; SameSite=None; Path=/; Domain=liadm.com; Secure
Strict-Transport-Security: max-age=31536000; includeSubDomains

                                        
                                            GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252 HTTP/1.1 
Host: i6.liadm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.3.49.101
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Tue, 20 Sep 2022 20:38:21 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store
Strict-Transport-Security: max-age=31536000; includeSubDomains


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fb02f374b8f73825415db1bccd4bd76d
Sha1:   b103aa629cacdd90b39538a7561da7f8e49ad73f
Sha256: caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
                                        
                                            GET /s/63537?bidder_id=242861&bidder_uuid=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252 HTTP/1.1 
Host: i6.liadm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.visiblecollege.education/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.3.49.101
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Tue, 20 Sep 2022 20:38:21 GMT
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store
Strict-Transport-Security: max-age=31536000; includeSubDomains


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    fb02f374b8f73825415db1bccd4bd76d
Sha1:   b103aa629cacdd90b39538a7561da7f8e49ad73f
Sha256: caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-44517167-1&cid=1595836262.1663706298&jid=1520778531&gjid=320505361&_gid=1763376791.1663706298&_u=aCDACEAiBAAAAC~&z=1249230940 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.visiblecollege.education
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.251.1.154
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.visiblecollege.education
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 20 Sep 2022 20:38:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-44517167-1&cid=1595836262.1663706298&jid=1520778531&_u=aCDACEAiBAAAAC~&z=1070707692 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 20:38:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-44517167-1&cid=1595836262.1663706298&jid=1520778531&_u=aCDACEAiBAAAAC~&z=1070707692 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Sep 2022 20:38:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 20 Sep 2022 20:38:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /adscores/g.pixel?sid=9202283468&_userID=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252&_takID=A02686A39F7C HTTP/1.1 
Host: aa.agkn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         3.75.14.26
HTTP/2 302 Found
                                        
date: Tue, 20 Sep 2022 20:38:19 GMT
location: https://api.dtstmio.com/v1/visitaction/nspx?segment=000&userID=A39F7C-B6D4C016-A2C6-4985-AB80-FE8C81225252&takID=A02686A39F7C&seg1=
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
set-cookie: ab=0001%3AXy9ktf%2BnJtRLm30Fz7cZk%2ByhgAlOqwsp; Path=/; Domain=.agkn.com; Expires=Wed, 20-Sep-2023 20:38:19 GMT; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /i18n/pixel/events.js?sdkid=C44PDBJR2IL96OOAVENG&lib=ttq HTTP/1.1 
Host: analytics.tiktok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.32
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: nginx
x-tt-logid: 20220920203818788F1853465CE6B198DA
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b845ac3ac4213815465c704c31ba33b404c000316678f858d8e6abc8d97af10f54565b3c91ec717a7b769297951abd494
content-encoding: gzip
expires: Tue, 20 Sep 2022 20:38:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 20 Sep 2022 20:38:18 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.9.4-44125806) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=4, cdn-cache; desc=MISS, edge; dur=1, origin; dur=102
x-origin-response-time: 102,23.36.79.28
x-akamai-request-id: 23bae139
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/lang/en/stl.js?buildTime=1662672764& HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.visiblecollege.education/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Thu, 08 Sep 2022 20:47:36 GMT
etag: "631a54e8-2c44e"
expires: Thu, 22 Sep 2022 21:34:22 GMT
cache-control: max-age=1209600
x-host: grn117.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 20 Sep 2022 20:38:17 GMT
age: 1033435
x-served-by: cache-sjc10059-SJC, cache-bma1669-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 5
x-timer: S1663706297.075796,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32802
X-Firefox-Spdy: h2


--- Additional Info ---