ocsp.sectigo.com/
104.18.14.101 472 B IP 104.18.14.101:0
Hash 1435b776acca87334cefa9726e6b3281
5a5c7903d45839e897d88632d13559ea5089c30a
9f68be802d3f424457baf7e25a2b888711cdc9b659387d64dae9c56cb2bf5d44
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 10:50:48 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Jun 2023 10:07:37 GMT
Expires: Thu, 08 Jun 2023 10:07:36 GMT
Etag: "5a5c7903d45839e897d88632d13559ea5089c30a"
Cache-Control: max-age=515207,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d0f23335a551bfe-OSL
198.54.114.155302 Found 0 B URL User Request GET HTTP/2 IP 198.54.114.155:443
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET / HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
x-powered-by: PHP/5.6.40
location: login.php
content-type: text/html; charset=UTF-8
content-length: 0
date: Fri, 02 Jun 2023 10:50:48 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
gtranslate.net/flags/blank.png
104.26.15.75200 OK 95 B URL GET HTTP/2 gtranslate.net/flags/blank.png
IP 104.26.15.75:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint80:F2:42:40:0A:77:17:8A:9C:F7:73:6F:B1:B2:ED:AB:FE:99:33:80
ValidityFri, 21 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /flags/blank.png HTTP/1.1
Host: gtranslate.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 10:50:49 GMT
content-type: image/png
content-length: 95
cache-control: max-age=864000
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "3950a-5f-56ce71dc13b46"
expires: Tue, 06 Jun 2023 07:00:37 GMT
last-modified: Wed, 23 May 2018 22:32:56 GMT
cf-cache-status: HIT
age: 532212
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5GsNoLCDjTv41RcUTeUmT9%2BwDwyO%2FQ2Wy2y8e7pMQqqXRm3mYLzthE9E9BwxuDTXex43HO9FnKwCPNvTIcy5tT3um2P47bYjy4lkNEDy5CQHE9u8bWoVwIixRvV2P4eJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d0f233ba9f6b51d-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 7e9d63d81a25205bd12ab8b258a264e6
2dfa41d339fd897120f53297f4e0f9fa20c117c1
768ca6e8ca2f678019baeaca289964229311ea185556db48650c297dbe996136
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 10:50:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
libertycdtunion.com/style.css
198.54.114.155200 OK 7.2 kB URL GET HTTP/2 libertycdtunion.com/style.css
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash 94e0d200f4ea9817ee0f65706f4d955c
c1fda12f526dfcde7419151d973a48a087fdca33
7fcbd4b5d09bf4c15addad6b81084dd8f49d323f778b462050d6844d850b86b4
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /style.css HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: text/css
last-modified: Thu, 20 Jun 2019 07:54:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7214
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
kit.fontawesome.com/a076d05399.js
104.18.23.52403 Forbidden 2.2 kB URL GET HTTP/2 kit.fontawesome.com/a076d05399.js
IP 104.18.23.52:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 4a5d1a5e9540b96c999558f22a566338
7ec95795761c647160a4b051bed217524dd6ad87
229d0482d9582940d5412b3a0981b0d0bc72fbb4e4bb08e8336e72254f26c690
GET /a076d05399.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Fri, 02 Jun 2023 10:50:49 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=15
expires: Fri, 02 Jun 2023 10:51:04 GMT
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d0f233b68fcb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 7e9d63d81a25205bd12ab8b258a264e6
2dfa41d339fd897120f53297f4e0f9fa20c117c1
768ca6e8ca2f678019baeaca289964229311ea185556db48650c297dbe996136
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 10:50:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
libertycdtunion.com/img/core-img/secureassets-header.png
198.54.114.155200 OK 4.7 kB URL GET HTTP/2 libertycdtunion.com/img/core-img/secureassets-header.png
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type PNG image data, 260 x 68, 8-bit/color RGBA, non-interlaced\012- data
Hash 56334fe29192463b75bf7b6b28540714
a97cb43b9e028f4ee24551cd462cf14ca8a134cb
ff75519ff270f04bd8229ebb0d75e409f8cca47a2217265d014889cece246b1f
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /img/core-img/secureassets-header.png HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: image/png
last-modified: Sun, 25 Sep 2022 08:05:20 GMT
accept-ranges: bytes
content-length: 4670
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 02593b51cd737e1085e5837a9a47c755
aab410449655b9fddf070f3e25a1a8e5aee59530
0ea607d017e63bf06a742560b582d99802dc477bba715d9890e1d51663e50d99
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 10:50:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
libertycdtunion.com/img/core-img/call2.png
198.54.114.155200 OK 50 kB URL GET HTTP/2 libertycdtunion.com/img/core-img/call2.png
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type PNG image data, 27 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a92cebcb5d9439f4515a8585a63d81
d033983c9815346c0ad5c12ead26100abe08768a
f665dc21a4d9a581441ca8be17d8176b754263b6c73fcf05af52d1ec17624d92
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /img/core-img/call2.png HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: image/png
last-modified: Thu, 20 Jun 2019 07:54:50 GMT
accept-ranges: bytes
content-length: 50189
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/assets/bootstrap.css
198.54.114.155200 OK 15 kB URL GET HTTP/2 libertycdtunion.com/assets/bootstrap.css
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (65316)
Hash 4eadbf7d1721bb2729e398595bc7f0bc
cde1a9a9098238450afb8fccfce94c22fa2743e3
1cbda21998b65e08a7e936114cabd7f7783d0f590dd6efdd58c7faa8b6e7b9aa
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /assets/bootstrap.css HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: text/css
last-modified: Wed, 28 Apr 2021 23:09:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14998
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/assets/bootstrap.js
198.54.114.155200 OK 7.0 kB URL GET HTTP/2 libertycdtunion.com/assets/bootstrap.js
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (27605)
Hash 9e25e8e29ef0ea358e9778082ffd97d8
75a42212affc118fef849aba4b9326a7da2acda1
54d21b0676784d0c983bbd4093898770adefa932d89b72c8afd88183a19172a7
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /assets/bootstrap.js HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: application/javascript
last-modified: Wed, 28 Apr 2021 23:09:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6954
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/assets/jquery-1.js
198.54.114.155200 OK 32 kB URL GET HTTP/2 libertycdtunion.com/assets/jquery-1.js
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (32086)
Hash 8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /assets/jquery-1.js HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: application/javascript
last-modified: Wed, 28 Apr 2021 23:09:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32294
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/assets/css.css
198.54.114.155200 OK 428 B URL GET HTTP/2 libertycdtunion.com/assets/css.css
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
Hash 310b1891def4dbeb53feb6c43953bce5
ae2a9958fe4b988dc66e256282ec4019926046e0
2483fa39123610a3b3a0111663a4211fdf03d173d9f4c670ba40eb726314844f
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /assets/css.css HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: text/css
last-modified: Wed, 28 Apr 2021 23:09:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 428
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/img/core-img/secureassets-header2.png
198.54.114.155200 OK 4.5 kB URL GET HTTP/2 libertycdtunion.com/img/core-img/secureassets-header2.png
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type PNG image data, 251 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash b6c8bacaecc8d0978d58c67e12ec1760
4ee1990df5e54daf1f3740282dd5abc13ee7f53d
c817ffcdf72b502786dcebc5da391e14514807cd9bccad15a00f2518f54ebdb1
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /img/core-img/secureassets-header2.png HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: image/png
last-modified: Sun, 25 Sep 2022 07:59:46 GMT
accept-ranges: bytes
content-length: 4507
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/js/jquery/jquery-2.2.4.min.js
198.54.114.155200 OK 29 kB URL GET HTTP/2 libertycdtunion.com/js/jquery/jquery-2.2.4.min.js
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (32065), with CRLF line terminators
Hash 710458dd559c957714ac4a8e95357eb5
f694238d616f579a0690001f37984af430c19963
b409c14a10b4caad6b54844aa63a5faf748b83eecc2dd0d4fb1d913f8de55365
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /js/jquery/jquery-2.2.4.min.js HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: application/javascript
last-modified: Thu, 20 Jun 2019 07:54:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29175
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/js/bootstrap/popper.min.js
198.54.114.155200 OK 7.0 kB URL GET HTTP/2 libertycdtunion.com/js/bootstrap/popper.min.js
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (20164), with CRLF line terminators
Hash 5644e6835941af44dcb5cead916c2b79
6eb1840d55338895ce6ecc3eab56132b1d152b93
315ac5479007d2e864a4b51f505fd0785ebbbe931a6b511467fa49504a082c58
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /js/bootstrap/popper.min.js HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: application/javascript
last-modified: Thu, 20 Jun 2019 07:54:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6953
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/js/bootstrap/bootstrap.min.js
198.54.114.155200 OK 13 kB URL GET HTTP/2 libertycdtunion.com/js/bootstrap/bootstrap.min.js
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (50758)
Hash 67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /js/bootstrap/bootstrap.min.js HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: application/javascript
last-modified: Thu, 20 Jun 2019 07:54:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13430
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/js/plugins/plugins.js
198.54.114.155200 OK 34 kB URL GET HTTP/2 libertycdtunion.com/js/plugins/plugins.js
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (32000), with CRLF line terminators
Hash 53098227cb2194762770530b6f760441
a0952bf206458261a9812822d5f0b4b462126c15
5d16576e91ebb45155f8da98b3aaa7f25e8cd7b61528e0a79e1e79c6ce382075
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /js/plugins/plugins.js HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: application/javascript
last-modified: Thu, 20 Jun 2019 07:54:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 33488
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/js/active.js
198.54.114.155200 OK 926 B URL GET HTTP/2 libertycdtunion.com/js/active.js
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash 788bcef9c153a4a6cd9379512976cb07
94b009ef370eaaebc990e93e1e2d640856ef8fc1
e7c081092a03d663d2486b8acf3b3be64c0573f26d998b0415274090fbd86ea0
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /js/active.js HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: application/javascript
last-modified: Thu, 20 Jun 2019 07:54:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 926
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/css/bootstrap.min.css
198.54.114.155200 OK 19 kB URL GET HTTP/2 libertycdtunion.com/css/bootstrap.min.css
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (63273), with CRLF line terminators
Hash 65c71774c6b53e8f85ba81797583500e
c2ea1d77590f603d1b5e1075a1dcc44d5bcd0a2f
f808ee657c1731398e696dd58de282f8b87662c0cffc81e289c41d5651fcf874
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /css/bootstrap.min.css HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/style.css
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: text/css
last-modified: Thu, 20 Jun 2019 07:54:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19134
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/css/classy-nav.css
198.54.114.155200 OK 3.0 kB URL GET HTTP/2 libertycdtunion.com/css/classy-nav.css
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (1152), with CRLF line terminators
Hash dc3bfe8a8d9d2c5b2f6758fad95ca583
064d792ed3e7ba491dc3bc7c3c331c2bb1f2d593
d27e8078341120da084ad594b2554fdd165a1b6dbc677a44ed1e5ef3dde47d13
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /css/classy-nav.css HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/style.css
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: text/css
last-modified: Thu, 20 Jun 2019 07:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2982
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/css/owl.carousel.min.css
198.54.114.155200 OK 791 B URL GET HTTP/2 libertycdtunion.com/css/owl.carousel.min.css
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (2847), with CRLF line terminators
Hash 5d84700be2f46f4d95039cdfb29d1d03
daccda82fd4e9bac028a76d5d0ae269465f1cfbb
620c35ebcf9ed6b6a686f47ea8dfaeb357b714238b2626607c864ad694259de4
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /css/owl.carousel.min.css HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/style.css
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: text/css
last-modified: Thu, 20 Jun 2019 07:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 791
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/css/animate.css
198.54.114.155200 OK 4.1 kB URL GET HTTP/2 libertycdtunion.com/css/animate.css
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (460)
Hash cb67371414710491ee3730390d1efb33
2e70ccc82e0ed3de2fd87409e6ca66e7b1a2d285
59a1460df6cb458204ec993345ff4964fa7e1a77da4ab7137e50fce8434c1d6a
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /css/animate.css HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/style.css
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: text/css
last-modified: Thu, 20 Jun 2019 07:54:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4120
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/css/font-awesome.min.css
198.54.114.155200 OK 6.7 kB URL GET HTTP/2 libertycdtunion.com/css/font-awesome.min.css
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (30885)
Hash 00cec4cb8d6013ce42a5e968d70294e3
49ace2830fbee1fe31bf078e53c2c9c53c5dfd93
fa27fa37e85414f337126c9626507c53b4cbf7e961bc5904a8c765eeb5801a21
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /css/font-awesome.min.css HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/style.css
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: text/css
last-modified: Thu, 20 Jun 2019 07:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6669
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
libertycdtunion.com/css/credit-icon.css
198.54.114.155200 OK 655 B URL GET HTTP/2 libertycdtunion.com/css/credit-icon.css
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
Hash f4cf26d4715d433fab3e51d0e339b523
3cbd24656a6f0dcf8ee7bb34f811d2b769c5e85c
8e5d221742fe0ad0661c67268de0fb4e7fcd5a4fcdc911dc570646e6a612cc52
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /css/credit-icon.css HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/style.css
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:49 GMT
content-type: text/css
last-modified: Thu, 20 Jun 2019 07:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 655
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 10:50:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Montserrat:300,400,500,600,700|Open+Sans:300,400,600,700
142.250.74.106200 OK 20 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Montserrat:300,400,500,600,700|Open+Sans:300,400,600,700
IP 142.250.74.106:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type gzip compressed data, max compression\012- data
Hash b98733ae19c2a4fad56fd27041dc9b67
85bcc25e2879c7bda9e67160ee195fec957fe623
9fa6525a468b1f829b8e23d35e988fb12de8efe055d8c67be2c7bf58eb2818bb
GET /css?family=Montserrat:300,400,500,600,700|Open+Sans:300,400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Jun 2023 10:50:49 GMT
date: Fri, 02 Jun 2023 10:50:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
142.250.74.35200 OK 4.2 kB URL GET HTTP/2 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
IP 142.250.74.35:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (23228), with no line terminators
Hash edf649e1b11a33833272345187bd4eec
73427e2ab282e5f89021e1c7d20f83eaf9830283
553d768412bca504a0c8771705f681dad359370bdcea637298ca5aa486017a06
GET /_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 4205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 21:45:55 GMT
expires: Fri, 31 May 2024 21:45:55 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 12 Mar 2023 00:11:57 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 47095
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 10:50:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gtranslate.net/flags/16.png
104.26.15.75200 OK 23 kB URL GET HTTP/2 gtranslate.net/flags/16.png
IP 104.26.15.75:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint80:F2:42:40:0A:77:17:8A:9C:F7:73:6F:B1:B2:ED:AB:FE:99:33:80
ValidityFri, 21 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT
File type PNG image data, 716 x 1016, 8-bit/color RGBA, non-interlaced\012- data
Hash ebee80c836480c0e529ff8b841e3552e
5d5c33acf90e92c7c96c56e318e5463d31e49ec9
ff92e390b38842ed72e53ec4606deb3a256d00be16266f3a5a2f5a35b79549f3
GET /flags/16.png HTTP/1.1
Host: gtranslate.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 10:50:50 GMT
content-type: image/png
content-length: 23381
cache-control: max-age=864000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=26031
etag: "39513-65af-56ce71dc3d9b2"
expires: Thu, 08 Jun 2023 05:19:42 GMT
last-modified: Wed, 23 May 2018 22:32:56 GMT
cf-cache-status: HIT
age: 365468
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YAbriRzGeh7PMQjspwe1qIeS1rb0mqnnh%2BFxoS1T6JTtADrEAhFHXWNTVHsqRA%2BIhu2Y3zSbttPU%2Bn6HZUg4SStZnjpLiPfliPxMSxa6TgWABGl%2B7tekZJIZ4iT3aVOi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d0f2343bc6bb51d-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash de06f6fcbc144014f20c63dd5fe236b4
7f10e556cc7c7786c031a226d3efc006f8511c28
ae157c3fec7620409ce8cf7d841a47c30b487c02bbc82df9127345b7b1149f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Jun 2023 10:50:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 82875
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
libertycdtunion.com/assets/bannerfront.jpg
198.54.114.155200 OK 283 kB URL GET HTTP/2 libertycdtunion.com/assets/bannerfront.jpg
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, description=working on laptop, close up of hands of business manA working wooden desk(table) with notebook computer, coffee cup, paper, pen, model=Canon EOS 6D, software=Adobe Photoshop CC 2015.5 (Windows), datetime=2016:10:25 15:17:31], baseline, precision 8, 1917x1043, components 3\012- data
Size 283 kB (283090 bytes)
Hash 421d99cc9d66d5cbcc77940d16298339
89747e5adcd0766aa5078c17420e68d0b853a64d
305efc1f0a715fc24b9686246760e60d53c8ac70c1b88896678a1a3222da72c9
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /assets/bannerfront.jpg HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:50 GMT
content-type: image/jpeg
last-modified: Mon, 28 Feb 2022 02:27:32 GMT
accept-ranges: bytes
content-length: 283090
date: Fri, 02 Jun 2023 10:50:50 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.Z9dw9iEydtA.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoJ3YppZh9vnjOb_SBu68tCOE-MXQ/m=el_main
142.250.74.170200 OK 76 kB URL GET HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.Z9dw9iEydtA.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoJ3YppZh9vnjOb_SBu68tCOE-MXQ/m=el_main
IP 142.250.74.170:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (1573)
Hash e573f520bd8dcdfb40e91a9e0e66e527
7182f9fdf1d72c2f42cbbfda617cb81e34a44044
366f944dab73002110a6add4e66a3eb915695bc4f1244da14080a4bc248880c6
GET /_/translate_http/_/js/k=translate_http.tr.no.Z9dw9iEydtA.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoJ3YppZh9vnjOb_SBu68tCOE-MXQ/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 76232
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 20:10:36 GMT
expires: Fri, 31 May 2024 20:10:36 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 31 May 2023 15:11:29 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 52815
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
libertycdtunion.com/assets/img/brand/favicon.ico
198.54.114.155200 OK 1.2 kB URL GET HTTP/2 libertycdtunion.com/assets/img/brand/favicon.ico
IP 198.54.114.155:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 69b045d3cad30a137a1eb0ecfc471224
bec1b04ad2f3c2c8237277e3015afd97beabba84
3adc614acaa6918cfb31a80d3589231c0d38fba7401e05d6f7302c4054aaace0
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /assets/img/brand/favicon.ico HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/login.php
Cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 09 Jun 2023 10:50:51 GMT
content-type: image/x-icon
last-modified: Tue, 08 Jun 2021 12:15:30 GMT
accept-ranges: bytes
content-length: 1150
date: Fri, 02 Jun 2023 10:50:51 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
142.250.74.106 1.4 kB URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP 142.250.74.106:0
Hash a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067
GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 02 Jun 2023 10:50:51 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=cqymrcqPBx8feB_3spL2FGuQz2ZNKkbXsrRHYpLhNhQOYYX1JVLTSBjaDyho9Hk1NdWy54dOlL0ZkJTS0wxmylp8vOVFgB9QZEl9_PF-qS5l4FUYN_bqa-qmHSmrfYYf5oU2PATJAMF-csWQ17DTrQux9ZCbJtDCmImtu-mfaxY; expires=Sat, 02-Dec-2023 10:50:51 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+342; expires=Sun, 01-Jun-2025 10:50:51 GMT; path=/; domain=.googleapis.com; Secure
expires: Fri, 02 Jun 2023 10:50:51 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
142.250.74.35200 OK 3.3 kB URL GET HTTP/3 fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP 142.250.74.35:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6225), with no line terminators
Hash 2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09
GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 08:05:11 GMT
expires: Sun, 26 May 2024 08:05:11 GMT
cache-control: public, max-age=31536000
age: 528340
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.35200 OK 1.8 kB URL GET HTTP/3 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.35:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 08:02:55 GMT
expires: Fri, 31 May 2024 08:02:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 96476
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
142.250.74.35200 OK 910 B URL GET HTTP/3 www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP 142.250.74.35:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2
GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 17:48:40 GMT
expires: Sun, 26 May 2024 17:48:40 GMT
cache-control: public, max-age=31536000
age: 493331
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
embed.tawk.to/_s/v4/app/64795e77f7f/css/min-widget.css
172.67.38.66200 OK 60 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/min-widget.css
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (24760), with no line terminators
Hash b0b0abe33d92f7a199e2e71fd516ff27
bf6af864e9e26100ae865904a5f5e9c270a63eb5
51e73fb66e2b18f262f86ba2880f9369b6a66d7411a3c8daa1146aaafc2690e6
GET /_s/v4/app/64795e77f7f/css/min-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:53 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=24840
access-control-allow-origin: *
etag: W/"3d22e9f29d90d6fd0e66aebbeadc0ca2"
last-modified: Fri, 02 Jun 2023 03:15:38 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 24308
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23515b9bb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
151.101.193.229200 OK 41 kB URL GET HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP 151.101.193.229:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type ASCII text, with very long lines (32014)
Hash 7bb7aac0cac89a90304af1c72eb4f50d
729f6f8ca5787d89743b0ed7eb27fd76406bf985
f5c06455e539dcd889f7f05d709b5adc76c444099fe57f431365af2fc57e803b
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: br
accept-ranges: bytes
date: Fri, 02 Jun 2023 10:50:53 GMT
age: 5125944
x-served-by: cache-fra-eddf8230136-FRA, cache-bma1625-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41275
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226 1.5 kB URL ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash 665b6bac222a7d67d740f16066880035
cda02bd7dd2429374511246c4e5201b1fb7d28be
fc55dea9e483f5a124f3628b8b60d67b420bbb238aa1ea943627b2c77f7a6e16
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 10:50:53 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "224782CC9479DF2A12D2AB6DC6E2D5D12F49C5E5"
Expires: Fri, 02 Jun 2023 21:00:00 GMT
Last-Modified: Fri, 02 Jun 2023 09:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2565
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d0f235288f3b4ed-OSL
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-vendor.js
172.67.38.66200 OK 32 kB URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-vendor.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65472)
Hash ce3014b09c6dfbd6f92bc585fd840580
d17abb8d652929260df6a153814560dd5af54424
916c13b184fbc42c59463a47bf90611461bec9e17a10a37def3c751ade00dced
GET /_s/v4/app/64795e77f7f/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 10:50:51 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"ce3014b09c6dfbd6f92bc585fd840580"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23483f2e0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
va.tawk.to/log-performance/v3
172.67.38.66200 OK 9 B URL POST HTTP/3 va.tawk.to/log-performance/v3
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash 33477a9babaa53c176d57766317029ec
09d2d183d53a889f6cb705db4267072ab328a18c
5e51965bf980d99bcf566ed9ac76a7c4f93bf3fbd196f4752a0d94a252a57ac7
OPTIONS /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://libertycdtunion.com/
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:53 GMT
x-served-by: visitor-application-preemptive-7fvj
access-control-allow-origin: https://libertycdtunion.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f2354e85ab4ff-OSL
alt-svc: h3=":443"; ma=86400
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
142.250.74.170200 OK 131 B URL OPTIONS HTTP/3 translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP 142.250.74.170:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 208
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://libertycdtunion.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 02 Jun 2023 10:51:01 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+818; expires=Sun, 01-Jun-2025 10:51:01 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 02 Jun 2023 10:51:01 GMT
embed.tawk.to/_s/v4/app/64795e77f7f/languages/en.js
172.67.38.66200 OK 17 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/languages/en.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with CRLF, LF line terminators
Hash 585ba00b2c167b90c210161454f843b5
89ee8372cc6d5eb307cf5840b70d8f3dab3c57f2
e924ffe8bcc65483510a22a7286bd6d4d204e72ffe5927eec50158f7a7be50c0
GET /_s/v4/app/64795e77f7f/languages/en.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"585ba00b2c167b90c210161454f843b5"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 24308
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f234f7933b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/assets/images/attention-grabbers/9-br.svg
172.67.38.66200 OK 5.5 kB URL GET HTTP/3 embed.tawk.to/_s/v4/assets/images/attention-grabbers/9-br.svg
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5587), with no line terminators
Hash bd2543beb62af4968890f69901836d26
02f36f297bc440a61fea0e3696b15c556c0433c2
a88b5885b493a1b54d8fd3b217e10b9ce0a3e8132306380131427652f8cebe2c
GET /_s/v4/assets/images/attention-grabbers/9-br.svg HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:53 GMT
content-type: image/svg+xml
age: 1256235
last-modified: Sat, 22 May 2021 07:25:17 GMT
etag: W/"698f16ea8000954f23df2cf2572b6349"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23519be8b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/css/message-preview.css
172.67.38.66200 OK 38 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/message-preview.css
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (38236), with no line terminators
Hash 525e595977273d758b1f8b4b5b45eaff
82823b09d4b64e4e0ead74180c3021937701edfc
788855d7239de368ab83b2a1d743be8504c68659912d8f9aaf67a5a6aac463ed
GET /_s/v4/app/64795e77f7f/css/message-preview.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:53 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=38369
access-control-allow-origin: *
etag: W/"4ad3afbed0c84d07cd50f865330d4a82"
last-modified: Fri, 02 Jun 2023 03:15:38 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 24307
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23519beab4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/nunito/v16/XRXV3I6Li01BKofINeaB.woff2
142.250.74.35200 OK 19 kB URL GET HTTP/2 fonts.gstatic.com/s/nunito/v16/XRXV3I6Li01BKofINeaB.woff2
IP 142.250.74.35:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 18972, version 1.0\012- data
Hash bcf84d6cb8a0ac214c8c14ba9af834f3
95cfdf6e8861ae5510f41bb8fe8f1fc21d060578
06f3af3fe52542d40ad9bc14ec03e04deaabd09ec369221cc8f536db1c72bf55
GET /s/nunito/v16/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18972
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 May 2023 16:41:36 GMT
expires: Thu, 30 May 2024 16:41:36 GMT
cache-control: public, max-age=31536000
age: 151754
last-modified: Wed, 25 Nov 2020 02:44:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vsb59.tawk.to/s/?k=6479c98ca3c8d40bf91ba450&cver=0&pop=false&asver=50&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MzJmY2IzZjM3ODk4OTEyZTk2YjFlODUiLCJ2aWQiOiI2MzJmY2IzZjM3ODk4OTEyZTk2YjFlODUtczBQRGlQemxoc3RnSENaV2hwSXc3Iiwic2lkIjoiNjQ3OWM5OGNhM2M4ZDQwYmY5MWJhNDUwIiwiaWF0IjoxNjg1NzAzMDUyLCJleHAiOjE2ODU3MDQ4NTIsImp0aSI6InN0cXEtc00tNTZmWUV0dGlhYWVsWCJ9.Qi4R2NMukFNlBFYQbafG68EGDeiRa1fVlAY0aNwWDi7w4sYMXU-JRXqQ9kVLF1TJXNlRaiCsX92ZebxjEOcBxA&EIO=3&transport=websocket&__t=OXxkqo4
104.22.25.131101 Switching Protocols 0 B URL GET HTTP/1.1 vsb59.tawk.to/s/?k=6479c98ca3c8d40bf91ba450&cver=0&pop=false&asver=50&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MzJmY2IzZjM3ODk4OTEyZTk2YjFlODUiLCJ2aWQiOiI2MzJmY2IzZjM3ODk4OTEyZTk2YjFlODUtczBQRGlQemxoc3RnSENaV2hwSXc3Iiwic2lkIjoiNjQ3OWM5OGNhM2M4ZDQwYmY5MWJhNDUwIiwiaWF0IjoxNjg1NzAzMDUyLCJleHAiOjE2ODU3MDQ4NTIsImp0aSI6InN0cXEtc00tNTZmWUV0dGlhYWVsWCJ9.Qi4R2NMukFNlBFYQbafG68EGDeiRa1fVlAY0aNwWDi7w4sYMXU-JRXqQ9kVLF1TJXNlRaiCsX92ZebxjEOcBxA&EIO=3&transport=websocket&__t=OXxkqo4
IP 104.22.25.131:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/?k=6479c98ca3c8d40bf91ba450&cver=0&pop=false&asver=50&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MzJmY2IzZjM3ODk4OTEyZTk2YjFlODUiLCJ2aWQiOiI2MzJmY2IzZjM3ODk4OTEyZTk2YjFlODUtczBQRGlQemxoc3RnSENaV2hwSXc3Iiwic2lkIjoiNjQ3OWM5OGNhM2M4ZDQwYmY5MWJhNDUwIiwiaWF0IjoxNjg1NzAzMDUyLCJleHAiOjE2ODU3MDQ4NTIsImp0aSI6InN0cXEtc00tNTZmWUV0dGlhYWVsWCJ9.Qi4R2NMukFNlBFYQbafG68EGDeiRa1fVlAY0aNwWDi7w4sYMXU-JRXqQ9kVLF1TJXNlRaiCsX92ZebxjEOcBxA&EIO=3&transport=websocket&__t=OXxkqo4 HTTP/1.1
Host: vsb59.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://libertycdtunion.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: akCbXZzt6Qsivrs/maPm/A==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 02 Jun 2023 10:50:53 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: T1jWLMgNfg6MhHPiHDmcfQtzo3M=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7d0f23511b2d0b51-OSL
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2c78ba82.js
172.67.38.66200 OK 7.3 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2c78ba82.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (7885), with no line terminators
Hash bcc0ef52169d50e214a2accd9ab5bcb9
7d8c53a2c4f06ee540d1d82d83d06672c94d6e04
5e697f0511d2def1d0e5118cff1577dca11ce12a57a88bc73a85a6f624884c91
GET /_s/v4/app/64795e77f7f/js/twk-chunk-2c78ba82.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"a365c34c6cb5f6c0443d0e2a66a93be2"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 24307
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23504a4db4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-696bc286.js
172.67.38.66200 OK 18 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-696bc286.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (17930), with no line terminators
Hash 6dd996f847762fe19aadcbd932a92b08
c1c5edd05a7e437b4d07feed69e2be8cc94e2ad1
a137b6d915c842f317b92af003081805d36f2037062eead04c3cecc3893cc9ab
GET /_s/v4/app/64795e77f7f/js/twk-chunk-696bc286.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"6dd996f847762fe19aadcbd932a92b08"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 24308
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23504a53b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-runtime.js
172.67.38.66200 OK 2.3 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-runtime.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (2349), with no line terminators
Hash 49acd450f7335db03e4b8b9d8423b119
6831ac4658c865e3e9ce7515fe6bba1a5aac9d90
2577e056d13189138961a22563a6df33310803fbe287da14c986b7efc9c3e6e9
GET /_s/v4/app/64795e77f7f/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:51 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"471fc97e0f884da442b8dc6ac18e204a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23483cc8b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/css/max-widget.css
172.67.38.66200 OK 74 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/max-widget.css
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash ebb53d03ee18dec4b394c3db6d7292d3
29ff00d5ff9045bddf07fe99e265a3420c3fbf75
a374cd80761045b46086558d2a9449f98c578d9f9bd68cc435ae780a845770c6
GET /_s/v4/app/64795e77f7f/css/max-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:53 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=74548
access-control-allow-origin: *
etag: W/"f335908186585c187eea3163811286d9"
last-modified: Fri, 02 Jun 2023 03:15:38 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 24307
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f2351abfbb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
va.tawk.to/v1/session/start
172.67.38.66200 OK 1.0 kB URL POST HTTP/3 va.tawk.to/v1/session/start
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1088), with no line terminators
Hash 342fb138a4b9d21dc72ae9b5eeb2a36c
4ce365b381bd0a2dc4630ccd310b349c5f63828c
dfca40ce12054f4bb3fe6f82b3059c8826fa0f85e3997684df6d9342b5d9211b
POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libertycdtunion.com/
Content-Type: application/json; charset=utf-8
Content-Length: 190
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-8cdl
access-control-allow-origin: https://libertycdtunion.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f234ccdbbb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js
172.67.38.66200 OK 94 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash c1f0a7a7efb96bfdcdc443a0d6dfd1ca
2fad289307a1e188576c8a9e3103157239c147dd
c55670ad77526b0eb69b7fab93da3bf979e4197bafffb5e6802d36aed72249fb
GET /_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"c1f0a7a7efb96bfdcdc443a0d6dfd1ca"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 24306
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23506a6fb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
va.tawk.to/v1/widget-settings?propertyId=632fcb3f37898912e96b1e85&widgetId=1gdpb3sbk&sv=undefined
172.67.38.66200 OK 2.9 kB URL GET HTTP/3 va.tawk.to/v1/widget-settings?propertyId=632fcb3f37898912e96b1e85&widgetId=1gdpb3sbk&sv=undefined
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (3365), with no line terminators
Hash 661b003aa2a25ee188aa0a6a593987d1
a18a874d3a3e11b42a2e1f5858d0e0431332e101
ef34e0b3f7145185ba98eb7bfae085baf31de6dbe95b39422022fdba091de5ab
GET /v1/widget-settings?propertyId=632fcb3f37898912e96b1e85&widgetId=1gdpb3sbk&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://libertycdtunion.com/
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-4hhx
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-15-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f234bc9ecb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-48f46bef.js
172.67.38.66200 OK 20 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-48f46bef.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (19655), with no line terminators
Hash cf46dbd8781936ac4cada7e90d8bd7d5
b9d821bc13a46c181ccc8b68b15a352d9e3a3cd6
fb3c890c14210dcec97b3e6dda3a28b4632a1a63a0bea29e421a18a612583031
GET /_s/v4/app/64795e77f7f/js/twk-chunk-48f46bef.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"cf46dbd8781936ac4cada7e90d8bd7d5"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 24307
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23505a6bb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
libertycdtunion.com/login.php
198.54.114.155200 OK 22 kB URL User Request GET HTTP/2 libertycdtunion.com/login.php
IP 198.54.114.155:443
Certificate IssuerSectigo Limited
Subjectwww.libertycdtunion.com
FingerprintC5:78:B8:6F:7B:C8:A5:B5:0A:64:9E:73:F1:C5:CC:D8:81:B7:2C:B0
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2397), with CRLF line terminators
Hash 2c3cd7bc016ef987291a4c7368767312
831264ece62cdd0801a9568a6fd8a3f76a56875d
5c8cff11a82c3c8b11553c10deaf20c64156cffa13dca9d40863012fdd069437
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /login.php HTTP/1.1
Host: libertycdtunion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/5.6.40
x-robots-tag: noindex, nofollow
set-cookie: PHPSESSID=osm8a9duimtudqkmbd5gqcrk12; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Jun 2023 10:50:49 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-main.js
172.67.38.66200 OK 121 B URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-main.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 3b41342f7e3be590563e8e3b5ff770c7
c9ca54d23ea78b320f080b76e22bb6b4e704d55f
ef04d89daeed55613a63a4af62c147ce86e4a7f22c8ce700dd6bdb11ab187e43
GET /_s/v4/app/64795e77f7f/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 10:50:51 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23482f180afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-common.js
172.67.38.66200 OK 210 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-common.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65466)
Size 210 kB (210377 bytes)
Hash 00aa43670bf94cf802dd5797a4416a00
321252add669266027cadb78a82f94d51e3f469e
b9e3acc3ea33954ac74406b8bbd9489bba42631dda3b1ebfa20bb8874226a95a
GET /_s/v4/app/64795e77f7f/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"00aa43670bf94cf802dd5797a4416a00"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23483cc7b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
va.tawk.to/v1/session/start
172.67.38.66200 OK 0 B URL OPTIONS HTTP/3 va.tawk.to/v1/session/start
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://libertycdtunion.com/
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
x-served-by: visitor-application-preemptive-m6cg
access-control-allow-origin: https://libertycdtunion.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f234bc9e8b50c-OSL
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-f1596d96.js
172.67.38.66200 OK 11 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-f1596d96.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (10994), with no line terminators
Hash ecc97f98f23e936ee6e93a25b5deda4e
8a39efe08e455e6c973d7afbbcf429e04a55c767
214a552a60d83d9b746191d65391e98126e2b9cf207894f6a590494f1623f74a
GET /_s/v4/app/64795e77f7f/js/twk-chunk-f1596d96.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"ecc97f98f23e936ee6e93a25b5deda4e"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 24308
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23504a58b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-4fe9d5dd.js
172.67.38.66200 OK 906 B URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-4fe9d5dd.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (956), with no line terminators
Hash 7b31fafdf609238b7f4574e44057af5b
f4f849145e5beaff38b9e47e3c5c3e7e4945d70a
2b7dfb20a5ee49b709a4adc3412bd7d5e00539c1ef93a1a58c4ec58816c81ed3
GET /_s/v4/app/64795e77f7f/js/twk-chunk-4fe9d5dd.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"1c5ecf371149feca23bd895ba9dfec4d"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 24307
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23505a6db4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
142.250.74.110200 OK 80 kB URL GET HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP 142.250.74.110:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (2450)
Hash ad16f53648fd3e008120dc7101eab37b
90161b984db9d55a29d541a024d85dcdd112ad84
a9119b6ef29490e7877f2a5e7af77a254262417e174fbe913ad4adfcd4d8e64b
GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Jun 2023 10:50:49 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+051; expires=Sun, 01-Jun-2025 10:50:49 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js
172.67.38.66200 OK 535 B URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (557), with no line terminators
Hash 3f4a6312d60391bda06462d7321ffcdc
9f09295297840a36d2ac95344b39b0af1a729f82
28d61df22c079e51c45b6f87db516f03cb85cf3f2c3a970be369944c3f91bcf1
GET /_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"c506281367048d4a134c9affbc68c8c6"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 24307
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23506a6eb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/css/bubble-widget.css
172.67.38.66200 OK 14 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/bubble-widget.css
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (13521), with no line terminators
Hash 950518e32fd92957181f766f08d3cf98
9fe20c86b818d3576e9d70e6ed091964cb8b7427
2f56f47d64037d5aa3a96b50c840580e5549fee6f9fafff8af3d1821d189fa5c
GET /_s/v4/app/64795e77f7f/css/bubble-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=13594
access-control-allow-origin: *
etag: W/"ce7913b80c763449b3895d46419f7a6b"
last-modified: Fri, 02 Jun 2023 03:15:38 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 24307
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23511b41b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js
172.67.38.66200 OK 689 B URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (715), with no line terminators
Hash 8489b26d8834814d4c645e094bfb1c7f
6b3eba11e5a67137295b00f316698a3e12da1d66
0e3b1c1a3da2e19c8918864752042eaa06885730a0bdd7cd60ee519cfc531412
GET /_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:52 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"a6432972b93f7d0476635e7ac224d718"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 24307
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23505a64b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/632fcb3f37898912e96b1e85/1gdpb3sbk
172.67.38.66200 OK 2.1 kB URL GET HTTP/2 embed.tawk.to/632fcb3f37898912e96b1e85/1gdpb3sbk
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (2310), with no line terminators
Hash 86a534a9701c0142afc34b8408001e07
0abe66dcf454ec61a08304dcb7310088a1269b03
816845850d489d433b15b507dd45f9cc6c97b95020a599c6121a7c852a8ada52
GET /632fcb3f37898912e96b1e85/1gdpb3sbk HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 10:50:51 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-64795e77f7f"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f2343f9e00afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-vendors.js
172.67.38.66200 OK 215 kB URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-vendors.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Size 215 kB (214782 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_s/v4/app/64795e77f7f/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 10:50:51 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"01b31f3e100a09c2fbb450c0599a9d8e"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23483f300afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js
172.67.38.66200 OK 151 B URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js
IP 172.67.38.66:443
Requested by https://libertycdtunion.com/login.php
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 04a9862af6efaf787bc8fb8e99ba6987
a57bb8f258eb1a60dc3b288a608ad8ef9fbecef3
ecc74c329a700e3e6ca29aed5ffe3c166cf39670c8b11573fa7f837f79a71b5c
GET /_s/v4/app/64795e77f7f/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://libertycdtunion.com
DNT: 1
Connection: keep-alive
Referer: https://libertycdtunion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 02 Jun 2023 10:50:51 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0f23484ccbb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400