r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7211
Expires: Fri, 09 Dec 2022 22:37:31 GMT
Date: Fri, 09 Dec 2022 20:37:20 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3251
Expires: Fri, 09 Dec 2022 21:31:31 GMT
Date: Fri, 09 Dec 2022 20:37:20 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3080
Expires: Fri, 09 Dec 2022 21:28:40 GMT
Date: Fri, 09 Dec 2022 20:37:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 20:33:14 GMT
content-type: application/json
age: 246
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aVbUYz/jPX+JNL6GfeT6MYpdMXiw4ZESaobA2gTCrhQ2EMIQlwygIEdNMK6es1+FH+rBzQ0Swls=
x-amz-request-id: RMNFDT8XQ4XTJHPC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 19:48:29 GMT
age: 2931
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash cc43afe6a45a86999b00002aaf6298bd
739af38a132e3c9a1f5604dca374b1a5989813de
763f9d252bb42c45892566749eede20e223254c115bbc5d1cdec452975758a8e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=140873
Date: Fri, 09 Dec 2022 20:37:20 GMT
Etag: "63930b90-1d7"
Expires: Sun, 11 Dec 2022 11:45:13 GMT
Last-Modified: Fri, 09 Dec 2022 10:18:56 GMT
Server: ECS (dcb/7EEA)
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UExntFxRuS5K4gi1nQ2HbN1ZK_74OmytZAYoyyqYFA8zEYR5Fr9Cfw==
Age: 5177
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 20:37:21 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 20:07:55 GMT
age: 1766
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4497
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:21 GMT
Last-Modified: Fri, 09 Dec 2022 19:22:24 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ablink.email.td.org/ls/click?upn=4CTLI-2FtYTTV65FUkk049rS8Vy5jeU9QThJJoBu1P9IbgPsduJRX-2BdnLt8vUtQnWrrC1H_KUy-2BYyPL6-2FkJ9VyNqng4UnEqjOWt-2F30csqzskfRaO-2BB4BFaBlGbCY1ibB04IyIDQYyMEIjMqa57Dvm2K2Kf6G-2F2djDuxUt8EtsjB3DhjT0N6kNOHsn9-2BFwwHXdr6KhB0MZ9pggJR7LAV9-2FFxnbSXfwL65cys71IAoXYcfOy8wvzRLgQ4KMKq8iQTAyG0-2BaqRDPVSYPsD-2FJg1ypmLdliI3vUG-2F-2BQSLMlK5teHumODwImB3uTSK34cxkjfBTrrHrLdmNgwNXFw-2FFZx64pznyH58fraDtBNf-2F1cL430h8pNboW66tkmHBIdwJlzUcMrhmAay9sXvgjQknjltVXD95i5dJPCbuTjuLKlDUZQv-2FhspjtqfqZ-2FI0iBYT1-2B4ksHZ4hAcJlKNfU5SdD5E8ZbTegZWdpcIjUAzGcMiVnNhDi-2F71Wez-2Fv2-2BZMCkmXO5mrwTxdjiKk7GZEnbNVe-2FpKW4eyvkCeb2-2F-2Be-2B8iLgVJEoK4HIwecAr44-2B956zY4L7QEJIbyvIdu-2BHwhLsurDuT4gskOiiTcsGbEjcsR8Y9D0ifwgxEYEStCvhlC0Km4txG7mbrPsojD-2Bt0e-2FZgROrsaWQs4JaINTdp-2FwFfSwNM-2BTaBjTJGMePMG9eyfMYhtfWp-2FMjb2k7kdUqnFP62mL9ve0PJWtsJLhvyLzZtkCE8GeErRePRvPmyak08pC9ShYWpDphxcKqczPmCr-2FdX97ibckr-2BUTmTqJqaWibI-2BwTcIEfFX-2BN0E-3D
54.230.111.107302 Found 53 B URL HTTP/2 ablink.email.td.org/ls/click?upn=4CTLI-2FtYTTV65FUkk049rS8Vy5jeU9QThJJoBu1P9IbgPsduJRX-2BdnLt8vUtQnWrrC1H_KUy-2BYyPL6-2FkJ9VyNqng4UnEqjOWt-2F30csqzskfRaO-2BB4BFaBlGbCY1ibB04IyIDQYyMEIjMqa57Dvm2K2Kf6G-2F2djDuxUt8EtsjB3DhjT0N6kNOHsn9-2BFwwHXdr6KhB0MZ9pggJR7LAV9-2FFxnbSXfwL65cys71IAoXYcfOy8wvzRLgQ4KMKq8iQTAyG0-2BaqRDPVSYPsD-2FJg1ypmLdliI3vUG-2F-2BQSLMlK5teHumODwImB3uTSK34cxkjfBTrrHrLdmNgwNXFw-2FFZx64pznyH58fraDtBNf-2F1cL430h8pNboW66tkmHBIdwJlzUcMrhmAay9sXvgjQknjltVXD95i5dJPCbuTjuLKlDUZQv-2FhspjtqfqZ-2FI0iBYT1-2B4ksHZ4hAcJlKNfU5SdD5E8ZbTegZWdpcIjUAzGcMiVnNhDi-2F71Wez-2Fv2-2BZMCkmXO5mrwTxdjiKk7GZEnbNVe-2FpKW4eyvkCeb2-2F-2Be-2B8iLgVJEoK4HIwecAr44-2B956zY4L7QEJIbyvIdu-2BHwhLsurDuT4gskOiiTcsGbEjcsR8Y9D0ifwgxEYEStCvhlC0Km4txG7mbrPsojD-2Bt0e-2FZgROrsaWQs4JaINTdp-2FwFfSwNM-2BTaBjTJGMePMG9eyfMYhtfWp-2FMjb2k7kdUqnFP62mL9ve0PJWtsJLhvyLzZtkCE8GeErRePRvPmyak08pC9ShYWpDphxcKqczPmCr-2FdX97ibckr-2BUTmTqJqaWibI-2BwTcIEfFX-2BN0E-3D
IP 54.230.111.107:0
File type HTML document, ASCII text
Hash 2f175bf05d211bc34043ceb096c9d422
45603f08ea25a115f3cac80b2038a0c919e6e531
453e27a21ad77757f22d0f30ebedf339043b9232cd6cd69bc152926a182dead5
GET /ls/click?upn=4CTLI-2FtYTTV65FUkk049rS8Vy5jeU9QThJJoBu1P9IbgPsduJRX-2BdnLt8vUtQnWrrC1H_KUy-2BYyPL6-2FkJ9VyNqng4UnEqjOWt-2F30csqzskfRaO-2BB4BFaBlGbCY1ibB04IyIDQYyMEIjMqa57Dvm2K2Kf6G-2F2djDuxUt8EtsjB3DhjT0N6kNOHsn9-2BFwwHXdr6KhB0MZ9pggJR7LAV9-2FFxnbSXfwL65cys71IAoXYcfOy8wvzRLgQ4KMKq8iQTAyG0-2BaqRDPVSYPsD-2FJg1ypmLdliI3vUG-2F-2BQSLMlK5teHumODwImB3uTSK34cxkjfBTrrHrLdmNgwNXFw-2FFZx64pznyH58fraDtBNf-2F1cL430h8pNboW66tkmHBIdwJlzUcMrhmAay9sXvgjQknjltVXD95i5dJPCbuTjuLKlDUZQv-2FhspjtqfqZ-2FI0iBYT1-2B4ksHZ4hAcJlKNfU5SdD5E8ZbTegZWdpcIjUAzGcMiVnNhDi-2F71Wez-2Fv2-2BZMCkmXO5mrwTxdjiKk7GZEnbNVe-2FpKW4eyvkCeb2-2F-2Be-2B8iLgVJEoK4HIwecAr44-2B956zY4L7QEJIbyvIdu-2BHwhLsurDuT4gskOiiTcsGbEjcsR8Y9D0ifwgxEYEStCvhlC0Km4txG7mbrPsojD-2Bt0e-2FZgROrsaWQs4JaINTdp-2FwFfSwNM-2BTaBjTJGMePMG9eyfMYhtfWp-2FMjb2k7kdUqnFP62mL9ve0PJWtsJLhvyLzZtkCE8GeErRePRvPmyak08pC9ShYWpDphxcKqczPmCr-2FdX97ibckr-2BUTmTqJqaWibI-2BwTcIEfFX-2BN0E-3D HTTP/1.1
Host: ablink.email.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 53
location: https://content.td.org/r/89745
server: nginx
date: Fri, 09 Dec 2022 20:37:21 GMT
x-robots-tag: noindex, nofollow
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LRLbd7twdPd4XLbP0_c3xBDmd_EZ1T0yyLd9O4xYa7-jlgH0ZcuBhQ==
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash ec009f5601d516617093dec25c4b82d3
112f5d195b617b6e132652b8c40e393cfaa23968
818d739d204ad9b05789d6e03b31f94a1727d61e5546a5b0e4fccb44277857e5
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 20:37:21 GMT
Content-Type: application/ocsp-response
Content-Length: 1846
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 09 Dec 2022 19:45:10 GMT
Expires: Sat, 10 Dec 2022 19:45:10 GMT
ETag: "112f5d195b617b6e132652b8c40e393cfaa23968"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
push.services.mozilla.com/
35.165.1.70101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.1.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ELcAFybeUknqY+NovHtDKQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: X5HQnbTG/9JsHxTa9rqUrkWIrUU=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15163
Expires: Sat, 10 Dec 2022 00:50:06 GMT
Date: Fri, 09 Dec 2022 20:37:23 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15163
Expires: Sat, 10 Dec 2022 00:50:06 GMT
Date: Fri, 09 Dec 2022 20:37:23 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15163
Expires: Sat, 10 Dec 2022 00:50:06 GMT
Date: Fri, 09 Dec 2022 20:37:23 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15163
Expires: Sat, 10 Dec 2022 00:50:06 GMT
Date: Fri, 09 Dec 2022 20:37:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:15 GMT
age: 48248
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 730ba1a8edb79ba6f83b46d1ba5aed7b
55a236fedf6f5f7ca2bb88ae13e20846a50fd36d
f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 12:33:36 GMT
age: 29027
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:38:26 GMT
age: 61137
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 81959
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 23:37:39 GMT
age: 75584
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nXaZ1pazAGWMI9GFYZjGlvVVIb8wX6feD0O8VpzjsL8F8l3mFmydAw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:59 GMT
age: 48204
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
polyfill.io/v3/polyfill.min.js?features=Array.prototype.find,Promise,Object.assign
151.101.129.26200 OK 94 B URL HTTP/2 polyfill.io/v3/polyfill.min.js?features=Array.prototype.find,Promise,Object.assign
IP 151.101.129.26:0
Hash eb8b0ba88b3acfb11ea81d5c02be9108
4b7f14cc2db25abdbe25472934b7469b2488f9d4
7237f15a97fe102c6ed13eadc0f7980da03cd06a20dfb7c7b8050e60dada617d
GET /v3/polyfill.min.js?features=Array.prototype.find,Promise,Object.assign HTTP/1.1
Host: polyfill.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
content-type: text/javascript; charset=utf-8
last-modified: Thu, 17 Nov 2022 10:41:23 GMT
content-encoding: br
age: 0
accept-ranges: bytes
useragent_normaliser: firefox/105.0.0
date: Fri, 09 Dec 2022 20:37:24 GMT
vary: User-Agent, Accept-Encoding
server-timing: cache-bma1663, PASS, fastly;desc="Edge time";dur=14
content-length: 94
X-Firefox-Spdy: h2
d2suo6y6ick5ug.cloudfront.net/tdx/tdx.js?v=1
143.204.42.81200 OK 1.9 kB URL HTTP/2 d2suo6y6ick5ug.cloudfront.net/tdx/tdx.js?v=1
IP 143.204.42.81:0
File type ASCII text, with CRLF line terminators
Hash 45eb137d6a5ffba1d53dbacf5a448a06
8343a0d845462f3ae2cabf753f007fc23eddb0f4
e8258025a52d6a39d0e785515c413aaff00fccf50630654e0545907c28992530
GET /tdx/tdx.js?v=1 HTTP/1.1
Host: d2suo6y6ick5ug.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 1875
date: Thu, 08 Dec 2022 23:43:32 GMT
last-modified: Mon, 10 Apr 2017 20:37:09 GMT
etag: "45eb137d6a5ffba1d53dbacf5a448a06"
x-amz-meta-cb-modifiedtime: Thu, 26 Jan 2017 00:16:43 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oE-_BuWcPTPhLV-SSRtiZYPq-WbmhWzM0xFnxH5hMmhrzSMQD_wbRg==
age: 75233
X-Firefox-Spdy: h2
d19d5sz0wkl0lu.cloudfront.net/resource/Fonts.min.6264572058d535782fe7007b43c0076e.gz.css
143.204.42.215200 OK 1.6 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/resource/Fonts.min.6264572058d535782fe7007b43c0076e.gz.css
IP 143.204.42.215:0
File type ASCII text, with very long lines (8437)
Hash dc862fc682d104b438dc0ba86c1137e4
55b5aad379e285bd540bf0b5093d1cea9f782f14
d7cf64f94ec97f147de7d0fdf2af639de3fdf76660a25483019c269bd3377d2b
GET /resource/Fonts.min.6264572058d535782fe7007b43c0076e.gz.css HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 1632
date: Sat, 28 May 2022 02:40:59 GMT
last-modified: Thu, 25 Apr 2019 15:49:06 GMT
etag: "dc862fc682d104b438dc0ba86c1137e4"
cache-control: public, max-age=31536000
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JRBcN8A1PFivVsU2nqL76V8qUaCvIAav-soQ55stBOu0FRZs1HLSKw==
age: 16912586
X-Firefox-Spdy: h2
unpkg.com/tippy.js@6
104.16.122.175302 Found 315 B IP 104.16.122.175:0
Hash 34ba3557db3f8de38e5a4e9ea7e25acf
e76449a887f289fe7fee2571984caeb982176440
d14efeb847abefc347e3d5f6097aa2f2ad0b50c99391997008ac5bbf35627eec
GET /tippy.js@6 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 20:37:24 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /tippy.js@6.3.7
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GKW9MVF9YNCXHYAC6TQJXYP4-ams
cf-cache-status: HIT
age: 63
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089dd3b93b503-OSL
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/instantsearch.css@7.3.1/themes/reset-min.css
151.101.65.229200 OK 989 B URL HTTP/2 cdn.jsdelivr.net/npm/instantsearch.css@7.3.1/themes/reset-min.css
IP 151.101.65.229:0
File type ASCII text, with very long lines (3833), with no line terminators
Hash 0acdb8be4d33bc00e0d100c4402b956c
c14c783216af2c9095f126082b0a76a440d92350
0e984629891cda48abe93815197311098b71edcdcd665191b5fef3df1d432414
GET /npm/instantsearch.css@7.3.1/themes/reset-min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 7.3.1
x-jsd-version-type: version
etag: W/"ef9-GRDgYJzXz86C3jig3bzI+NFCq1o"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 20:37:24 GMT
age: 10014593
x-served-by: cache-fra19165-FRA, cache-bma1641-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 989
X-Firefox-Spdy: h2
www.td.org/?cm_mmc=membership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&utm_source=membership&utm_medium=email&utm_campaign=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926
104.22.78.147200 OK 60 kB URL HTTP/2 www.td.org/?cm_mmc=membership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&utm_source=membership&utm_medium=email&utm_campaign=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926
IP 104.22.78.147:0
Hash 93d1ef7910fe25edabfeed07ebd9e295
ee74db5f0d08cfb8954c89564a76806b18608cf4
d39ddcff24915c6ec923ec20d77d7b5761fd2dd228817ac9b3fc40601fea9871
GET /?cm_mmc=membership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&utm_source=membership&utm_medium=email&utm_campaign=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926 HTTP/1.1
Host: www.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: .StoreAnonymousUser=ef5fd91ee4444556bd4d5b46c568c7c5; OrderOptions=CampaignCode=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:24 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
x-powered-by: Brightspot
x-robots-tag: nofollow
cache-control: max-age=3600
cf-cache-status: MISS
last-modified: Fri, 09 Dec 2022 20:37:24 GMT
server: cloudflare
cf-ray: 777089d08b5b992a-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/instantsearch.css@7.3.1/themes/algolia-min.css
151.101.65.229200 OK 3.2 kB URL HTTP/2 cdn.jsdelivr.net/npm/instantsearch.css@7.3.1/themes/algolia-min.css
IP 151.101.65.229:0
File type ASCII text, with very long lines (16150), with no line terminators
Hash a8bca8d2a5bcd24969c7c2c6b9783f6e
dad0cbea203bf3ebc934ea72603856d9b49bad1f
b526dd5297e70a388ade17d26f43417d9caf40c3fbd40606d5bd8c145e81a7d6
GET /npm/instantsearch.css@7.3.1/themes/algolia-min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 7.3.1
x-jsd-version-type: version
etag: W/"3f16-IrrhMwNwOnmJH2O27d273slmb4s"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 20:37:24 GMT
age: 3871954
x-served-by: cache-fra-eddf8230074-FRA, cache-bma1641-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3195
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f7aef7109978f8c1c53298563756a403
d610bb812b080710945dd47f9cccd794af9fe2f7
6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (21747)
Hash 6ca9058d9138dc07d9a378e6f20a8b7b
ff5f65ad24a8e2b3042cbb0136be7edb52215c1a
1561d36bd995a09ea69c243767e196dd2e76a2753b59b78ecbf999161904f86d
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:24 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: bKkFjZE43AfZo3jm8gqLew==
last-modified: Thu, 08 Dec 2022 21:22:16 GMT
etag: 0x8DAD96247F69588
x-ms-request-id: 8efa7dae-001e-0030-5f62-0b82cc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 67664
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089ddcea41c02-OSL
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash cf3c7c27895aa8a2ed12b91d92d09a3e
1840f068c874273806da1af999e8bb2351ad9d77
9309503c17e0ebec69d696fb577bd9843b385e09833e26fd020552eb8e87457f
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:37:24 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "E4540419A111B3525982695973CB7D53D5CD027B"
Expires: Sat, 10 Dec 2022 07:00:00 GMT
Last-Modified: Fri, 09 Dec 2022 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1855
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 777089ddfa66b51d-OSL
www.googletagmanager.com/gtag/js?id=G-7K8E29WLBJ
172.217.21.168200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-7K8E29WLBJ
IP 172.217.21.168:0
File type ASCII text, with very long lines (25106)
Hash cbacd81529d557aea2cdd078de606975
abc38ec51bb185a147a0107b595ff0f93462f299
66b006a0a49c6f751dfcacfbcae985ff9307221d989946a6a4cb2d3e7a917bc2
GET /gtag/js?id=G-7K8E29WLBJ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 20:37:24 GMT
expires: Fri, 09 Dec 2022 20:37:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78127
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f7aef7109978f8c1c53298563756a403
d610bb812b080710945dd47f9cccd794af9fe2f7
6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash bba0021ae2ff3176d2a700d154fbb10e
21a9af51b6f6fb5a2edf466155958abcadfd08bc
a340e7d2fd5dcea50a86bc0d000d6590e3cedf9071411a14a82fe2f98c51b15a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144868
Date: Fri, 09 Dec 2022 20:37:24 GMT
Etag: "63931b01-1d7"
Expires: Sun, 11 Dec 2022 12:51:52 GMT
Last-Modified: Fri, 09 Dec 2022 11:24:49 GMT
Server: ECS (dcb/7F3A)
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TSVSaomtGphxm-LYV6zjjYG-8MhEjpmIzM1E9yjg6eCb7CXPB9LYVw==
Age: 5223
d19d5sz0wkl0lu.cloudfront.net/resource/styleguide/fonts/whitneyhtf-book-webfont.ce7699bbf0efdd51f8938bc47963b47d.woff
143.204.42.215200 OK 24 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/resource/styleguide/fonts/whitneyhtf-book-webfont.ce7699bbf0efdd51f8938bc47963b47d.woff
IP 143.204.42.215:0
File type Web Open Font Format, TrueType, length 24448, version 1.0\012- data
Hash 101ad7dc3ff4b8826b944f54468fada5
bbbe54f4d7f72e81f3cc8c06646b811eb2699dfb
e1ccde1698c49dad6c2cbae7d1c8187a42268ccb80387a5bf3561f90f0bba488
GET /resource/styleguide/fonts/whitneyhtf-book-webfont.ce7699bbf0efdd51f8938bc47963b47d.woff HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.td.org
Connection: keep-alive
Referer: https://d19d5sz0wkl0lu.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-font-woff
content-length: 24448
date: Mon, 05 Dec 2022 03:43:45 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 25 Apr 2019 15:49:03 GMT
etag: "101ad7dc3ff4b8826b944f54468fada5"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9uB47DUbPfVOKufSv1CdJzb4GYYfzD8EV8W9gFazPAm7XviiBqjncA==
age: 406420
X-Firefox-Spdy: h2
d19d5sz0wkl0lu.cloudfront.net/resource/styleguide/fonts/whitneyhtf-bold-webfont.98775f3e97dd10a76916e4fec41ba5f3.woff
143.204.42.215200 OK 25 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/resource/styleguide/fonts/whitneyhtf-bold-webfont.98775f3e97dd10a76916e4fec41ba5f3.woff
IP 143.204.42.215:0
File type Web Open Font Format, TrueType, length 25436, version 1.0\012- data
Hash df28312f072c9fc701322096f83fcbc9
e901943f3199d5dac86c66a58e4d07f1565a25b2
31d82c559174131618f95648c26d1b5e6095ae5fa5f6b984eba8cd76fe765259
GET /resource/styleguide/fonts/whitneyhtf-bold-webfont.98775f3e97dd10a76916e4fec41ba5f3.woff HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.td.org
Connection: keep-alive
Referer: https://d19d5sz0wkl0lu.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-font-woff
content-length: 25436
date: Fri, 09 Dec 2022 05:59:43 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 25 Apr 2019 15:49:03 GMT
etag: "df28312f072c9fc701322096f83fcbc9"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YFXxOgHm3eAay5Rge31vp2-7HlE6WZqGFQmXEs6yKJdcDNlIwBvwvA==
age: 52662
X-Firefox-Spdy: h2
analytics.formstack.com/js/fsa.js
54.230.111.26200 OK 38 kB URL HTTP/2 analytics.formstack.com/js/fsa.js
IP 54.230.111.26:0
Hash 2e5000b3c85e8a69cec504b2535ee523
f8354f6c21bb06307e2ab65f54257a90fab804cb
23d2e4c8be25b2710c2a4bac12514ed5a506f9ed4e83989f66825bc4a267b060
GET /js/fsa.js HTTP/1.1
Host: analytics.formstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Apr 2018 16:12:22 GMT
server: AmazonS3
content-encoding: gzip
date: Fri, 09 Dec 2022 02:42:51 GMT
etag: W/"b33155f4d362b9a36ea18bee95c0797a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3kCaIDaCQEX6tyNEkf_coi03Nnp-L45EejWANs-DaE5BjYTNfAjhkQ==
age: 64691
X-Firefox-Spdy: h2
d19d5sz0wkl0lu.cloudfront.net/resource/styleguide/fonts/whitneyhtf-medium-webfont.dc3291ff0cd974e144bf1ec6f26ff046.woff
143.204.42.215200 OK 25 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/resource/styleguide/fonts/whitneyhtf-medium-webfont.dc3291ff0cd974e144bf1ec6f26ff046.woff
IP 143.204.42.215:0
File type Web Open Font Format, TrueType, length 24648, version 1.0\012- data
Hash f7268416af3e461938aec4a178a1371a
a8ff39c3fb8eac5d64e7a6afb29f21953f6083d8
4736a9f0dc07755d17719c58453b8d01c6dd4fa1efaf6e718fe15135cfe8794c
GET /resource/styleguide/fonts/whitneyhtf-medium-webfont.dc3291ff0cd974e144bf1ec6f26ff046.woff HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.td.org
Connection: keep-alive
Referer: https://d19d5sz0wkl0lu.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-font-woff
content-length: 24648
date: Thu, 01 Dec 2022 01:39:38 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 25 Apr 2019 15:49:04 GMT
etag: "f7268416af3e461938aec4a178a1371a"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3EZWI1wmN-j8UNPS9IaidM8bnmpeKdqQmLmIZuICG4dZewiT-yNAbA==
age: 759467
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash c459cb4a805ba31e6a15ee485439eb00
70c5747293ae3678ca9563e3371cc7cdc163057b
809a60149b8908418157eb8c17dfc159c507c3e39238ee8118df92b3339614a1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147854
Date: Fri, 09 Dec 2022 20:37:24 GMT
Etag: "63932938-1d7"
Expires: Sun, 11 Dec 2022 13:41:38 GMT
Last-Modified: Fri, 09 Dec 2022 12:25:28 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OnKBx0xcpW123U3P1se3foEaUtmy15BI849YH2w55peEm0OSFn2aiA==
Age: 4570
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash c459cb4a805ba31e6a15ee485439eb00
70c5747293ae3678ca9563e3371cc7cdc163057b
809a60149b8908418157eb8c17dfc159c507c3e39238ee8118df92b3339614a1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Dec 2022 20:37:24 GMT
Last-Modified: Fri, 09 Dec 2022 19:21:15 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eCpYeU0R2agh_pCwKcOtafYBjVTjcaM_eOYX6-uYwvWBafr9YCu1yg==
Age: 4569
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash c459cb4a805ba31e6a15ee485439eb00
70c5747293ae3678ca9563e3371cc7cdc163057b
809a60149b8908418157eb8c17dfc159c507c3e39238ee8118df92b3339614a1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147847
Date: Fri, 09 Dec 2022 20:37:24 GMT
Etag: "63932938-1d7"
Expires: Sun, 11 Dec 2022 13:41:31 GMT
Last-Modified: Fri, 09 Dec 2022 12:25:28 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: s8H38RqP25iJbY3wSUG4dA5l-IAIxUf7dVu2uwM0qjXHeaIXOBTtFg==
Age: 4563
cdn.segment.com/next-integrations/integrations/adwords/2.5.3/adwords.dynamic.js.gz
143.204.48.96200 OK 1.4 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/adwords/2.5.3/adwords.dynamic.js.gz
IP 143.204.48.96:0
File type HTML document, ASCII text, with very long lines (3675)
Hash 257fe81df53dcd4819bc1a81e78fce58
c8359d1d27cce7de170e6aed63e157390b33e202
f5d159180db9c44e6f82b7fb33ef2983b42ef6d369ebe4c1c6ae299a7ec669e2
GET /next-integrations/integrations/adwords/2.5.3/adwords.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1356
date: Sat, 19 Nov 2022 00:00:00 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:47:59 GMT
etag: "257fe81df53dcd4819bc1a81e78fce58"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: a_UrJ3fwQjpizH7mijguRgbb4PvaZ36l
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RHhPpshoPH8a7QgwVbzQmDZ2G2qaOuMk8Y1vKVqolF7FwbwcHo_q6g==
age: 1802246
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/appboy/1.16.1/appboy.dynamic.js.gz
143.204.48.96200 OK 4.7 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/appboy/1.16.1/appboy.dynamic.js.gz
IP 143.204.48.96:0
File type ASCII text, with very long lines (18430)
Hash c93015d001b48a7fad89bc61dd137e47
6db4fae80df01d0a9866c4331e99ebcc2b7283ba
2b5c07708b669b9bcc7a8094a33cd24d75d33592d89256667603887de446938d
GET /next-integrations/integrations/appboy/1.16.1/appboy.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 4665
date: Sat, 19 Nov 2022 00:17:07 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:47:59 GMT
etag: "c93015d001b48a7fad89bc61dd137e47"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: wEL0ZAxauUGpzLw8XzOfYqRzQNbswfyK
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2UYYhM1peg0h9BgpJ3-7pedrAq-E9ttUu-JvZwad0oGdNcxtKzFmwQ==
age: 1801219
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/twitter-ads/2.5.2/twitter-ads.dynamic.js.gz
143.204.48.96200 OK 2.0 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/twitter-ads/2.5.2/twitter-ads.dynamic.js.gz
IP 143.204.48.96:0
File type HTML document, ASCII text, with very long lines (5487)
Hash c8cbba72a05e723659d348e2dd175bb0
c992526eb9fcf4503f1dfe8d8ff36f57da01a461
cdb410e6855415a38cbd8b5b9641c0b3f50bcec8e3b3b4e42983908cde7973a4
GET /next-integrations/integrations/twitter-ads/2.5.2/twitter-ads.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1969
date: Fri, 18 Nov 2022 17:34:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:48:00 GMT
etag: "c8cbba72a05e723659d348e2dd175bb0"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: NfYq3in4OnAhDJmNOqUpw8cr.PmoHBix
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: O2XfyO2IwV6JA1RRImZUgCfneJZp2dwpCd3uX7Qq5wWWBVAmdXPqFw==
age: 1825386
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/visual-tagger/0.3.5/visual-tagger.dynamic.js.gz
143.204.48.96200 OK 16 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/visual-tagger/0.3.5/visual-tagger.dynamic.js.gz
IP 143.204.48.96:0
File type Unicode text, UTF-8 text, with very long lines (46392)
Hash 22f964b449ca210bdea17404f4624ac9
f0e3360fc9b478482c534fc68431d6140aaa42e6
4db88b3ba99870f85e8a5d540219f7411cdaf77d602deb5d36a0bfdaff69e476
GET /next-integrations/integrations/visual-tagger/0.3.5/visual-tagger.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 15523
date: Fri, 18 Nov 2022 12:14:48 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:48:00 GMT
etag: "22f964b449ca210bdea17404f4624ac9"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: f0UvIyKo7YaS5g9vrzKRek8TePrn1hB5
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cfTnAl0wcsplguBthAvbrOAhxNrd12JnuIjNf-bSbBtA8_35SPUT2g==
age: 1844558
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/facebook-pixel/2.11.4/facebook-pixel.dynamic.js.gz
143.204.48.96200 OK 3.3 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/facebook-pixel/2.11.4/facebook-pixel.dynamic.js.gz
IP 143.204.48.96:0
File type HTML document, ASCII text, with very long lines (10360)
Hash a6a51bf375940b6b8b8dc17bad7c100d
8fb07d8facf476a98f0aceb0253d9059d1621efd
73b91b899e567ea1f4685fa1e4cc9455dd758aea9259e84f1b80e93762ee1e41
GET /next-integrations/integrations/facebook-pixel/2.11.4/facebook-pixel.dynamic.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3269
date: Thu, 01 Dec 2022 01:19:28 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 24 Oct 2022 18:48:00 GMT
etag: "a6a51bf375940b6b8b8dc17bad7c100d"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: RTxiycDerKdpoyALA__FPwQKxkLdwn1E
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: k7VDTlm0zGyoBo80pH2fIPM1Ou5qnpMvHdYoF1BdU0rd8xpoA-rpOQ==
age: 760678
X-Firefox-Spdy: h2
s3.amazonaws.com/files.astd.org/public/static/css/8.190dfa08.chunk.css
54.231.130.120200 OK 9.4 kB URL HTTP/1.1 s3.amazonaws.com/files.astd.org/public/static/css/8.190dfa08.chunk.css
IP 54.231.130.120:0
File type Unicode text, UTF-8 text, with very long lines (9295)
Hash 14e41b892fda5ca5e82b5d1af3e53652
6c7a3c60c4937f6e0d408119e1cbe67ed6ce07ac
7995fb8627a36302d2a58554839c8f8c6de196381a34d6149a34f8501a027e5e
GET /files.astd.org/public/static/css/8.190dfa08.chunk.css HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 73X4+KCSyVIysp1uJQMqLPVxEJvGsVNQ5cvFpn8OZx5xBHyI3qXcuahWKZkK2lZ16tb8qDjP/+o=
x-amz-request-id: 0125JC7FWH60A91W
Date: Fri, 09 Dec 2022 20:37:26 GMT
Last-Modified: Mon, 16 May 2022 14:47:48 GMT
ETag: "14e41b892fda5ca5e82b5d1af3e53652"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 9354
www.td.org/styleguide/analytics.min.js
104.22.78.147200 OK 2.7 kB URL HTTP/2 www.td.org/styleguide/analytics.min.js
IP 104.22.78.147:0
File type ASCII text, with very long lines (6644)
Hash a29b0e4076ab634ec8f5ce5f0678656c
7bad031ad756356f99bbc15519b0acecf7116e30
abf40e6657069bd352c8ec861402789b216384840ea1880b81e254ea44b2573e
GET /styleguide/analytics.min.js HTTP/1.1
Host: www.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/?cm_mmc=membership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&utm_source=membership&utm_medium=email&utm_campaign=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926
Cookie: .StoreAnonymousUser=ef5fd91ee4444556bd4d5b46c568c7c5; OrderOptions=CampaignCode=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:25 GMT
content-type: application/javascript;charset=UTF-8
content-length: 2745
content-encoding: gzip
etag: W/"6687-1668557228000-gzip"
last-modified: Wed, 16 Nov 2022 00:07:08 GMT
vary: Accept-Encoding
x-powered-by: Brightspot
cache-control: max-age=3600
cf-cache-status: EXPIRED
accept-ranges: bytes
server: cloudflare
cf-ray: 777089dd3958992a-ARN
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz
143.204.48.96200 OK 22 kB URL HTTP/2 cdn.segment.com/next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz
IP 143.204.48.96:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash befb217271e2e926c7d898f1c85f6cb7
b6ca8f0b9eb7ddebc916cbc77eddab8532216748
21c28b41965eaf22aae5ee670f71227bd2d8fd32a024d62864873f7c8621e8f4
GET /next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 22177
date: Fri, 09 Dec 2022 10:16:22 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Wed, 07 Dec 2022 17:21:14 GMT
etag: "befb217271e2e926c7d898f1c85f6cb7"
cache-control: public,max-age=31536000,immutable
content-encoding: gzip
x-amz-version-id: nCe7.wX1BbiLVINghrbErhSI9GNiVjGD
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jFIpLzyox7xsJbQ5ACgOsFthtaT4Q5H8WJgmaQltAl__Hie7K6-FIg==
age: 37264
X-Firefox-Spdy: h2
cdn.segment.com/next-integrations/middleware/analytics.js-middleware-braze-deduplicate/latest/analytics.js-middleware-braze-deduplicate.js.gz
143.204.48.96200 OK 778 B URL HTTP/2 cdn.segment.com/next-integrations/middleware/analytics.js-middleware-braze-deduplicate/latest/analytics.js-middleware-braze-deduplicate.js.gz
IP 143.204.48.96:0
File type ASCII text, with very long lines (1751)
Hash 3f0dbc48d4537cdf84414eec13b0164c
daa31dc393ac79c71c464e392dc13a8c4cfff84e
9161f093e2632d08483aba9b8e0b4dab30032316a3c29278e767d69760d11236
GET /next-integrations/middleware/analytics.js-middleware-braze-deduplicate/latest/analytics.js-middleware-braze-deduplicate.js.gz HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 778
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 01 Dec 2022 07:21:44 GMT
content-encoding: gzip
x-amz-version-id: SowLV5sjN2tYEk9eOo9L7H8aWBO_ERM5
accept-ranges: bytes
server: AmazonS3
date: Fri, 09 Dec 2022 16:01:26 GMT
etag: "3f0dbc48d4537cdf84414eec13b0164c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0oP-dE6bXYs7CbTNsVVmQyH5Rhb2G56OxmtoAFlhsWteHv187DYpUA==
age: 58172
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 921b5089d0494fa9b70f8296720929ac
6d144d48b6abfe557956167c49397092a3bbb732
130930920877863fbcba1f142be2827e0d13761fb5929a138b1952ab72f60f92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5478
Cache-Control: max-age=156263
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:25 GMT
Etag: "63934686-118"
Expires: Sun, 11 Dec 2022 16:01:48 GMT
Last-Modified: Fri, 09 Dec 2022 14:30:30 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280
s3.amazonaws.com/files.astd.org/public/static/js/main.5f8fddd3.chunk.js
54.231.130.120200 OK 477 kB URL HTTP/1.1 s3.amazonaws.com/files.astd.org/public/static/js/main.5f8fddd3.chunk.js
IP 54.231.130.120:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 477 kB (476903 bytes)
Hash bf8885fe0a1a3983ff4ec17ecc9511c9
86c341b3fe1c53890b0670e4f2141a1f9e96d47e
ebeb56bedae9a93fcfb92f0c06e96480fac76eb781a3388a9848c6a467d0bbec
GET /files.astd.org/public/static/js/main.5f8fddd3.chunk.js HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 3+ZlIwSTLO15UOyPptJe2fWfy6S6KDyVWgSW3xK4yFwOPKt+gG5WmaYHdaQRJGH2gnE/XkAeUDg=
x-amz-request-id: 012B15FN7FS850T2
Date: Fri, 09 Dec 2022 20:37:26 GMT
Last-Modified: Thu, 29 Sep 2022 18:12:25 GMT
ETag: "bf8885fe0a1a3983ff4ec17ecc9511c9"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 476903
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash efbe14a3d094300efe8a8fe1a865aea7
851e6685dd3df15278841ddb355f486ae7a83ede
db65917aa8fed07c789fd4930dbea99c13a6df567541c412d6065b0d388e5a92
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB65917AA8FED07C789FD4930DBEA99C13A6DF567541C412D6065B0D388E5A92"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7405
Expires: Fri, 09 Dec 2022 22:40:50 GMT
Date: Fri, 09 Dec 2022 20:37:25 GMT
Connection: keep-alive
s3.amazonaws.com/files.astd.org/public/static/js/10.7e6389ca.chunk.js
54.231.130.120200 OK 3.7 MB URL HTTP/1.1 s3.amazonaws.com/files.astd.org/public/static/js/10.7e6389ca.chunk.js
IP 54.231.130.120:0
File type ASCII text, with very long lines (65461)
Size 3.7 MB (3732486 bytes)
Hash 3a5b661d3d9d4502faba3bd5bab75a03
ab42299a74f05db82a38fc4757ed462e1c07e780
fae734c3faf6f783e34b381dc91f05b3463bc9c9fca74d3efc8a8c041b1d5261
GET /files.astd.org/public/static/js/10.7e6389ca.chunk.js HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: etDVCWyBF2esZaVLirgLfG7k2IUAvo5nCn13p+cUpwAqEJ1LBhBK2X1FTK3i2aYsrt3fdsfvOzY=
x-amz-request-id: 0121PPJWPNESAQZ1
Date: Fri, 09 Dec 2022 20:37:26 GMT
Last-Modified: Thu, 29 Sep 2022 18:12:46 GMT
ETag: "3a5b661d3d9d4502faba3bd5bab75a03"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 3732486
marco.feathr.co/v1/refresh
143.204.55.31200 OK 43 B URL HTTP/2 marco.feathr.co/v1/refresh
IP 143.204.55.31:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /v1/refresh HTTP/1.1
Host: marco.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Fri, 09 Dec 2022 20:37:25 GMT
x-amzn-requestid: 7418ff04-be38-4b0e-8aa0-1f92363c2491
access-control-allow-origin: *
access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key
set-cookie: f_id=63939c8537b2ed000836bb28; Domain=.feathr.co; Path=/; Expires=Sat, 09 Dec 2023 20:37:25 GMT; SameSite=None; Secure; HttpOnly
x-amz-apigw-id: c5Vk8Fj2IAMF5eA=
access-control-allow-methods: *
x-amzn-trace-id: Root=1-63939c85-537e52ab40e3fa481d928cc7;Sampled=0
x-cache: Miss from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rgANAwtcNxcL3tkiEMz40ULSKD8Ks00AbEaJmyyxxxhS2Y1vf_g-0Q==
X-Firefox-Spdy: h2
polo.feathr.co/v1/accounts/61ccc191c0405e0781899e9c/integrations
52.4.232.41200 OK 42 B URL HTTP/2 polo.feathr.co/v1/accounts/61ccc191c0405e0781899e9c/integrations
IP 52.4.232.41:0
File type JSON data\012- , ASCII text
Hash d415665b10892c3615b28c94cc95a881
8108be6e3faaecc4509bdb5906b697a07516ba8a
faa1444cbae74aad09a3bae4849dd1b0fead937d10b8b79321da628b461f59bd
GET /v1/accounts/61ccc191c0405e0781899e9c/integrations HTTP/1.1
Host: polo.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.td.org
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.8
date: Fri, 09 Dec 2022 20:37:25 GMT
content-type: application/json
content-length: 42
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-7K8E29WLBJ&cid=102353847.1670618244>m=2oebu0&aip=1
64.233.165.154204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-7K8E29WLBJ&cid=102353847.1670618244>m=2oebu0&aip=1
IP 64.233.165.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7K8E29WLBJ&cid=102353847.1670618244>m=2oebu0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.td.org
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.td.org
date: Fri, 09 Dec 2022 20:37:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8105b33e4e3af998e9d016e156205c22
dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9
4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sdk.iad-03.braze.com/api/v3/content_cards/sync
151.101.193.208200 OK 2.7 kB URL HTTP/2 sdk.iad-03.braze.com/api/v3/content_cards/sync
IP 151.101.193.208:0
Hash 3552074f484819c4ea9e97ef1c973d61
3590407befccf4bcc13a3fafc56096d425d74b4d
a4d72ecc6a12b1ff72704ac1a277128df7eb2045561149d606ba847a4e5c9bd1
OPTIONS /api/v3/content_cards/sync HTTP/1.1
Host: sdk.iad-03.braze.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-braze-api-key,x-braze-contentcardsrequest,x-braze-datarequest,x-requested-with
Referer: https://www.td.org/
Origin: https://www.td.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-headers: content-type,x-braze-api-key,x-braze-contentcardsrequest,x-braze-datarequest,x-requested-with
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 20:37:26 GMT
via: 1.1 varnish
x-served-by: cache-bma1630-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670618246.299318,VS0,VE365
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
s3.amazonaws.com/files.astd.org/public/static/media/atd-logo.a087cc93.svg
54.231.130.120200 OK 9.8 kB URL HTTP/1.1 s3.amazonaws.com/files.astd.org/public/static/media/atd-logo.a087cc93.svg
IP 54.231.130.120:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (9806), with no line terminators
Hash 746c2f9aa696c07559de47ff2983a101
e501fa6b17f336580e96ddcc9e4adf063b3b567d
24dcc4d51a509e8e7ab69e6e0dcbcf2134123c135badaa5fa6ddc2c2287f9b80
GET /files.astd.org/public/static/media/atd-logo.a087cc93.svg HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: EPIneccvs9Svd4tY8AgBWWtV/xv4/TX63v0mvQrrkvzzVD3gF13woAbl0opVN7wdDNn2pdPrsLs=
x-amz-request-id: 67S2Q1TGNF5CWE2W
Date: Fri, 09 Dec 2022 20:37:28 GMT
Last-Modified: Thu, 11 Mar 2021 21:47:44 GMT
ETag: "746c2f9aa696c07559de47ff2983a101"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 9806
cdn.cookielaw.org/consent/06a91b64-216f-4fa7-b8c5-aaefc887236d/06a91b64-216f-4fa7-b8c5-aaefc887236d.json
104.16.148.64200 OK 1.3 kB URL HTTP/2 cdn.cookielaw.org/consent/06a91b64-216f-4fa7-b8c5-aaefc887236d/06a91b64-216f-4fa7-b8c5-aaefc887236d.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (3088), with no line terminators
Hash e2525927c3535b70fe662b9ab461d901
a6ed26d10a575a0543de3758b0e3f2c15ed35b41
a16c62db7aa845595a61e5b86931f030b1449b87a1d8fddec24bbcc09785d6b5
GET /consent/06a91b64-216f-4fa7-b8c5-aaefc887236d/06a91b64-216f-4fa7-b8c5-aaefc887236d.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.td.org
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:27 GMT
content-type: application/x-javascript
content-length: 1339
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: 4lJZJ8NTW3D+ZiuatGHZAQ==
last-modified: Fri, 29 Apr 2022 21:48:19 GMT
etag: 0x8DA2A29F95E85E8
x-ms-request-id: 595e7095-501e-0141-6e12-5cb6a0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Sat, 10 Dec 2022 20:37:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089ec8d77b50c-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 277e4c48eb177e905b3180233fcd7a5b
20093687f689c9ab89bdcd0a20e12bb224b68a04
acbed50363f774989518d6fa4d331b990b03dd26a5ad95d271f1a009de7f305f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3380
Cache-Control: max-age=145223
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:27 GMT
Etag: "6393239a-118"
Expires: Sun, 11 Dec 2022 12:57:50 GMT
Last-Modified: Fri, 09 Dec 2022 12:01:30 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash c15599ba5d9e46bcaaa052fd275b64cf
42f0cce87f43bcedd354fbf18c12a74eb2e5c572
6ce410e34f287855f528fc112a2cc5074e1ebf0bf1bbac0e1d2a173ff63d53c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1944
Cache-Control: max-age=128612
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:27 GMT
Etag: "6392e853-118"
Expires: Sun, 11 Dec 2022 08:20:59 GMT
Last-Modified: Fri, 09 Dec 2022 07:48:35 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash c15599ba5d9e46bcaaa052fd275b64cf
42f0cce87f43bcedd354fbf18c12a74eb2e5c572
6ce410e34f287855f528fc112a2cc5074e1ebf0bf1bbac0e1d2a173ff63d53c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5584
Cache-Control: max-age=132252
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:27 GMT
Etag: "6392e853-118"
Expires: Sun, 11 Dec 2022 09:21:39 GMT
Last-Modified: Fri, 09 Dec 2022 07:48:35 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
cookies-data.onetrust.io/bannersdk/v1/domaingroupcheck
104.18.1.236200 OK 0 B URL HTTP/2 cookies-data.onetrust.io/bannersdk/v1/domaingroupcheck
IP 104.18.1.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /bannersdk/v1/domaingroupcheck HTTP/1.1
Host: cookies-data.onetrust.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: domainid,location,url
Referer: https://www.td.org/
Origin: https://www.td.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:27 GMT
content-type: application/json
content-length: 0
access-control-allow-origin: *
access-control-allow-headers: domainId, url, location, Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
vary: Accept-Encoding
server: cloudflare
cf-ray: 777089ed8a251c16-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.32.0/otBannerSdk.js
104.16.148.64200 OK 81 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.32.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (65455)
Hash af27d9858b2a2e2b0912706c3aa815b1
10c1fa093e80cbcb3ba39b8e54e934b37cb3aa57
a736527d6f80163a1b0ec8f7f8a2902c7005b4ec61fce5295d9612df48a72d06
GET /scripttemplates/6.32.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:27 GMT
content-type: application/javascript
content-length: 81095
content-encoding: gzip
content-md5: ryfZhYsqLisJEnBsOqgVsQ==
last-modified: Fri, 18 Mar 2022 16:29:23 GMT
etag: 0x8DA08FC76466F7A
x-ms-request-id: 4e03c84a-e01e-0031-75f4-3a8331000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 67639
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089edddf71c02-OSL
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.27.85200 OK 591 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.27.85:0
Hash c84897dfd286defd4c2530d8caa37f18
8bb0a0ccf67506d003e00b39996729f59bdd5d9c
4e9ddef0d8241c6f2628d9c299ef1103219895d8aaa6f08ba16faf70abf8a5c1
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.td.org
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:27 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 777089ed7d9f0b39-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1d7e89a69a580742cda546a3282a23ee
102f55f89308edae1a996a2680d4d8bbc7ab3600
ccdaf5de2ec38e8a6c4b2f914c428630db3c132c6063bd3bbaf3febbca3a750b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CCDAF5DE2EC38E8A6C4B2F914C428630DB3C132C6063BD3BBAF3FEBBCA3A750B"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20861
Expires: Sat, 10 Dec 2022 02:25:08 GMT
Date: Fri, 09 Dec 2022 20:37:27 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bccf1994c49e9422b13ab4058ed5dfc4
9c9dbc4b8c8bd6963ade11b9b3c01429cca9059a
136a5a5e736d3c79c9de792a9ff06ced8399bf6bc91ca4e0b4ddae656b2cd2d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "136A5A5E736D3C79C9DE792A9FF06CED8399BF6BC91CA4E0B4DDAE656B2CD2D4"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18389
Expires: Sat, 10 Dec 2022 01:43:56 GMT
Date: Fri, 09 Dec 2022 20:37:27 GMT
Connection: keep-alive
unpkg.com/tippy.js@6.3.7/dist/tippy-bundle.umd.min.js
104.16.122.175200 OK 9.3 kB URL HTTP/2 unpkg.com/tippy.js@6.3.7/dist/tippy-bundle.umd.min.js
IP 104.16.122.175:0
File type ASCII text, with very long lines (25667)
Hash 02a57cb0c1d500eb2eea572c11132b84
c0deee6d6dbc99ea483c82a06fa0a248ba8b0873
53bdbe034e562d9a4407802c92336f9d6b01f891276f1860fac0819e64db0c14
GET /tippy.js@6.3.7/dist/tippy-bundle.umd.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:24 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"6475-GJFZFDM34LwIzjC4uKWaXpNTNf4"
via: 1.1 fly.io
fly-request-id: 01GE2B86N5MZXP4C66HZMQ4254-ams
cf-cache-status: HIT
age: 6239505
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089dd7c30b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.f10d3096539d72f6123e.js
143.204.48.96200 OK 3.3 kB URL HTTP/2 cdn.segment.com/analytics-next/bundles/ajs-destination.bundle.f10d3096539d72f6123e.js
IP 143.204.48.96:0
Hash c017bfcd84633cb6c2f3bb786be8d6ed
8f7071684d2c20333d3bcb26beab90f5e410f787
0c138edccce155b0e4e99aa80830cfd85c60f6ac3c4f00699aad35d20e605336
GET /analytics-next/bundles/ajs-destination.bundle.f10d3096539d72f6123e.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 27 Nov 2022 05:10:09 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 27 Nov 2022 04:05:11 GMT
etag: W/"3fe4d92339c7d21c57f0044fcdcf5274"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: eWZ_Pm2mNT9k0TonRN_95lp_q61Q1oj1
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _AH5-VpNTyJdDLW6Ey9Y6VoATM47JSQIYAt4yIgfZerwvF7eOfqOdg==
age: 1092437
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/06a91b64-216f-4fa7-b8c5-aaefc887236d/e8b2d604-0fc4-4311-8861-f26b4db55015/en.json
104.16.148.64200 OK 19 kB URL HTTP/2 cdn.cookielaw.org/consent/06a91b64-216f-4fa7-b8c5-aaefc887236d/e8b2d604-0fc4-4311-8861-f26b4db55015/en.json
IP 104.16.148.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65514), with no line terminators
Hash 022f1fcd0cdc0ffb21fc2740159845f7
7b0d980aa38727b5c2d149b60bf9ee13f021f7fc
c127d7cff652c3918a308bf2d0e8c5a2d84d34778fc1281334e704a40e5e9431
GET /consent/06a91b64-216f-4fa7-b8c5-aaefc887236d/e8b2d604-0fc4-4311-8861-f26b4db55015/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
Origin: https://www.td.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:27 GMT
content-type: application/x-javascript
content-length: 19257
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: Ai8fzQzcD/sh/CdAFZhF9w==
last-modified: Fri, 29 Apr 2022 21:48:22 GMT
etag: 0x8DA2A29FB24D576
x-ms-request-id: a1943f84-a01e-011b-5612-5cb021000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Sat, 10 Dec 2022 20:37:27 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089ee3ef5b50c-OSL
X-Firefox-Spdy: h2
s3.amazonaws.com/files.astd.org/public/static/media/whitneyhtf-book-webfont.a7215fa9.woff2
54.231.130.120200 OK 19 kB URL HTTP/1.1 s3.amazonaws.com/files.astd.org/public/static/media/whitneyhtf-book-webfont.a7215fa9.woff2
IP 54.231.130.120:0
File type Web Open Font Format (Version 2), TrueType, length 18600, version 1.0\012- data
Hash 92278e555b2d35d68509dd9c284f0304
d6ba226025dd11616a28d6185ee9e245b6196849
5c156222ef3eb1228001f6746c78136377d6f4f5387af85ee1ddf147d7e4263b
GET /files.astd.org/public/static/media/whitneyhtf-book-webfont.a7215fa9.woff2 HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.td.org
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Uj55DRz2a9f2AyFDQB+c58rZgKkiGQsHV5i2C8R+EF0N6NjqLQeegXgzM2lR16y/VeQtUnc8fyU=
x-amz-request-id: 67S9W9NKWSB5ECC6
Date: Fri, 09 Dec 2022 20:37:28 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Thu, 11 Mar 2021 21:47:45 GMT
ETag: "92278e555b2d35d68509dd9c284f0304"
Accept-Ranges: bytes
Content-Type: binary/octet-stream
Server: AmazonS3
Content-Length: 18600
cdn.cookielaw.org/scripttemplates/6.32.0/assets/v2/otPcCenter.json
104.16.148.64200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.32.0/assets/v2/otPcCenter.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (37720)
Hash b98951b9e685b52e6684eca68c6585a3
ab2127d67c9822e895caec017cc10668802f5fd6
890527152c26d7310348c3d9e29e950b588c1d9fd7eb722207bb862849723c9d
GET /scripttemplates/6.32.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
Origin: https://www.td.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:27 GMT
content-type: application/json
content-length: 11627
content-encoding: gzip
content-md5: uYlRueaFtS5mhOymjGWFow==
last-modified: Fri, 18 Mar 2022 16:29:16 GMT
etag: 0x8DA08FC723EC22F
x-ms-request-id: bb2905fe-801e-00a9-3b5d-450d0e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089eeaf51b50c-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.32.0/assets/otFlat.json
104.16.148.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.32.0/assets/otFlat.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (10856)
Hash f33aeb448b5934c684b6e7212bfa1fc1
8d56f2a627e96d153995f2461e5904cebdfb0293
f2666356b549cda2171a21761e3160bb866ae336ecf1a30fd1aab5b572558449
GET /scripttemplates/6.32.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
Origin: https://www.td.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:27 GMT
content-type: application/json
content-length: 2959
content-encoding: gzip
content-md5: 8zrrRItZNMaEtuchK/ofwQ==
last-modified: Fri, 18 Mar 2022 16:29:14 GMT
etag: 0x8DA08FC70DA836E
x-ms-request-id: 4b3515f1-e01e-0117-295d-455ed0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089eeaf4fb50c-OSL
X-Firefox-Spdy: h2
sdk.iad-03.braze.com/api/v3/data/
151.101.193.208200 OK 2.2 kB URL HTTP/2 sdk.iad-03.braze.com/api/v3/data/
IP 151.101.193.208:0
File type JSON data\012- , ASCII text, with very long lines (7475), with no line terminators
Hash c03c23df558e6096cf1fce5861288532
6e945c481aa3328f8e79301e0f9bfc2fcf9a574c
404ff4cbe1d4058c8c442c50ff946f4cf90351242220008a54ce69e7ca529c2e
OPTIONS /api/v3/data/ HTTP/1.1
Host: sdk.iad-03.braze.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-braze-api-key,x-braze-datarequest,x-braze-triggersrequest,x-requested-with
Referer: https://www.td.org/
Origin: https://www.td.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-headers: content-type,x-braze-api-key,x-braze-datarequest,x-braze-triggersrequest,x-requested-with
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 20:37:25 GMT
via: 1.1 varnish
x-served-by: cache-bma1630-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670618246.581394,VS0,VE366
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
graphql.td.org/
18.205.222.128204 No Content 0 B IP 18.205.222.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: graphql.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://www.td.org/
Origin: https://www.td.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.td.org
Vary: Origin, Access-Control-Request-Headers
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Headers: authorization,content-type
Content-Length: 0
Date: Fri, 09 Dec 2022 20:37:27 GMT
Via: 1.1 vegur
graphql.td.org/
18.205.222.128204 No Content 0 B IP 18.205.222.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: graphql.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://www.td.org/
Origin: https://www.td.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.td.org
Vary: Origin, Access-Control-Request-Headers
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Headers: authorization,content-type
Content-Length: 0
Date: Fri, 09 Dec 2022 20:37:27 GMT
Via: 1.1 vegur
graphql.td.org/
18.205.222.128204 No Content 0 B IP 18.205.222.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: graphql.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://www.td.org/
Origin: https://www.td.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.td.org
Vary: Origin, Access-Control-Request-Headers
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Headers: authorization,content-type
Content-Length: 0
Date: Fri, 09 Dec 2022 20:37:27 GMT
Via: 1.1 vegur
www.td.org/_track
104.22.78.147200 OK 0 B IP 104.22.78.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /_track HTTP/1.1
Host: www.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 159
Origin: https://www.td.org
Connection: keep-alive
Referer: https://www.td.org/?cm_mmc=membership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&utm_source=membership&utm_medium=email&utm_campaign=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926
Cookie: .StoreAnonymousUser=ef5fd91ee4444556bd4d5b46c568c7c5; OrderOptions=CampaignCode=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926; FSAV=95594032.1420489935.1670618244.1670618244.1670618244.1.; FSAC=95594032.1670618244.utmcsr%3Dmembership%7Cutmccn%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%7Cutmcmd%3Demail; _ga_7K8E29WLBJ=GS1.1.1670618244.1.1.1670618244.60.0.0; _ga=GA1.1.102353847.1670618244; ab.storage.sessionId.5aa8cf36-8688-4b04-8385-ef090bfa2008=%7B%22g%22%3A%2234d5efad-37cd-2c5b-596e-1b7485a73416%22%2C%22e%22%3A1670618274413%2C%22c%22%3A1670618244413%2C%22l%22%3A1670618244413%7D; ab.storage.deviceId.5aa8cf36-8688-4b04-8385-ef090bfa2008=%7B%22g%22%3A%228610cfa7-067e-795f-b018-a74219f59469%22%2C%22c%22%3A1670618244417%2C%22l%22%3A1670618244417%7D; feathr_session_id=63939c845cbb173df4001dcc; PreferredTimeZone=Africa%2FAbidjan
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:27 GMT
content-length: 0
set-cookie: bsp.country=NO; domain=td.org; path=/; SameSite=none; secure; Expires=Sat, 10 Dec 2022 20:37:27 GMT
bsp.cdn=default; domain=td.org; path=/; SameSite=none; secure; HttpOnly; Expires=Sat, 10 Dec 2022 20:37:27 GMT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 777089ec9ced992a-ARN
X-Firefox-Spdy: h2
polo.feathr.co/v1/accounts/61ccc191c0405e0781899e9c/pixel.js?pk=feathr
52.4.232.41200 OK 32 B URL HTTP/2 polo.feathr.co/v1/accounts/61ccc191c0405e0781899e9c/pixel.js?pk=feathr
IP 52.4.232.41:0
Hash 9661451032832f869c969fbfcb85bc8b
a680f072c27e72a8dcc6ad56b53d5286b31ff875
eacfa4f711eaca1336ff82619c8a2d310dec11266d594fbc7e5a91259cebf848
GET /v1/accounts/61ccc191c0405e0781899e9c/pixel.js?pk=feathr HTTP/1.1
Host: polo.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Cookie: f_id=63939c8537b2ed000836bb28
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.8
date: Fri, 09 Dec 2022 20:37:27 GMT
content-type: text/javascript
content-length: 32
cache-control: must-revalidate, max-age=14400
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
X-Firefox-Spdy: h2
graphql.td.org/
18.205.222.128200 OK 155 B IP 18.205.222.128:0
File type JSON data\012- , ASCII text
Hash 034e814155d41a4f291db415b7c1dd2d
ff3b0da27d501c52b1de2e77ce8847a15b19911c
29f761719b615d5c415b961f26f23722182c031876e4de02cc6c8d4465af50ca
POST / HTTP/1.1
Host: graphql.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
content-type: application/json
authorization:
Origin: https://www.td.org
Content-Length: 175
Connection: keep-alive
Cookie: .StoreAnonymousUser=ef5fd91ee4444556bd4d5b46c568c7c5; OrderOptions=CampaignCode=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926; FSAV=95594032.1420489935.1670618244.1670618244.1670618244.1.; FSAC=95594032.1670618244.utmcsr%3Dmembership%7Cutmccn%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%7Cutmcmd%3Demail; _ga_7K8E29WLBJ=GS1.1.1670618244.1.1.1670618244.60.0.0; _ga=GA1.1.102353847.1670618244; ab.storage.sessionId.5aa8cf36-8688-4b04-8385-ef090bfa2008=%7B%22g%22%3A%2234d5efad-37cd-2c5b-596e-1b7485a73416%22%2C%22e%22%3A1670618274413%2C%22c%22%3A1670618244413%2C%22l%22%3A1670618244413%7D; ab.storage.deviceId.5aa8cf36-8688-4b04-8385-ef090bfa2008=%7B%22g%22%3A%228610cfa7-067e-795f-b018-a74219f59469%22%2C%22c%22%3A1670618244417%2C%22l%22%3A1670618244417%7D; PreferredTimeZone=Africa%2FAbidjan
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.td.org
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Type: application/json; charset=utf-8
Content-Length: 155
Etag: W/"9b-/zsNon1QHFKx3i53zohHoVsZkRw"
Date: Fri, 09 Dec 2022 20:37:27 GMT
Via: 1.1 vegur
s3.amazonaws.com/files.astd.org/public/static/media/whitneyhtf-semibold-webfont.7e8d4282.woff2
54.231.130.120200 OK 19 kB URL HTTP/1.1 s3.amazonaws.com/files.astd.org/public/static/media/whitneyhtf-semibold-webfont.7e8d4282.woff2
IP 54.231.130.120:0
File type Web Open Font Format (Version 2), TrueType, length 19072, version 1.0\012- data
Hash bc3104f54b1934df7ef78790711276d0
49de2f56923aac5d7e332ceb2b88d9289c5ebc5e
29b0455cafe4c2011761c4b873006f612b67a74a536cb0fce0dc7c8c9734b7ef
GET /files.astd.org/public/static/media/whitneyhtf-semibold-webfont.7e8d4282.woff2 HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.td.org
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: VhRMDfw3jhrwVMq07L23+M+r6r4GLLlTW+pIWnK2IKTntWjmz0JpgGEy/rPGaFIDw2YY5W9OzdI=
x-amz-request-id: 67S6EVENP33R7XRY
Date: Fri, 09 Dec 2022 20:37:28 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Thu, 11 Mar 2021 21:47:46 GMT
ETag: "bc3104f54b1934df7ef78790711276d0"
Accept-Ranges: bytes
Content-Type: binary/octet-stream
Server: AmazonS3
Content-Length: 19072
s3.amazonaws.com/files.astd.org/public/static/media/whitneyhtf-medium-webfont.fae58b81.woff2
54.231.130.120200 OK 19 kB URL HTTP/1.1 s3.amazonaws.com/files.astd.org/public/static/media/whitneyhtf-medium-webfont.fae58b81.woff2
IP 54.231.130.120:0
File type Web Open Font Format (Version 2), TrueType, length 18760, version 1.0\012- data
Hash 9a78dc140569eb84124c710c7b9bda7c
faf55659c61fec4eb8806717e569cb9e09a05d98
601837441752c96e0ce16346aa1dd61f984c6854cfafc2928355f8bb8c35c31c
GET /files.astd.org/public/static/media/whitneyhtf-medium-webfont.fae58b81.woff2 HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.td.org
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Mr8BlnepapDX9G8bfrgmnqguLZHu/n5n3y2a0ZgbnprNokn2vawKQ4Z1uHxB8Y53HAdCa//8JVA=
x-amz-request-id: 67S5KWK81XYAT46R
Date: Fri, 09 Dec 2022 20:37:28 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Thu, 11 Mar 2021 21:47:46 GMT
ETag: "9a78dc140569eb84124c710c7b9bda7c"
Accept-Ranges: bytes
Content-Type: binary/octet-stream
Server: AmazonS3
Content-Length: 18760
graphql.td.org/
18.205.222.128200 OK 1.3 kB IP 18.205.222.128:0
File type JSON data\012- , ASCII text, with very long lines (1296)
Hash a9d22175805040c08e7725f8632a0cc9
cc88386f250c8aa185b2741cd823e6f958ac2d16
4afddb645ddc9191c03b55380781569fd10b075df048312eb0f889e17f79ace1
POST / HTTP/1.1
Host: graphql.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
content-type: application/json
authorization:
Origin: https://www.td.org
Content-Length: 451
Connection: keep-alive
Cookie: .StoreAnonymousUser=ef5fd91ee4444556bd4d5b46c568c7c5; OrderOptions=CampaignCode=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926; FSAV=95594032.1420489935.1670618244.1670618244.1670618244.1.; FSAC=95594032.1670618244.utmcsr%3Dmembership%7Cutmccn%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%7Cutmcmd%3Demail; _ga_7K8E29WLBJ=GS1.1.1670618244.1.1.1670618244.60.0.0; _ga=GA1.1.102353847.1670618244; ab.storage.sessionId.5aa8cf36-8688-4b04-8385-ef090bfa2008=%7B%22g%22%3A%2234d5efad-37cd-2c5b-596e-1b7485a73416%22%2C%22e%22%3A1670618274413%2C%22c%22%3A1670618244413%2C%22l%22%3A1670618244413%7D; ab.storage.deviceId.5aa8cf36-8688-4b04-8385-ef090bfa2008=%7B%22g%22%3A%228610cfa7-067e-795f-b018-a74219f59469%22%2C%22c%22%3A1670618244417%2C%22l%22%3A1670618244417%7D; PreferredTimeZone=Africa%2FAbidjan
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.td.org
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Type: application/json; charset=utf-8
Content-Length: 1297
Etag: W/"511-zIg4byUMiqGFsnQc2CPm+VisLRY"
Date: Fri, 09 Dec 2022 20:37:27 GMT
Via: 1.1 vegur
graphql.td.org/
18.205.222.128200 OK 155 B IP 18.205.222.128:0
File type JSON data\012- , ASCII text
Hash 034e814155d41a4f291db415b7c1dd2d
ff3b0da27d501c52b1de2e77ce8847a15b19911c
29f761719b615d5c415b961f26f23722182c031876e4de02cc6c8d4465af50ca
POST / HTTP/1.1
Host: graphql.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
content-type: application/json
authorization:
Origin: https://www.td.org
Content-Length: 416
Connection: keep-alive
Cookie: .StoreAnonymousUser=ef5fd91ee4444556bd4d5b46c568c7c5; OrderOptions=CampaignCode=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926; FSAV=95594032.1420489935.1670618244.1670618244.1670618244.1.; FSAC=95594032.1670618244.utmcsr%3Dmembership%7Cutmccn%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%7Cutmcmd%3Demail; _ga_7K8E29WLBJ=GS1.1.1670618244.1.1.1670618244.60.0.0; _ga=GA1.1.102353847.1670618244; ab.storage.sessionId.5aa8cf36-8688-4b04-8385-ef090bfa2008=%7B%22g%22%3A%2234d5efad-37cd-2c5b-596e-1b7485a73416%22%2C%22e%22%3A1670618274413%2C%22c%22%3A1670618244413%2C%22l%22%3A1670618244413%7D; ab.storage.deviceId.5aa8cf36-8688-4b04-8385-ef090bfa2008=%7B%22g%22%3A%228610cfa7-067e-795f-b018-a74219f59469%22%2C%22c%22%3A1670618244417%2C%22l%22%3A1670618244417%7D; PreferredTimeZone=Africa%2FAbidjan
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.td.org
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Type: application/json; charset=utf-8
Content-Length: 155
Etag: W/"9b-/zsNon1QHFKx3i53zohHoVsZkRw"
Date: Fri, 09 Dec 2022 20:37:27 GMT
Via: 1.1 vegur
d19d5sz0wkl0lu.cloudfront.net/dims4/default/f39a4f8/2147483647/brightness/-16x0/brightness/0x3/thumbnail/720x250%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2Fef%2F89%2Ff4e859044150b4c5ebc9df3979a7%2Fmary-free-bed-rehabilitation-hospital-textured-background-orange-gradient.jpg
143.204.42.215200 OK 7.2 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/dims4/default/f39a4f8/2147483647/brightness/-16x0/brightness/0x3/thumbnail/720x250%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2Fef%2F89%2Ff4e859044150b4c5ebc9df3979a7%2Fmary-free-bed-rehabilitation-hospital-textured-background-orange-gradient.jpg
IP 143.204.42.215:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x250, components 3\012- data
Hash 6b376e7f61a2b91dcea16260b416cd44
91387e53cbf3c4ebfda0f4fe84e577d1c2c6f196
919fd589c1e41bb8109dc7607017506956356eca611c0e7746984e79772b67e0
GET /dims4/default/f39a4f8/2147483647/brightness/-16x0/brightness/0x3/thumbnail/720x250%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2Fef%2F89%2Ff4e859044150b4c5ebc9df3979a7%2Fmary-free-bed-rehabilitation-hospital-textured-background-orange-gradient.jpg HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 7160
cache-control: max-age=31536000, public
date: Thu, 08 Dec 2022 06:38:53 GMT
edge-control: downstream-ttl=31536000
etag: 0cc7a86dc77d6478dcb0f1cc6afc536a
expires: Fri, 08 Dec 2023 06:38:53 GMT
server: Apache
x-robots-tag: nofollow
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: z8lseeztPEVZUxrq2Q3d8tWHTdutUXFAZqXFk7udRpWNVryrqcbEUw==
age: 136714
X-Firefox-Spdy: h2
d19d5sz0wkl0lu.cloudfront.net/dims4/default/66f9cdb/2147483647/thumbnail/210x120%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2F11%2F3d%2F443cc0b64032a9e57278b54b1982%2F969162363-cybersale22-marketing-site-gfx-r4-sidebar-210x120.jpg
143.204.42.215200 OK 5.2 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/dims4/default/66f9cdb/2147483647/thumbnail/210x120%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2F11%2F3d%2F443cc0b64032a9e57278b54b1982%2F969162363-cybersale22-marketing-site-gfx-r4-sidebar-210x120.jpg
IP 143.204.42.215:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 210x120, components 3\012- data
Hash 39f2b78fd93c6c1a7e3aafe1634cdef1
cb0b33f98eb312c94883715c43e3d89782ea6147
eaf765c02bb658977371ac7e674d1f4d986160707123e57cd10a55cbd21f4aba
GET /dims4/default/66f9cdb/2147483647/thumbnail/210x120%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2F11%2F3d%2F443cc0b64032a9e57278b54b1982%2F969162363-cybersale22-marketing-site-gfx-r4-sidebar-210x120.jpg HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5157
cache-control: max-age=31536000, public
date: Fri, 09 Dec 2022 03:47:36 GMT
edge-control: downstream-ttl=31536000
etag: eb4b214a82dadb94b01cd8daabfbbfa1
expires: Sat, 09 Dec 2023 03:47:36 GMT
server: Apache
x-robots-tag: nofollow
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FlAvY2NR2iBfnK5OPcdQrvZe9ihRQj1xCoDJDtnfaa_qv-vuJBF0pg==
age: 60591
X-Firefox-Spdy: h2
d19d5sz0wkl0lu.cloudfront.net/dims4/default/1e734fe/2147483647/thumbnail/210x120%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2F81%2F09%2Ffe8d424f47719584a02caf2fb7fb%2Fadobestock-446751022.jpeg
143.204.42.215200 OK 8.9 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/dims4/default/1e734fe/2147483647/thumbnail/210x120%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2F81%2F09%2Ffe8d424f47719584a02caf2fb7fb%2Fadobestock-446751022.jpeg
IP 143.204.42.215:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 210x120, components 3\012- data
Hash 528870393516dcac958a300acc447081
05deba10852d34865eb7a7b77bfc0b80ced94029
087f107b3be47cea4e32c919badad949b962a72fb90a704c6d723468670fbef5
GET /dims4/default/1e734fe/2147483647/thumbnail/210x120%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2F81%2F09%2Ffe8d424f47719584a02caf2fb7fb%2Fadobestock-446751022.jpeg HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8948
cache-control: max-age=31536000, public
date: Thu, 01 Dec 2022 15:50:54 GMT
edge-control: downstream-ttl=31536000
etag: 615f755c4f2690c88c8a8d171b94fdfc
expires: Fri, 01 Dec 2023 15:50:54 GMT
server: Apache
x-robots-tag: nofollow
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4hKefAvdWDtkmMFCDykpMMnKXRWhuW5FbYMOw_Yl_9GjMiMvP9G-oQ==
age: 708393
X-Firefox-Spdy: h2
graphql.td.org/
18.205.222.128200 OK 30 kB IP 18.205.222.128:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (30418)
Hash 08bae3ce30baeae9607f0d7816560aed
4cc08d637967dcf5e586ff42c4d77e4e9ee55606
c531f65951aa7bd8e8ca2b5b946a366cc047e0c7f549dac1bec09f1445ed5092
POST / HTTP/1.1
Host: graphql.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
content-type: application/json
authorization:
Origin: https://www.td.org
Content-Length: 857
Connection: keep-alive
Cookie: .StoreAnonymousUser=ef5fd91ee4444556bd4d5b46c568c7c5; OrderOptions=CampaignCode=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926; FSAV=95594032.1420489935.1670618244.1670618244.1670618244.1.; FSAC=95594032.1670618244.utmcsr%3Dmembership%7Cutmccn%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%7Cutmcmd%3Demail; _ga_7K8E29WLBJ=GS1.1.1670618244.1.1.1670618244.60.0.0; _ga=GA1.1.102353847.1670618244; ab.storage.sessionId.5aa8cf36-8688-4b04-8385-ef090bfa2008=%7B%22g%22%3A%2234d5efad-37cd-2c5b-596e-1b7485a73416%22%2C%22e%22%3A1670618274413%2C%22c%22%3A1670618244413%2C%22l%22%3A1670618244413%7D; ab.storage.deviceId.5aa8cf36-8688-4b04-8385-ef090bfa2008=%7B%22g%22%3A%228610cfa7-067e-795f-b018-a74219f59469%22%2C%22c%22%3A1670618244417%2C%22l%22%3A1670618244417%7D; PreferredTimeZone=Africa%2FAbidjan
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.td.org
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Type: application/json; charset=utf-8
Content-Length: 30433
Etag: W/"76e1-TMCNY3ln3PXlhv9CxNd+Tp7lVgY"
Date: Fri, 09 Dec 2022 20:37:27 GMT
Via: 1.1 vegur
d19d5sz0wkl0lu.cloudfront.net/dims4/default/4f8a804/2147483647/thumbnail/720x405%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2Fd9%2F3f%2F1d34dd554267afdc9b1a0f3650e1%2Fadobestock-193769735-gold.jpg
143.204.42.215200 OK 51 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/dims4/default/4f8a804/2147483647/thumbnail/720x405%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2Fd9%2F3f%2F1d34dd554267afdc9b1a0f3650e1%2Fadobestock-193769735-gold.jpg
IP 143.204.42.215:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 720x405, components 3\012- data
Hash 9d898dc8c5e8d66975f1c8e1eb89b49a
dff2a28a2c16506a6ac3f6de06fd0bc74f1defa6
6552e12c7608f0c00e270627e9599a5571ebd35d6636d62eb01fe20695281a34
GET /dims4/default/4f8a804/2147483647/thumbnail/720x405%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2Fd9%2F3f%2F1d34dd554267afdc9b1a0f3650e1%2Fadobestock-193769735-gold.jpg HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 50970
cache-control: max-age=31536000, public
date: Wed, 07 Dec 2022 16:01:38 GMT
edge-control: downstream-ttl=31536000
etag: 1c2f24d5fec544b63ac5501b7e0693c3
expires: Thu, 07 Dec 2023 16:01:38 GMT
server: Apache
x-robots-tag: nofollow
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WrGi18Iv8g3IxNbBteDHeaLjEdzk0PUoOplbvM8zfSFps0LqqfikyQ==
age: 189349
X-Firefox-Spdy: h2
d19d5sz0wkl0lu.cloudfront.net/dims4/default/4ffd38f/2147483647/thumbnail/210x120%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2Fe4%2F2f%2F583f2c9c44bba94afb76d82575e9%2Frecord-video-for-a-coaching-online-workshop.jpg
143.204.42.215200 OK 10 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/dims4/default/4ffd38f/2147483647/thumbnail/210x120%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2Fe4%2F2f%2F583f2c9c44bba94afb76d82575e9%2Frecord-video-for-a-coaching-online-workshop.jpg
IP 143.204.42.215:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 210x120, components 3\012- data
Hash 8599e35ea36105a7b589ddbc23039652
05a3da5014583550b36cabd874a149ac49bc127f
570053abe86fff6f3ee1edade3d810fa914c6d0aa6e6a29eb226e5bd91913279
GET /dims4/default/4ffd38f/2147483647/thumbnail/210x120%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2Fe4%2F2f%2F583f2c9c44bba94afb76d82575e9%2Frecord-video-for-a-coaching-online-workshop.jpg HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10001
cache-control: max-age=31536000, public
date: Fri, 02 Dec 2022 17:18:00 GMT
edge-control: downstream-ttl=31536000
etag: bd77e18a2c85beed1fda303ce00ac8eb
expires: Sat, 02 Dec 2023 17:18:00 GMT
server: Apache
x-robots-tag: nofollow
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MaENXwdHX6wXDl4tNl__F-fB5etkLnVqF9J45tLJ3jU6rHfMimGUlw==
age: 616767
X-Firefox-Spdy: h2
d19d5sz0wkl0lu.cloudfront.net/dims4/default/e0bf715/2147483647/thumbnail/210x120%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2F01%2Fdc%2Ff3b5b1cd4745ae87441bc49ca36c%2Fadobestock-248745089.jpeg
143.204.42.215200 OK 11 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/dims4/default/e0bf715/2147483647/thumbnail/210x120%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2F01%2Fdc%2Ff3b5b1cd4745ae87441bc49ca36c%2Fadobestock-248745089.jpeg
IP 143.204.42.215:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 210x120, components 3\012- data
Hash e35774a894a51810fb557f547bc83b15
1a37af79c07750efef512fe37c49bbb2275e2adb
ab2c5cc8e885b5b7716805b786d5fae888e775a2a21fdb581da80b3a2caee140
GET /dims4/default/e0bf715/2147483647/thumbnail/210x120%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2F01%2Fdc%2Ff3b5b1cd4745ae87441bc49ca36c%2Fadobestock-248745089.jpeg HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 11361
cache-control: max-age=31536000, public
date: Sun, 04 Dec 2022 10:43:40 GMT
edge-control: downstream-ttl=31536000
etag: a91f08cc1d34075a28b23a5a03496f94
expires: Mon, 04 Dec 2023 10:43:41 GMT
server: Apache
x-robots-tag: nofollow
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vyS9ekgmSKPWpcbifNgcCWeqOAl1oFhf3BxAQfqMNx35Bl5uWBib8Q==
age: 467626
X-Firefox-Spdy: h2
d19d5sz0wkl0lu.cloudfront.net/resource/styleguide/All.min.01fbefa455badef9f3912982c3950688.gz.js
143.204.42.215200 OK 154 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/resource/styleguide/All.min.01fbefa455badef9f3912982c3950688.gz.js
IP 143.204.42.215:0
File type Unicode text, UTF-8 text, with very long lines (32061)
Size 154 kB (153518 bytes)
Hash 17b3819ad90369986ad9f8c66104f77a
fba50cca354f7c0173681e2b84bb5ade35b129e2
fd1c0d4c4f6c9067a720bcd7c10090df5e2d40156635f8d5c3f22d469aebcd71
GET /resource/styleguide/All.min.01fbefa455badef9f3912982c3950688.gz.js HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 153518
date: Mon, 05 Sep 2022 01:33:52 GMT
last-modified: Tue, 07 Jun 2022 17:07:53 GMT
etag: "17b3819ad90369986ad9f8c66104f77a"
cache-control: public, max-age=31536000
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j0XuviFlK7O0vkt4tJIviozzsdzSukDvwUsIjfmIvtcUcVNC3gNgIQ==
age: 8276616
X-Firefox-Spdy: h2
d22bbllmj4tvv8.cloudfront.net/be/1a/b633b160402b8298c2f1ae6c7a88/549649171-edu-catalog-banner-pop-up-720x326.jpg
143.204.55.112200 OK 94 kB URL HTTP/1.1 d22bbllmj4tvv8.cloudfront.net/be/1a/b633b160402b8298c2f1ae6c7a88/549649171-edu-catalog-banner-pop-up-720x326.jpg
IP 143.204.55.112:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 720x326, components 3\012- data
Hash f6dfed4fe01343aee1f0d9231ad5ba31
a61f143c4813dd76040388d6eaa8129ecf2c1c78
066befa524e6aba9a4016783ea71cd3483ae262f95982af79b37fa46cb597e1c
GET /be/1a/b633b160402b8298c2f1ae6c7a88/549649171-edu-catalog-banner-pop-up-720x326.jpg HTTP/1.1
Host: d22bbllmj4tvv8.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 93952
Connection: keep-alive
Date: Sat, 12 Nov 2022 06:29:34 GMT
Last-Modified: Tue, 15 Sep 2020 19:49:26 GMT
ETag: "f6dfed4fe01343aee1f0d9231ad5ba31"
Cache-Control: public, max-age=31536000
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: M_AQzchUV4igclLr_HaAX6sFIH-W--fIr8oUDWuCRVM1XU5UUkLhxA==
Age: 2383673
s3.amazonaws.com/files.astd.org/public/assets/favicon-16x16.png
54.231.130.120403 Forbidden 243 B URL HTTP/1.1 s3.amazonaws.com/files.astd.org/public/assets/favicon-16x16.png
IP 54.231.130.120:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 7083229e2cb276236392feb40cb937fa
cd61ffcd7dbf161f61b013091c798a17c1f6b17e
d2d4a462153d9366b44cc4a40b96ea6848887abfd389d668acf16c7a91e72c07
GET /files.astd.org/public/assets/favicon-16x16.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
x-amz-request-id: 67S7PN10T4RNPDGS
x-amz-id-2: oPl1KILUw7292jHtW+7H4/lHt+MLRl6OyuzOGidmiqyzGYy5vnxHa/wnY7NicN2EhEP1ClJKrzQ=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Fri, 09 Dec 2022 20:37:27 GMT
Server: AmazonS3
d19d5sz0wkl0lu.cloudfront.net/dims4/default/ecb1923/2147483647/thumbnail/720x405%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2F2e%2F2b%2F98677a94407b8b68ad071b950c42%2F1001832307-tk23-cybersale-graphics-720x405-01.jpg
143.204.42.215200 OK 80 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/dims4/default/ecb1923/2147483647/thumbnail/720x405%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2F2e%2F2b%2F98677a94407b8b68ad071b950c42%2F1001832307-tk23-cybersale-graphics-720x405-01.jpg
IP 143.204.42.215:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 720x405, components 3\012- data
Hash b6218630d6bd1890c0dfd21a214ec6e2
11a444ae6a3b0297c702b5530bac31e0e2709e8a
e9cd4b5baa9ffa68037c99cd7b01c96eb2d5ecb19b15761d58a1f0af1363a558
GET /dims4/default/ecb1923/2147483647/thumbnail/720x405%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2F2e%2F2b%2F98677a94407b8b68ad071b950c42%2F1001832307-tk23-cybersale-graphics-720x405-01.jpg HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 80497
cache-control: max-age=31536000, public
date: Mon, 05 Dec 2022 16:08:47 GMT
edge-control: downstream-ttl=31536000
etag: 73d0274a8c2e35ffa57c3fe77d5cf279
expires: Tue, 05 Dec 2023 16:08:47 GMT
server: Apache
x-robots-tag: nofollow
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xIikFYsCMnjV289C2QKjvawgt5p6HIskbqPK5qHVNSuFyfswy9Rr_g==
age: 361720
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 101b88a5a141e4659cc3150b7ca565b6
898ea48b6bb3c316e651cb4bc6451be06c050ab9
5ae54f788fa6724f16af03528f24db2ecbbefd8e5fc9af7fb2a79551911ca09f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4228
Cache-Control: max-age=161148
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:27 GMT
Etag: "63935e7f-1d7"
Expires: Sun, 11 Dec 2022 17:23:15 GMT
Last-Modified: Fri, 09 Dec 2022 16:12:47 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
d22bbllmj4tvv8.cloudfront.net/35/98/2e007c034257bee5d4ee31cf3676/969162363-cybersale22-marketing-site-gfx-r4-td-sitewide-960x60-07.jpg
143.204.55.112200 OK 75 kB URL HTTP/1.1 d22bbllmj4tvv8.cloudfront.net/35/98/2e007c034257bee5d4ee31cf3676/969162363-cybersale22-marketing-site-gfx-r4-td-sitewide-960x60-07.jpg
IP 143.204.55.112:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 960x60, components 3\012- data
Hash 31fdac48016e8d75fa24bb632330ec1a
522f69f87c92d85412a5b7f8253723f367b20b9d
942b4490e2cded531ad6c0d61aa69274dbf491f9242d00e3be95f6685d089bbc
GET /35/98/2e007c034257bee5d4ee31cf3676/969162363-cybersale22-marketing-site-gfx-r4-td-sitewide-960x60-07.jpg HTTP/1.1
Host: d22bbllmj4tvv8.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 74566
Connection: keep-alive
Date: Mon, 28 Nov 2022 05:02:47 GMT
Last-Modified: Wed, 16 Nov 2022 15:06:26 GMT
ETag: "31fdac48016e8d75fa24bb632330ec1a"
Cache-Control: public, max-age=31536000
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rwPechCeSlVqdhV1GFvMFCHDhIrg5zMojFS15baQZu06O7kdbYC1yw==
Age: 1006481
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 09 Dec 2022 19:34:02 GMT
expires: Fri, 09 Dec 2022 21:34:02 GMT
cache-control: public, max-age=7200
age: 3806
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
95.101.11.48200 OK 4.6 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 95.101.11.48:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12961)
Hash c1a25b303b61b25e995516f5559bcdea
3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31741
date: Fri, 09 Dec 2022 20:37:28 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 6c33a1d5d0fc5fe73ec55ac938817ea4
bfc100af7973feb3a7c3501dda66589f08bc6bde
668f1beac80500f1748643c27de6e413b0676a2fa94b0fbb7ef94b1cbab16e50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 3a7cafa2c0f4eafbe69e0b26dda0447d
0123b955c3ab7c64b9d19a09f868da180e4ca524
f0fe6e6dec3ffa992fbc0c9efdc85b5959dd76c92bd62722026512cc36068875
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/gtm/optimize.js?id=GTM-TQBJLSN
142.250.74.46200 OK 44 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=GTM-TQBJLSN
IP 142.250.74.46:0
File type ASCII text, with very long lines (1921)
Hash 6a9c70ee219f9aa76e10c8cbbf851f2d
e94056b7ae473b6ed536226e5cd7547e53462e25
94dd86b29ae1ce01c224f56e630e1a4323ca61f81c267db6399321e4ecb3cb23
GET /gtm/optimize.js?id=GTM-TQBJLSN HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 20:37:28 GMT
expires: Fri, 09 Dec 2022 20:37:28 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43947
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.34200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (40253)
Hash cd91a1fd2b9bfe67d515cc36b3c34903
7f8286b85da37718308c6c0cd6608df953fbed5d
e6099f220b91443cb5a9123857f74574f2bab9bf5afc00de0bc59e44cb5f42a5
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27542
date: Fri, 09 Dec 2022 20:37:28 GMT
expires: Fri, 09 Dec 2022 20:37:28 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1417 / 109 of 1000 / last-modified: 1670587517"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=17756E4709E967F527AF7C32081C66E2; domain=.bing.com; expires=Wed, 03-Jan-2024 20:37:28 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: EFE331F64B1C4025A205513EC273C09E Ref B: OSL30EDGE0110 Ref C: 2022-12-09T20:37:27Z
date: Fri, 09 Dec 2022 20:37:27 GMT
X-Firefox-Spdy: h2
s3.amazonaws.com/files.astd.org/public/assets/apple-touch-icon-1024x1024.png
54.231.130.120403 Forbidden 243 B URL HTTP/1.1 s3.amazonaws.com/files.astd.org/public/assets/apple-touch-icon-1024x1024.png
IP 54.231.130.120:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash dfb786a50be4f0d040c61a97702b1e5c
ea6b21a0bd0f18ce43aa7edb05432fe54014e658
3825ca12974bd6e67d21c1a69d3bf1a5059953bdd8c6e93664c0b8195e9ddcd6
GET /files.astd.org/public/assets/apple-touch-icon-1024x1024.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
x-amz-request-id: 67S2HCB06R4DYEXW
x-amz-id-2: X6deE4zUvG4OOsX24Gf9jipg2OdLPKkTB+lX99oFHAy9EeckkOga63c0UfjRub0NiVsO7GUiNfg=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Fri, 09 Dec 2022 20:37:27 GMT
Server: AmazonS3
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Fri, 09 Dec 2022 20:37:28 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1676-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 3e9ae1a14860b6d43af0722cefdcf2d7
fa87c44e6089f142e589718a49d35087f79e9de4
ef8740410e0246e4288e028ac22b8b3fc9036ff956dab57dbee07414ad4085d5
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:37:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 13 Dec 2022 16:29:50 GMT
ETag: "fa87c44e6089f142e589718a49d35087f79e9de4"
Last-Modified: Fri, 09 Dec 2022 16:29:51 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1345
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 777089f28e88b51d-OSL
www.googleadservices.com/pagead/conversion_async.js
142.250.74.34200 OK 15 kB URL HTTP/2 www.googleadservices.com/pagead/conversion_async.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (1654)
Hash 20a52ec84a838219318b99c98f035c92
5edcf9ff4df00e52a1cbcebd9086239b2eb1df2b
4e042ba7a9b2f009ceb0ad6317cdcb33e5ca4e37b53cfd456076f74c15a89dbb
GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 09 Dec 2022 20:37:28 GMT
expires: Fri, 09 Dec 2022 20:37:28 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 17024150440181632750
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15189
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7K8E29WLBJ&cid=102353847.1670618244>m=2oebu0&aip=1&z=1367262480
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7K8E29WLBJ&cid=102353847.1670618244>m=2oebu0&aip=1&z=1367262480
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7K8E29WLBJ&cid=102353847.1670618244>m=2oebu0&aip=1&z=1367262480 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 20:37:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 101b88a5a141e4659cc3150b7ca565b6
898ea48b6bb3c316e651cb4bc6451be06c050ab9
5ae54f788fa6724f16af03528f24db2ecbbefd8e5fc9af7fb2a79551911ca09f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4229
Cache-Control: max-age=161148
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:28 GMT
Etag: "63935e7f-1d7"
Expires: Sun, 11 Dec 2022 17:23:16 GMT
Last-Modified: Fri, 09 Dec 2022 16:12:47 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
match.adsrvr.org/track/cmf/generic?ttd_pid=6fgi4r1&ttd_tpi=1&ttd_puid=63939c8537b2ed000836bb28&gdpr=0
52.223.40.198200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=6fgi4r1&ttd_tpi=1&ttd_puid=63939c8537b2ed000836bb28&gdpr=0
IP 52.223.40.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=6fgi4r1&ttd_tpi=1&ttd_puid=63939c8537b2ed000836bb28&gdpr=0 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:28 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 5c47323f3c87a762f10eefa6428fd9a0
cb77a70e53cc19c8c8b1a2862bad8f4e59fca6a4
4445ce383fa1c8372d5251b5ff0233375270a379c3292c2f73589232e86f25b4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 6c33a1d5d0fc5fe73ec55ac938817ea4
bfc100af7973feb3a7c3501dda66589f08bc6bde
668f1beac80500f1748643c27de6e413b0676a2fa94b0fbb7ef94b1cbab16e50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/modules.bc0a4c72d88d266f15af.js
143.204.55.40200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.bc0a4c72d88d266f15af.js
IP 143.204.55.40:0
File type Unicode text, UTF-8 text, with very long lines (48638)
Hash 2375e31c5dc0ca09d740bee5c1486c2b
d68ad5ffd79e99af40377945f2f41db8b6f00ad0
2197593e6c85391abbb9c0cba866862dc84bad91aedbe5d90d374e413504f5cb
GET /modules.bc0a4c72d88d266f15af.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68590
date: Wed, 07 Dec 2022 14:35:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "2375e31c5dc0ca09d740bee5c1486c2b"
last-modified: Wed, 07 Dec 2022 14:34:24 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5LufK5jsuKEibR1wCTE29ldpArUAJlz2Aw0qy3nJVgJgbaLYh2vGGQ==
age: 194542
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/15552/domain/td.org/token
54.230.111.8200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/15552/domain/td.org/token
IP 54.230.111.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/15552/domain/td.org/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.td.org/
Origin: https://www.td.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Fri, 09 Dec 2022 05:05:08 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FM70GnHc_4CvSrNO9FghM2-_U-DsJwY7jI9XmZPTIalM4IfU5abixg==
age: 55940
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/15552/domain/td.org/token
54.230.111.8200 OK 132 kB URL HTTP/2 cdn.linkedin.oribi.io/partner/15552/domain/td.org/token
IP 54.230.111.8:0
File type JSON data\012- , ASCII text, with very long lines (65359)
Size 132 kB (131967 bytes)
Hash 62964a27da50ed0689c8eba092495564
e067fdac8b100e62a2de59873fc77a1014145195
70bc9304c00e48522025e0ba2550c18a8666dd6db0027f0d9825bd0700255507
GET /partner/15552/domain/td.org/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.td.org
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Fri, 09 Dec 2022 19:47:06 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cck-zKO5EfIrfV4rmOni8hmPpEuBxIHbxnzmawcGMkyJmiGb7IKDZQ==
age: 3021
X-Firefox-Spdy: h2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
143.204.55.20200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP 143.204.55.20:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -wHm6KZ_0LBqvtHZh0OgS_blYSmI5vLq6jzCSZRINiFTomgs787Xvw==
age: 1409242
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=15093466&tm=gtm002&Ver=2&mid=791f24cb-f6eb-4777-8bd8-807cfd6fa406&sid=4b5d71d0780111edad9c557cea3afbd7&vid=4b5d8c40780111eda62379c8fb958d41&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=ATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD&p=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&r=<=6600&evt=pageLoad&sv=1&rn=378915
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=15093466&tm=gtm002&Ver=2&mid=791f24cb-f6eb-4777-8bd8-807cfd6fa406&sid=4b5d71d0780111edad9c557cea3afbd7&vid=4b5d8c40780111eda62379c8fb958d41&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=ATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD&p=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&r=<=6600&evt=pageLoad&sv=1&rn=378915
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=15093466&tm=gtm002&Ver=2&mid=791f24cb-f6eb-4777-8bd8-807cfd6fa406&sid=4b5d71d0780111edad9c557cea3afbd7&vid=4b5d8c40780111eda62379c8fb958d41&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=ATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD&p=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&r=<=6600&evt=pageLoad&sv=1&rn=378915 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=04974AA6F33C6BC72DD658D3F2C96A13; domain=.bing.com; expires=Wed, 03-Jan-2024 20:37:28 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 360090A418F942AC8E9F7F6CFA5DF8C3 Ref B: OSL30EDGE0110 Ref C: 2022-12-09T20:37:28Z
date: Fri, 09 Dec 2022 20:37:27 GMT
X-Firefox-Spdy: h2
d19d5sz0wkl0lu.cloudfront.net/resource/styleguide/images/bullet-arrow.85b3979270c1de4e0db2ca1ba778d72c.png
143.204.42.215200 OK 181 B URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/resource/styleguide/images/bullet-arrow.85b3979270c1de4e0db2ca1ba778d72c.png
IP 143.204.42.215:0
File type PNG image data, 7 x 7, 4-bit colormap, non-interlaced\012- data
Hash 53f3de887e1d0e9a1e024083a2ac080f
c0376556719e33cae8d019698f0b81d8625c2922
a4cd72a2bc2315d2eb1236c9357592514a63cc29b355dea5ccfdea477de6c8f1
GET /resource/styleguide/images/bullet-arrow.85b3979270c1de4e0db2ca1ba778d72c.png HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d19d5sz0wkl0lu.cloudfront.net/resource/All.min.5b9b9016fb3280762a12377615c7115e.gz.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 181
date: Sat, 03 Dec 2022 01:14:41 GMT
last-modified: Wed, 19 Jun 2019 14:10:33 GMT
etag: "53f3de887e1d0e9a1e024083a2ac080f"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9BYI-_Ill2mUhRDTPUbqrbe_oum8rJq8GHVxHZWhfDMjpDdkRPD0Tg==
age: 588168
X-Firefox-Spdy: h2
polo.feathr.co/v1/analytics/match/script.js?pk=feathr&cb=1670618247287
52.4.232.41200 OK 161 B URL HTTP/2 polo.feathr.co/v1/analytics/match/script.js?pk=feathr&cb=1670618247287
IP 52.4.232.41:0
Hash 8190a90b75daa9c69aa006d443b09d92
4512d209c3f6aca71927e783e682e45423dcae50
7379f00bd51ce486bbc2f5a8163b0132ac3573afc6c5c15ba7ea3d6dcb959788
GET /v1/analytics/match/script.js?pk=feathr&cb=1670618247287 HTTP/1.1
Host: polo.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Cookie: f_id=63939c8537b2ed000836bb28
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.8
date: Fri, 09 Dec 2022 20:37:28 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: no-cache, max-age=0
etag: W/"63939c8537b2ed000836bb28"
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
content-encoding: gzip
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=15552&time=1670618247141&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=15552&time=1670618247141&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=15552&time=1670618247141&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D15552%26time%3D1670618247141%26url%3Dhttps%253A%252F%252Fwww.td.org%252F%253Fcm_mmc%253Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%2526utm_source%253Dmembership%2526utm_medium%253Demail%2526utm_campaign%253DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKeQN_1h7_MBwAAAYT4m3WnLv4EQfR0pGgNAJuxwY5_WhWn7-RYhB5yA9wXco1x1l9b9Oh9b7VADw; Max-Age=2592000; Expires=Sun, 08 Jan 2023 20:37:28 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJfeMgiNnLx3wAAAYT4m3WnXSKxkJzGgXxyjnm8uI8_wjJmtdFnnIQDeYtOfWjALQQoWNIRSbOT87N_P43JUQ; Max-Age=2592000; Expires=Sun, 08 Jan 2023 20:37:28 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&bdd9c9b8-1ad6-4297-8300-360f71324c37"; domain=.linkedin.com; Path=/; Secure; Expires=Sat, 09-Dec-2023 20:37:28 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2433:u=1:x=1:i=1670618248:t=1670704648:v=2:sig=AQFh7D5N18yp6k_Mmn_v26c39Db2h2oh"; Expires=Sat, 10 Dec 2022 20:37:28 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXvax9DfwBzKOn8DZVOcg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 22F7DF5275B341F39502F222D49D8524 Ref B: OSL30EDGE0210 Ref C: 2022-12-09T20:37:28Z
date: Fri, 09 Dec 2022 20:37:28 GMT
content-length: 0
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/975763705/?random=1670618247612&cv=9&fst=1670618247612&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=path%3D%2F%3Breferrer%3D%3Bsearch%3D%3Fcm_mmc%5C%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%5C%3Dmembership%26utm_medium%5C%3Demail%26utm_campaign%5C%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%3Btitle%3DATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD%3Burl%3Dhttps%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%5C%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%5C%3Dmembership%26utm_medium%5C%3Demail%26utm_campaign%5C%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%3Bname%3DHomepage&frm=0&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&tiba=ATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
142.250.74.98200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/975763705/?random=1670618247612&cv=9&fst=1670618247612&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=path%3D%2F%3Breferrer%3D%3Bsearch%3D%3Fcm_mmc%5C%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%5C%3Dmembership%26utm_medium%5C%3Demail%26utm_campaign%5C%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%3Btitle%3DATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD%3Burl%3Dhttps%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%5C%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%5C%3Dmembership%26utm_medium%5C%3Demail%26utm_campaign%5C%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%3Bname%3DHomepage&frm=0&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&tiba=ATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (4445), with no line terminators
Hash 494b50d7f079eaa61bda100d607228bb
91fbf15ba50f79b50cd12cf8f370302207c8bc1a
9b9b858b40903e7e0a1f17e489a681e29eba0cbbb55823352879f34eb3551905
GET /pagead/viewthroughconversion/975763705/?random=1670618247612&cv=9&fst=1670618247612&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=path%3D%2F%3Breferrer%3D%3Bsearch%3D%3Fcm_mmc%5C%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%5C%3Dmembership%26utm_medium%5C%3Demail%26utm_campaign%5C%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%3Btitle%3DATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD%3Burl%3Dhttps%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%5C%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%5C%3Dmembership%26utm_medium%5C%3Demail%26utm_campaign%5C%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%3Bname%3DHomepage&frm=0&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&tiba=ATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 20:37:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1142
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 09-Dec-2022 20:52:28 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 35cf854d2d432c960a27bf1fb3c1acc7
0776661a6a8ca17950cc37b5a8002d46a9230f4d
4efbe4fa402bee0baa8c91dbd341545126758e9ad2edc7f64da5c47f02207833
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 09 Dec 2022 20:37:28 GMT
Last-Modified: Fri, 09 Dec 2022 19:24:57 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CpII1S4Iev_hJCJznLrCYfiyYfx81a8wUNKaHVSpzUuFiRwSgd8iNA==
Age: 4351
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5496e18a30e039b44989d9a0e932d4bc
c5bfb1b9ce711e38d69e78486017f07cc47fe04a
26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.td.org
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.td.org
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.td.org HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 09 Dec 2022 20:37:28 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.td.org
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.td.org
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.td.org HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 09 Dec 2022 20:37:28 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5496e18a30e039b44989d9a0e932d4bc
c5bfb1b9ce711e38d69e78486017f07cc47fe04a
26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d69a1a0d32d23f4a7762ae94a23c4151
192ee6746855091aae0064015c73a3cd57014822
a8dd3c8e4b4a9294cbdbec64105d9f31bfe3204481d62e487afed9908c03cc17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6213
Cache-Control: max-age=147647
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:28 GMT
Etag: "63932202-139"
Expires: Sun, 11 Dec 2022 13:38:15 GMT
Last-Modified: Fri, 09 Dec 2022 11:54:42 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 313
www.facebook.com/tr/?id=186855815417782&ev=PageView&dl=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&rl=&if=false&ts=1670618247620&sw=1280&sh=1024&v=2.9.89&r=stable&a=seg&ec=0&o=30&fbp=fb.1.1670618247619.161068342&it=1670618247215&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=186855815417782&ev=PageView&dl=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&rl=&if=false&ts=1670618247620&sw=1280&sh=1024&v=2.9.89&r=stable&a=seg&ec=0&o=30&fbp=fb.1.1670618247619.161068342&it=1670618247215&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=186855815417782&ev=PageView&dl=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&rl=&if=false&ts=1670618247620&sw=1280&sh=1024&v=2.9.89&r=stable&a=seg&ec=0&o=30&fbp=fb.1.1670618247619.161068342&it=1670618247215&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 20:37:29 GMT
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/338957/visit-data?sv=6
52.49.107.217200 OK 2.7 kB URL HTTP/2 in.hotjar.com/api/v2/client/sites/338957/visit-data?sv=6
IP 52.49.107.217:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1ada879f831de224af7c318e7eb8475e
787fcbbcf05f708ed712455d82224959a8e1be10
855b058e2ebe27fdd98be25a98e2adf0d99708d89fdb962bc161f1e7764abbe8
POST /api/v2/client/sites/338957/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 130
Origin: https://www.td.org
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:28 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=f399ea3f-62b2-4282-b7a7-e20310d54c82&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=623336b3-9be9-4f26-bc5e-02c5dfc653dc&tw_document_href=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nur6l&type=javascript&version=2.3.29
104.244.42.197200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=f399ea3f-62b2-4282-b7a7-e20310d54c82&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=623336b3-9be9-4f26-bc5e-02c5dfc653dc&tw_document_href=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nur6l&type=javascript&version=2.3.29
IP 104.244.42.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=f399ea3f-62b2-4282-b7a7-e20310d54c82&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=623336b3-9be9-4f26-bc5e-02c5dfc653dc&tw_document_href=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nur6l&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:28 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=3e3e6f7a-6d80-4b8f-a1b2-332f32719400; Max-Age=63072000; Expires=Sun, 08 Dec 2024 20:37:29 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: b2561472ae033ba1
strict-transport-security: max-age=0
x-response-time: 108
x-connection-hash: b25278e3413c0ab197bcb401a10b26a45c7c36212bcc7a7ea8677f8590c94c77
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a49ab5ecc317aa7e4724050053737549
3ffff77715bf8c5dbcbb5e17abbbc2c683c36f60
844f25237f9906c3fb977d58259e132c41dacbbe546adc8b45e9992e6ee711c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash bddbce055378f16c6fe35bf7d3536f18
52ff92b1a003c6dbf1834fca6a061eb1ed2058fd
ab753e33075500e79eccfea68bf7845c302d1beb5986ba41d562dae595625da3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1091
Cache-Control: max-age=97157
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:29 GMT
Etag: "639270cb-138"
Expires: Sat, 10 Dec 2022 23:36:46 GMT
Last-Modified: Thu, 08 Dec 2022 23:18:35 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 312
www.google.com/pagead/1p-user-list/975763705/?random=1670618247612&cv=9&fst=1670616000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2F%3Breferrer%3D%3Bsearch%3D%3Fcm_mmc%5C%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%5C%3Dmembership%26utm_medium%5C%3Demail%26utm_campaign%5C%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%3Btitle%3DATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD%3Burl%3Dhttps%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%5C%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%5C%3Dmembership%26utm_medium%5C%3Demail%26utm_campaign%5C%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%3Bname%3DHomepage&frm=0&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&tiba=ATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD&async=1&fmt=3&is_vtc=1&random=1352753862&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/975763705/?random=1670618247612&cv=9&fst=1670616000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2F%3Breferrer%3D%3Bsearch%3D%3Fcm_mmc%5C%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%5C%3Dmembership%26utm_medium%5C%3Demail%26utm_campaign%5C%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%3Btitle%3DATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD%3Burl%3Dhttps%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%5C%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%5C%3Dmembership%26utm_medium%5C%3Demail%26utm_campaign%5C%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%3Bname%3DHomepage&frm=0&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&tiba=ATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD&async=1&fmt=3&is_vtc=1&random=1352753862&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/975763705/?random=1670618247612&cv=9&fst=1670616000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=path%3D%2F%3Breferrer%3D%3Bsearch%3D%3Fcm_mmc%5C%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%5C%3Dmembership%26utm_medium%5C%3Demail%26utm_campaign%5C%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%3Btitle%3DATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD%3Burl%3Dhttps%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%5C%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%5C%3Dmembership%26utm_medium%5C%3Demail%26utm_campaign%5C%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%3Bname%3DHomepage&frm=0&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&tiba=ATD%20%7C%20The%20World%27s%20Largest%20Talent%20Development%20Association%20%7C%20ATD&async=1&fmt=3&is_vtc=1&random=1352753862&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 20:37:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D15552%26time%3D1670618247141%26url%3Dhttps%253A%252F%252Fwww.td.org%252F%253Fcm_mmc%253Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%2526utm_source%253Dmembership%2526utm_medium%253Demail%2526utm_campaign%253DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D15552%26time%3D1670618247141%26url%3Dhttps%253A%252F%252Fwww.td.org%252F%253Fcm_mmc%253Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%2526utm_source%253Dmembership%2526utm_medium%253Demail%2526utm_campaign%253DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D15552%26time%3D1670618247141%26url%3Dhttps%253A%252F%252Fwww.td.org%252F%253Fcm_mmc%253Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%2526utm_source%253Dmembership%2526utm_medium%253Demail%2526utm_campaign%253DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=15552&time=1670618247141&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&3396d32a-fcba-466b-8865-c71d7b2b8077"; Domain=.linkedin.com; Expires=Sat, 09-Dec-2023 20:37:29 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022120920372993d86117-73bc-44be-814a-3b6ed2460d68AQHROzCKcpefP_XxmN5KRJETfGmOXbWh"; Domain=.www.linkedin.com; Expires=Sat, 09-Dec-2023 20:37:29 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzA2MTgyNDk7MjswMjEInmPTqf2+nlY1RL5kcFCnx46Xzri3nH6sD+08BliLCw==; Domain=.linkedin.com; Expires=Wed, 07 Jun 2023 20:37:29 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2395:u=1:x=1:i=1670618249:t=1670704649:v=2:sig=AQELFj9nYXX2bDy5VYJAOvaWxnf8G-Sw"; Expires=Sat, 10 Dec 2022 20:37:29 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com onyx.www.linkedin.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXvax9MHoKfHfJXDEHuFg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 89FB65CA81504B29B9600FC7DE7CB64E Ref B: OSL30EDGE0210 Ref C: 2022-12-09T20:37:29Z
date: Fri, 09 Dec 2022 20:37:28 GMT
content-length: 0
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=f399ea3f-62b2-4282-b7a7-e20310d54c82&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=623336b3-9be9-4f26-bc5e-02c5dfc653dc&tw_document_href=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nur6l&type=javascript&version=2.3.29
104.244.42.3200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=f399ea3f-62b2-4282-b7a7-e20310d54c82&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=623336b3-9be9-4f26-bc5e-02c5dfc653dc&tw_document_href=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nur6l&type=javascript&version=2.3.29
IP 104.244.42.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=f399ea3f-62b2-4282-b7a7-e20310d54c82&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=623336b3-9be9-4f26-bc5e-02c5dfc653dc&tw_document_href=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nur6l&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:28 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_HgRCwrc44ktvWPsGZz2lkw=="; Max-Age=63072000; Expires=Sun, 08 Dec 2024 20:37:29 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: a15199e28874c1c4
strict-transport-security: max-age=631138519
x-response-time: 103
x-connection-hash: 23626c6e3e0bbb953a41c6727a92e52afb73b628fd7c09f9999f43a8ce30a30e
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 417e194de82e38dc7632f8eef3df3cd4
a0ed04f95f853d5301e8cd977533f5fd662aaadc
72f457cb7afc6436078ca64048e0769a45c950631e829f8bbbe3bfac463148bc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221206/r20110914/abg_lite_fy2021.js
172.217.21.161200 OK 9.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221206/r20110914/abg_lite_fy2021.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1592)
Hash 5a5aa8d035ffaad9c0b8653b0a412d2f
f09fe4da7a3d328089a611e314d326aa5cb598f5
de6d29b666b737e039c2de5bedaf81dda437c47a79e17d0d10f188358916187a
GET /pagead/js/r20221206/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 9443
x-xss-protection: 0
date: Fri, 09 Dec 2022 18:25:11 GMT
expires: Fri, 23 Dec 2022 18:25:11 GMT
cache-control: public, max-age=1209600
age: 7938
etag: 9828741834572772835
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.2200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.2:0
File type ASCII text, with very long lines (3501)
Hash 0aea457deb170b60b680d7d723b4a6e2
3acbe700c709c2c5c07d6fb145ea7b448cc07a90
86c662679bc2508be7e8064c91055a3c5be7db2c24d58e5f27676f35702ba339
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 47725
date: Fri, 09 Dec 2022 20:37:29 GMT
expires: Fri, 09 Dec 2022 20:37:29 GMT
cache-control: private, max-age=3000
etag: "1670417373259609"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apisegment.td.org/v1/p
104.22.79.147200 OK 86 kB IP 104.22.79.147:0
File type gzip compressed data, from Unix\012- data
Hash d37339834e45230e82f8545e266eb805
7204cf248af79cec8fc8e28cba9a40f4968077d7
cddc5979311971bc27a45fa5626ea9a5044da1e3d72a9031b0b128bb5fe29ebb
POST /v1/p HTTP/1.1
Host: apisegment.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
Content-Type: text/plain
Origin: https://www.td.org
Content-Length: 2397
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:29 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: https://www.td.org
strict-transport-security: max-age=31536000
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 777089f6cf6e09a4-ARN
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=15552&time=1670618247141&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=15552&time=1670618247141&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=15552&time=1670618247141&url=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&a1f77c83-e319-48e4-83c2-e10ca1259fad"; domain=.linkedin.com; Path=/; Secure; Expires=Sat, 09-Dec-2023 20:37:29 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2433:u=1:x=1:i=1670618249:t=1670704649:v=2:sig=AQFkwv3vM9Q_-UoSlpfZm1jwBBbVb5KZ"; Expires=Sat, 10 Dec 2022 20:37:29 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXvax9RdvyVrx/WfNbRjA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 46DE25D242B94608AD4B59D8DFDDFB21 Ref B: OSL30EDGE0210 Ref C: 2022-12-09T20:37:29Z
date: Fri, 09 Dec 2022 20:37:29 GMT
content-length: 0
X-Firefox-Spdy: h2
polo.feathr.co/v1/accounts/61ccc191c0405e0781899e9c/integrations/facebook/pixel.js?pk=feathr
52.4.232.41200 OK 0 B URL HTTP/2 polo.feathr.co/v1/accounts/61ccc191c0405e0781899e9c/integrations/facebook/pixel.js?pk=feathr
IP 52.4.232.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/accounts/61ccc191c0405e0781899e9c/integrations/facebook/pixel.js?pk=feathr HTTP/1.1
Host: polo.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Cookie: f_id=63939c8537b2ed000836bb28
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.8
date: Fri, 09 Dec 2022 20:37:29 GMT
content-type: text/html; charset=utf-8
content-length: 0
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
X-Firefox-Spdy: h2
www.facebook.com/tr/
157.240.221.35200 OK 0 B IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /tr/ HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------171925707222032967821129745392
Content-Length: 5055
Origin: https://www.td.org
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: https://www.td.org
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 09 Dec 2022 20:37:29 GMT
X-Firefox-Spdy: h2
d19d5sz0wkl0lu.cloudfront.net/dims4/default/4b1b7c4/2147483647/thumbnail/140x140%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2Fc1%2F1f%2Fd0ba51364b0bb1817b8b82552e69%2Fcertificate-square-512x512.png
143.204.42.215200 OK 19 kB URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/dims4/default/4b1b7c4/2147483647/thumbnail/140x140%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2Fc1%2F1f%2Fd0ba51364b0bb1817b8b82552e69%2Fcertificate-square-512x512.png
IP 143.204.42.215:0
File type PNG image data, 140 x 140, 8-bit/color RGBA, non-interlaced\012- data
Hash 543bbf274feaa2e85d32f3cf30b7a18b
92930319e73373baecc04030592732c8eafe066f
19156f4d87766f7222b1958a41aae4a3a148ea509bf5da7213651650d633b210
GET /dims4/default/4b1b7c4/2147483647/thumbnail/140x140%3E/quality/90/?url=https%3A%2F%2Fatd-brightspot.s3.amazonaws.com%2Fc1%2F1f%2Fd0ba51364b0bb1817b8b82552e69%2Fcertificate-square-512x512.png HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 19312
cache-control: max-age=31536000, public
date: Mon, 05 Dec 2022 03:43:49 GMT
edge-control: downstream-ttl=31536000
etag: afea17cbcfeefe8f6aabf01b732702ac
expires: Tue, 05 Dec 2023 03:43:49 GMT
server: Apache
x-robots-tag: nofollow
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wOZnXQhEHsSq8OkFoAw61joSjND_ePptmL9B6v15wvKc7G2eUxx2kw==
age: 406419
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env
216.58.207.226200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env
IP 216.58.207.226:0
File type JSON data\012- , ASCII text, with very long lines (14478), with no line terminators
Hash 833efcf6c7d18ba1b575a25a3f4ca90c
0ce955b42913cd3ba112fed263853ff550c2fc48
4b2ae987eef9afcba5f26f0709d62923930bec59cd9e74f728bb91e6761de127
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022120501&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.td.org
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Fri, 09 Dec 2022 20:37:29 GMT
server: cafe
content-length: 10931
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 24c9c5f0dd202b23979a8777a8d36f83
63e0a8dc8bc6c7c41a2661f323477cbedc3a9e34
0359b8406b5dda6933efb5fa4e3e8b5f8e40df007f71c53dc995ba93aedde03e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4442
Cache-Control: max-age=100176
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:37:30 GMT
Etag: "63926f81-117"
Expires: Sun, 11 Dec 2022 00:27:06 GMT
Last-Modified: Thu, 08 Dec 2022 23:13:05 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
js.appboycdn.com/web-sdk/3.1/appboy.min.js
104.17.217.31200 OK 0 B URL HTTP/2 js.appboycdn.com/web-sdk/3.1/appboy.min.js
IP 104.17.217.31:0
GET /web-sdk/3.1/appboy.min.js HTTP/1.1
Host: js.appboycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: fWaUAy85I3OGfp5Yat3q2YpqLSFkKavxj9T9nlVUzQChU97gFu1zDcKS8fs/SxePpI3qSbZVzME=
x-amz-request-id: 4HN36FEXFZ9BZE1J
last-modified: Tue, 02 Feb 2021 00:22:35 GMT
etag: W/"1c3631b60e0fed888d7a4fcedb3e0448"
cf-cache-status: HIT
age: 1115
expires: Sat, 10 Dec 2022 00:37:25 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 777089e18cd1b4ed-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
content.td.org/r/89745
104.22.78.147301 Moved Permanently 0 B IP 104.22.78.147:0
GET /r/89745 HTTP/1.1
Host: content.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Fri, 09 Dec 2022 20:37:22 GMT
content-type: text/html; charset=utf-8
location: https://www.td.org/?cm_mmc=membership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&utm_source=membership&utm_medium=email&utm_campaign=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926
cache-control: public, no-cache="Set-Cookie"
expires: Fri, 09 Dec 2022 20:52:22 GMT
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
set-cookie: .StoreAnonymousUser=ef5fd91ee4444556bd4d5b46c568c7c5; domain=td.org; expires=Thu, 09-Mar-2023 20:37:22 GMT; path=/
OrderOptions=CampaignCode=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926; domain=td.org; expires=Sun, 08-Jan-2023 05:00:00 GMT; path=/
BIGipServerAST-Personify-astd.org_new.app~AST-Personify-astd.org_new_pool=rd2190o00000000000000000000ffff0a944d07o80; path=/; Httponly; Secure
x-powered-by: ASP.NET
x-server: 31
x-site: Trax
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 777089cc7f08992a-ARN
X-Firefox-Spdy: h2
cdn.segment.com/analytics.js/v1/HhXyk4KyVPvMC91PoiL7lYfhT5W0lRwK/analytics.min.js
143.204.48.96200 OK 0 B URL HTTP/2 cdn.segment.com/analytics.js/v1/HhXyk4KyVPvMC91PoiL7lYfhT5W0lRwK/analytics.min.js
IP 143.204.48.96:0
GET /analytics.js/v1/HhXyk4KyVPvMC91PoiL7lYfhT5W0lRwK/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 21 Nov 2022 21:24:46 GMT
x-amz-version-id: WBKsdznKX_2E2oW32AkwIzLDIEpGe4.F
server: AmazonS3
content-encoding: br
date: Fri, 09 Dec 2022 20:37:16 GMT
cache-control: public, max-age=120
etag: W/"dd09ec5ec40318777ec6235243ab82b3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PC7KdcWJfYOmkfnRgd3x8Xs6bql4idtgaKXquVYehFjci1B-9JJHag==
age: 9
X-Firefox-Spdy: h2
d19d5sz0wkl0lu.cloudfront.net/resource/All.min.5b9b9016fb3280762a12377615c7115e.gz.css
143.204.42.215200 OK 0 B URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/resource/All.min.5b9b9016fb3280762a12377615c7115e.gz.css
IP 143.204.42.215:0
GET /resource/All.min.5b9b9016fb3280762a12377615c7115e.gz.css HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 135427
date: Wed, 15 Jun 2022 07:14:27 GMT
last-modified: Tue, 07 Jun 2022 17:07:56 GMT
etag: "4fc973696030a9ad9ca601b07c206a2a"
cache-control: public, max-age=31536000
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ja0jEd-HSBpg9azppBvFXwAkHjyBgKf2sYUJB0bFDxUEMXRQboQcNw==
age: 15340977
X-Firefox-Spdy: h2
unpkg.com/tippy.js@6.3.7
104.16.122.175302 Found 0 B IP 104.16.122.175:0
GET /tippy.js@6.3.7 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 09 Dec 2022 20:37:24 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
location: /tippy.js@6.3.7/dist/tippy-bundle.umd.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GHG5FH2BF1317CEZQP5SZQAM-ams
cf-cache-status: HIT
age: 2554569
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089dd5bd9b503-OSL
X-Firefox-Spdy: h2
cdn.segment.com/analytics-next/bundles/remoteMiddleware.bundle.6e91ab7aa7b9f5c2b127.js
143.204.48.96200 OK 0 B URL HTTP/2 cdn.segment.com/analytics-next/bundles/remoteMiddleware.bundle.6e91ab7aa7b9f5c2b127.js
IP 143.204.48.96:0
GET /analytics-next/bundles/remoteMiddleware.bundle.6e91ab7aa7b9f5c2b127.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 19 Nov 2022 00:01:07 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Fri, 18 Nov 2022 20:09:01 GMT
etag: W/"c1cb8e289adb2c1ec05b08a6ef25cfaf"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: fAfY4Up4zYnEEiP9RdSV1jz9Zkdn5usi
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: exCM9a7xz1imtuX0xL3wwgEtbR7yVwIS--dizcSC8Swci3qwzZAO5Q==
age: 1802179
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=VT323&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=VT323&display=swap
IP 142.250.74.74:0
GET /css2?family=VT323&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 20:37:24 GMT
date: Fri, 09 Dec 2022 20:37:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js
143.204.48.96200 OK 0 B URL HTTP/2 cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js
IP 143.204.48.96:0
GET /analytics-next/bundles/schemaFilter.bundle.debb169c1abb431faaa6.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 04 Dec 2022 05:04:27 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Sun, 04 Dec 2022 04:06:01 GMT
etag: W/"3e448afdfea355c0f19700d04431ce7d"
cache-control: public,max-age=31536000,immutable
x-amz-version-id: DaaIbLnzvn06V4JPscsHdkknFnPWetFJ
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -7IeQsziHWKw1a7NpXwjIdVQxXaVlD1vkjObm-w5QsFjCAIS5xtRxg==
age: 487978
X-Firefox-Spdy: h2
d22bbllmj4tvv8.cloudfront.net/0a/23/db790fa24d4fbe45ca5ffc90a669/549649171-edu-catalog-banner-gam-320x432.jpg
143.204.55.112200 OK 0 B URL HTTP/1.1 d22bbllmj4tvv8.cloudfront.net/0a/23/db790fa24d4fbe45ca5ffc90a669/549649171-edu-catalog-banner-gam-320x432.jpg
IP 143.204.55.112:0
GET /0a/23/db790fa24d4fbe45ca5ffc90a669/549649171-edu-catalog-banner-gam-320x432.jpg HTTP/1.1
Host: d22bbllmj4tvv8.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 83896
Connection: keep-alive
Date: Sun, 04 Dec 2022 07:37:50 GMT
Last-Modified: Tue, 15 Sep 2020 17:28:27 GMT
ETag: "5e2dc7a9a70388676bffe2d7d3c9cf33"
Cache-Control: public, max-age=31536000
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gabQxAF7-oStuN96pG2XXOr9LF4j-PkmZwoiEHZ9b_kb_wjTgGdewg==
Age: 478778
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 0 B URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Ji/jQKFzv0aDG7DN+aVQRFbR3sdcWNLBsmlba2IvCVvI8fwQCsC8vqJIxL2kap/PvDJBfZsTA3y/QBRPLxWZGw==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Fri, 09 Dec 2022 20:37:28 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.td.org/ajax/list-cart?customerNumber=f4675214-aa52-4ac3-a8a9-a56224cbdb5d
104.22.78.147200 OK 0 B URL HTTP/2 www.td.org/ajax/list-cart?customerNumber=f4675214-aa52-4ac3-a8a9-a56224cbdb5d
IP 104.22.78.147:0
GET /ajax/list-cart?customerNumber=f4675214-aa52-4ac3-a8a9-a56224cbdb5d HTTP/1.1
Host: www.td.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.td.org/?cm_mmc=membership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&utm_source=membership&utm_medium=email&utm_campaign=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926
Cookie: .StoreAnonymousUser=f4675214-aa52-4ac3-a8a9-a56224cbdb5d; OrderOptions=CampaignCode=MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926; FSAV=95594032.1420489935.1670618244.1670618244.1670618244.1.; FSAC=95594032.1670618244.utmcsr%3Dmembership%7Cutmccn%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%7Cutmcmd%3Demail; _ga_7K8E29WLBJ=GS1.1.1670618244.1.1.1670618244.60.0.0; _ga=GA1.2.102353847.1670618244; ab.storage.sessionId.5aa8cf36-8688-4b04-8385-ef090bfa2008=%7B%22g%22%3A%2234d5efad-37cd-2c5b-596e-1b7485a73416%22%2C%22e%22%3A1670618274413%2C%22c%22%3A1670618244413%2C%22l%22%3A1670618244413%7D; ab.storage.deviceId.5aa8cf36-8688-4b04-8385-ef090bfa2008=%7B%22g%22%3A%228610cfa7-067e-795f-b018-a74219f59469%22%2C%22c%22%3A1670618244417%2C%22l%22%3A1670618244417%7D; feathr_session_id=63939c845cbb173df4001dcc; PreferredTimeZone=Africa%2FAbidjan; OptanonConsent=isGpcEnabled=0&datestamp=Fri+Dec+09+2022+20%3A37%3A26+GMT%2B0000+(Coordinated+Universal+Time)&version=6.32.0&isIABGlobal=false&hosts=&consentId=a04d593c-4211-4a9b-87f3-9c16f38c3b8d&interactionCount=0&landingPath=https%3A%2F%2Fwww.td.org%2F%3Fcm_mmc%3Dmembership-_-email-_-undefined-_-MBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926%26utm_source%3Dmembership%26utm_medium%3Demail%26utm_campaign%3DMBR-RET-NewMemberOnboardingSeries-Email-MembershipBenefits-2021M1W1E1-ThankYouForJoiningAT-19926&groups=C0004%3A0%2CC0001%3A1%2CC0002%3A0%2CC0003%3A0; bsp.country=NO; bsp.cdn=default; _gid=GA1.2.604757564.1670618247; _gat_UA-27831435-1=1; _uetsid=4b5d71d0780111edad9c557cea3afbd7; _uetvid=4b5d8c40780111eda62379c8fb958d41; ajs_anonymous_id=f4675214-aa52-4ac3-a8a9-a56224cbdb5d; _hjSessionUser_338957=eyJpZCI6IjU1MWUyYWE4LWFhYTYtNTVkZS1hMzFlLTM4NWU3NzM0ZDdhYyIsImNyZWF0ZWQiOjE2NzA2MTgyNDczNTAsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_338957=eyJpZCI6ImFmMDY0YzNhLTA3YjItNDI1MC05ZDRmLWQ1NGE1MGY5MTg3MSIsImNyZWF0ZWQiOjE2NzA2MTgyNDc0NzYsImluU2FtcGxlIjpmYWxzZX0=; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:29 GMT
content-type: application/json;charset=UTF-8
x-powered-by: Brightspot
x-robots-tag: nofollow
cache-control: max-age=3600
cf-cache-status: MISS
last-modified: Fri, 09 Dec 2022 20:37:29 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 777089f5b87e992a-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
unpkg.com/@popperjs/core@2
104.16.122.175302 Found 0 B URL HTTP/2 unpkg.com/@popperjs/core@2
IP 104.16.122.175:0
GET /@popperjs/core@2 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 20:37:24 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /@popperjs/core@2.11.6
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GKW9BK4VKW37PVBKJH12STW2-ams
cf-cache-status: HIT
age: 367
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089dd2b7fb503-OSL
X-Firefox-Spdy: h2
unpkg.com/@popperjs/core@2.11.6
104.16.122.175302 Found 0 B URL HTTP/2 unpkg.com/@popperjs/core@2.11.6
IP 104.16.122.175:0
GET /@popperjs/core@2.11.6 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 09 Dec 2022 20:37:24 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
location: /@popperjs/core@2.11.6/dist/umd/popper.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GA5YGHBZSVAZ09XW463WWTCG-ams
cf-cache-status: HIT
age: 10413613
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089dd4bc9b503-OSL
X-Firefox-Spdy: h2
d19d5sz0wkl0lu.cloudfront.net/resource/styleguide/fonts/icomoon.4559408e67be4308a4386e9207a9fec0.ttf?7gh8zs
143.204.42.215200 OK 0 B URL HTTP/2 d19d5sz0wkl0lu.cloudfront.net/resource/styleguide/fonts/icomoon.4559408e67be4308a4386e9207a9fec0.ttf?7gh8zs
IP 143.204.42.215:0
GET /resource/styleguide/fonts/icomoon.4559408e67be4308a4386e9207a9fec0.ttf?7gh8zs HTTP/1.1
Host: d19d5sz0wkl0lu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.td.org
Connection: keep-alive
Referer: https://d19d5sz0wkl0lu.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-font-ttf
date: Fri, 04 Nov 2022 05:04:08 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 25 Apr 2019 15:47:46 GMT
etag: W/"7d61ac0763ae90ea8bc89fdde38810a4"
cache-control: public, max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: toPKmVL7_lqjg3vB-PneiPdvzyksYGVZpqVc1HQsZszCAAkdKWlDlA==
age: 3079996
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.32.0/assets/otCommonStyles.css
104.16.148.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.32.0/assets/otCommonStyles.css
IP 104.16.148.64:0
GET /scripttemplates/6.32.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
Origin: https://www.td.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:27 GMT
content-type: text/css
content-md5: SHFDtZO2nDZuiPDW83p1IQ==
last-modified: Fri, 18 Mar 2022 16:29:27 GMT
x-ms-request-id: 1fc12a7a-e01e-009b-0a5d-4555de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089eeaf53b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-338957.js?sv=6
143.204.55.54200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-338957.js?sv=6
IP 143.204.55.54:0
GET /c/hotjar-338957.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 20:37:16 GMT
cache-control: max-age=60
etag: W/95bff09ab870e5778016552f4416998f
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nGb7kQ6PeFpVGSQUMoAbf3g-r-kq1DCBD5pkgY9hK7tR8TUCPepMpg==
age: 11
X-Firefox-Spdy: h2
cdn.feathr.co/js/boomerang.min.js
172.67.159.92200 OK 0 B URL HTTP/2 cdn.feathr.co/js/boomerang.min.js
IP 172.67.159.92:0
GET /js/boomerang.min.js HTTP/1.1
Host: cdn.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:25 GMT
content-type: text/javascript; charset=utf-8
x-amz-id-2: CloyzBJZVpVxqm+Kc3hOcFJjXMw4dLxYzi0RQSPUL9Wo8hcjdSSH39e2yDMnbnQ790lZQblQ4I4=
x-amz-request-id: EYSVCAAWW1HD35B2
last-modified: Wed, 07 Dec 2022 16:15:56 GMT
x-amz-version-id: Zr93uu74l0PMqqqVrsHYWd9wSbolPgQw
etag: W/"51d5b76c27d7ab6f3bb2e545bf73b2bf"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5157
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xBGBKOESd75GUNPC7VmU2vVKrJicXM3CdEal0B1Vv5g1V%2BXvmuBf%2FRj3P4nHB1MHjD4TtQ%2FJ76zA%2F9YQprSfudgQaVDweKDcOqsoyI2HP%2B3fCPQe2oyAVKAqsDCQcKTU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 777089e1d8ceb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unpkg.com/@popperjs/core@2.11.6/dist/umd/popper.min.js
104.16.122.175200 OK 0 B URL HTTP/2 unpkg.com/@popperjs/core@2.11.6/dist/umd/popper.min.js
IP 104.16.122.175:0
GET /@popperjs/core@2.11.6/dist/umd/popper.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:24 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Thu, 11 Aug 2022 07:51:20 GMT
etag: W/"4e7f-YDO5/9GsCmSrp3VxzVXmgduuK5k"
via: 1.1 fly.io
fly-request-id: 01GA5YDF856HFYFNRFWBNDMB53-ams
cf-cache-status: HIT
age: 10413713
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089dd7c11b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/tippy.js@6.3.7/animations/scale.css
104.16.122.175200 OK 0 B URL HTTP/2 unpkg.com/tippy.js@6.3.7/animations/scale.css
IP 104.16.122.175:0
GET /tippy.js@6.3.7/animations/scale.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.td.org/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:24 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"18a-uOya/8egEg2FQ/RlJGizYQt9zWA"
via: 1.1 fly.io
fly-request-id: 01FM4AK0GZ48TMZZCX2YYZBDWT
cf-cache-status: HIT
age: 2554374
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089dd6bf1b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
104.16.148.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
IP 104.16.148.64:0
GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 20:37:27 GMT
content-type: image/svg+xml
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Thu, 08 Dec 2022 21:22:26 GMT
x-ms-request-id: 6349b5ed-501e-00e4-366b-0bcbec000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 67669
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 777089ef4f631c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
polo.feathr.co/v1/analytics/match/script.js?pk=feathr&cb=1670618245044
52.4.232.41200 OK 0 B URL HTTP/2 polo.feathr.co/v1/analytics/match/script.js?pk=feathr&cb=1670618245044
IP 52.4.232.41:0
GET /v1/analytics/match/script.js?pk=feathr&cb=1670618245044 HTTP/1.1
Host: polo.feathr.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.td.org/
Cookie: f_id=63939c8537b2ed000836bb28
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.8
date: Fri, 09 Dec 2022 20:37:27 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: no-cache, max-age=0
etag: W/"63939c8537b2ed000836bb28"
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
content-encoding: gzip
X-Firefox-Spdy: h2